8 matches found
EUVD-2025-10401
Malicious code in bioql PyPI...
EUVD-2024-33153
Malicious code in bioql PyPI...
CVE-2024-10501
A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function findById of the file /com/esafenet/servlet/document/ExamCDGDocService.java. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2025-3399
A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5.6.3.154.20520250114. Affected by this issue is some unknown functionality of the file /pubinfo/updateNotice.jsp. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The...
CVE-2025-1840 ESAFENET CDG updateorg.jsp sql injection
A vulnerability was found in ESAFENET CDG 5.6.3.154.205. It has been rated as critical. Affected by this issue is some unknown functionality of the file /CDGServer3/workflowE/useractivate/updateorg.jsp. The manipulation of the argument flowId leads to sql injection. The attack may be launched...
CVE-2025-1158
CVE-2025-1158 affects ESAFENET CDG 5.6.3.154.205_20250114. The vulnerability is an SQL injection in an unknown function of addPolicyToSafetyGroup.jsp, achieved by manipulating the safetyGroupId parameter. Exploitation is reported as possible remotely, with public disclosure. Several sources corro...
CVE-2025-0791 ESAFENET CDG sdDoneDetail.jsp sql injection
A vulnerability, which was classified as critical, has been found in ESAFENET CDG V5. This issue affects some unknown processing of the file /sdDoneDetail.jsp. The manipulation of the argument flowId leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to t...
CVE-2025-0786 ESAFENET CDG appDetail.jsp sql injection
A vulnerability was found in ESAFENET CDG V5. It has been classified as critical. Affected is an unknown function of the file /appDetail.jsp. The manipulation of the argument flowId leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public...