Lucene search
K

225 matches found

CVE
CVE
added 2025/04/14 1:31 p.m.82 views

CVE-2025-3568

CVE-2025-3568 affects Webkul Krayin CRM

5.4CVSS3.8AI score0.00356EPSS
Exploits2References5Affected Software1
CNNVD
CNNVD
added 2025/04/14 12:0 a.m.5 views

Webkul Krayin CRM 安全漏洞

Webkul Krayin CRM is a free and open source CRM solution for small and medium-sized businesses from Webkul India. A security vulnerability exists in Webkul Krayin CRM version 2.1.0 and prior versions, which originates in the file /admin/settings/users/edit that is vulnerable to cross-site scripti...

5.4CVSS4.3AI score0.00356EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2025/04/14 12:0 a.m.6 views

PT-2025-16218

Name of the Vulnerable Software and Affected Versions: Webkul Krayin CRM versions up to 2.1.0 Description: A vulnerability has been found in the SVG File Handler component of Webkul Krayin CRM, affecting an unknown functionality of the file /admin/settings/users/edit/. The manipulation leads to...

5.4CVSS3.1AI score0.00356EPSS
Exploits2References13
RedhatCVE
RedhatCVE
added 2025/02/20 12:25 a.m.16 views

CVE-2025-26058

Webkul QloApps v1.6.1 exposes authentication tokens in URLs during redirection. When users access the admin panel or other protected areas, the application appends sensitive authentication tokens directly to the URL...

4.2CVSS6.9AI score0.00205EPSS
Exploits1References1
NVD
NVD
added 2025/02/18 6:15 p.m.11 views

CVE-2025-26058

Webkul QloApps v1.6.1 exposes authentication tokens in URLs during redirection. When users access the admin panel or other protected areas, the application appends sensitive authentication tokens directly to the URL...

4.2CVSS0.00205EPSS
Exploits1References1
OSV
OSV
added 2025/02/18 6:15 p.m.4 views

CVE-2025-26058

Webkul QloApps v1.6.1 exposes authentication tokens in URLs during redirection. When users access the admin panel or other protected areas, the application appends sensitive authentication tokens directly to the URL...

4.2CVSS6.4AI score
Exploits0References1
CNNVD
CNNVD
added 2025/02/18 12:0 a.m.7 views

Webkul QloApps 安全漏洞

Webkul QloApps is a hotel reservation management software from Webkul. A security vulnerability exists in Webkul QloApps v1.6.1, which stems from exposing an authentication token in the URL. An attacker can exploit the vulnerability to obtain sensitive information...

4.2CVSS6.6AI score0.00205EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/02/18 12:0 a.m.16 views

CVE-2025-26058

Webkul QloApps v1.6.1 exposes authentication tokens in URLs during redirection. When users access the admin panel or other protected areas, the application appends sensitive authentication tokens directly to the URL...

0.00205EPSS
Exploits1References1
CVE
CVE
added 2025/02/18 12:0 a.m.70 views

CVE-2025-26058

CVE-2025-26058 affects Webkul QloApps v1.6.1, where authentication tokens are exposed in URLs during redirection. The vulnerability is that the application appends sensitive authentication tokens directly to the URL when accessing admin or protected areas. The connected sources confirm the affect...

4.2CVSS7.2AI score0.00205EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/02/18 12:0 a.m.10 views

PT-2025-7124 · Webkul · Webkul Qloapps

Name of the Vulnerable Software and Affected Versions: Webkul QloApps version 1.6.1 Description: The issue exposes authentication tokens in URLs during redirection. When users access the admin panel or other protected areas, the application appends sensitive authentication tokens directly to the...

4.2CVSS7.3AI score0.00205EPSS
Exploits1References6
OSV
OSV
added 2025/02/10 8:15 p.m.3 views

CVE-2025-1155

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. This affects an unknown part of the file /stores of the component Your Location Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. It is planned to remove...

6.1CVSS6.4AI score
Exploits0References4
NVD
NVD
added 2025/02/10 8:15 p.m.11 views

CVE-2025-1155

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. This affects an unknown part of the file /stores of the component Your Location Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. It is planned to remove...

6.1CVSS0.00528EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/02/10 8:0 p.m.20 views

CVE-2025-1155 Webkul QloApps Your Location Search stores cross site scripting

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. This affects an unknown part of the file /stores of the component Your Location Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. It is planned to remove...

5.3CVSS4.4AI score0.00528EPSS
Exploits1References4
CVE
CVE
added 2025/02/10 8:0 p.m.64 views

CVE-2025-1155

CVE-2025-1155 affects Webkul QloApps 1.6.1, specifically the Your Location Search component in the /stores path. Reported vulnerability is a cross-site scripting (XSS) issue generated by manipulating input in an unknown part of the stores file. It is exploitable remotely according to the sources....

6.1CVSS4.3AI score0.00528EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/02/10 8:0 p.m.19 views

CVE-2025-1155 Webkul QloApps Your Location Search stores cross site scripting

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. This affects an unknown part of the file /stores of the component Your Location Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. It is planned to remove...

5.3CVSS0.00528EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/02/10 12:0 a.m.4 views

Webkul QloApps 安全漏洞

Webkul QloApps is a hotel reservation management software from Webkul Inc. A security vulnerability exists in Webkul QloApps version 1.6.1, which stems from improper input filtering in the Your Location Search component under the stores path, leading to a cross-site scripting attack...

6.1CVSS4.5AI score0.00528EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/02/10 12:0 a.m.4 views

PT-2025-6102 · Webkul · Webkul Qloapps

Name of the Vulnerable Software and Affected Versions: Webkul QloApps version 1.6.1 Description: A problematic vulnerability was found in Webkul QloApps, affecting an unknown part of the file /stores of the component Your Location Search. The manipulation leads to cross site scripting. It is...

6.1CVSS4AI score0.00528EPSS
Exploits1References10
OSV
OSV
added 2025/02/06 2:15 p.m.4 views

CVE-2025-1074

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

5.3CVSS4.4AI score
Exploits0References4
NVD
NVD
added 2025/02/06 2:15 p.m.16 views

CVE-2025-1074

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

5.3CVSS0.00321EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/02/06 2:0 p.m.8 views

CVE-2025-1074 Webkul QloApps URL mylogout cross-site request forgery

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

5.3CVSS4.6AI score0.00321EPSS
Exploits1References4
Rows per page
Query Builder