Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
EsafenetCdg

52 matches found

CVE
CVEadded 2025/03/28 9:15 p.m.86 views

CVE-2025-2927

A vulnerability was found in ESAFENET CDG 5.6.3.154.205. It has been classified as critical. Affected is an unknown function of the file /parameter/getFileTypeList.jsp. The manipulation of the argument typename leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

9.8CVSS7.4AI score0.00039EPSS
CVE
CVEadded 2019/09/30 1:15 p.m.85 views

CVE-2017-18636

CDG through 2017-01-01 allows downloadDocument.jsp?command=download&pathAndName= directory traversal.

7.5CVSS7.5AI score0.00431EPSS
CVE
CVEadded 2024/10/06 10:15 p.m.56 views

CVE-2024-9560

A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this issue is the function delCatelogs of the file /CDGServer3/document/Catelogs;logindojojs?command=DelCatelogs. The manipulation of the argument id leads to sql injection. The attack may be launched remotely....

8.8CVSS7AI score0.00106EPSS
CVE
CVEadded 2025/01/28 10:15 p.m.48 views

CVE-2025-0786

A vulnerability was found in ESAFENET CDG V5. It has been classified as critical. Affected is an unknown function of the file /appDetail.jsp. The manipulation of the argument flowId leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...

8.8CVSS7.4AI score0.00041EPSS
CVE
CVEadded 2025/03/03 12:15 a.m.47 views

CVE-2025-1840

A vulnerability was found in ESAFENET CDG 5.6.3.154.205. It has been rated as critical. Affected by this issue is some unknown functionality of the file /CDGServer3/workflowE/useractivate/updateorg.jsp. The manipulation of the argument flowId leads to sql injection. The attack may be launched remot...

9.8CVSS7.4AI score0.0006EPSS
CVE
CVEadded 2024/09/05 4:15 p.m.45 views

CVE-2024-42885

SQL Injection vulnerability in ESAFENET CDG 5.6 and before allows an attacker to execute arbitrary code via the id parameter of the data.jsp page.

9.1CVSS8.3AI score0.0011EPSS
CVE
CVEadded 2025/03/31 5:15 p.m.45 views

CVE-2025-3003

A vulnerability, which was classified as critical, was found in ESAFENET CDG 3. Affected is an unknown function of the file /CDGServer3/UserAjax. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the pub...

6.5CVSS6.7AI score0.00039EPSS
CVE
CVEadded 2025/03/03 2:15 a.m.44 views

CVE-2025-1844

A vulnerability, which was classified as critical, was found in ESAFENET CDG 5.6.3.154.205_20250114. Affected is an unknown function of the file /CDGServer3/logManagement/backupLogDetail.jsp. The manipulation of the argument logTaskId leads to sql injection. It is possible to launch the attack remo...

9.8CVSS6.8AI score0.00056EPSS
CVE
CVEadded 2025/04/08 2:15 a.m.44 views

CVE-2025-3400

A vulnerability, which was classified as critical, was found in ESAFENET CDG 5.6.3.154.205_20250114. This affects an unknown part of the file /client/UnChkMailApplication.jsp. The manipulation of the argument typename leads to sql injection. It is possible to initiate the attack remotely. The explo...

9.8CVSS7.4AI score0.00039EPSS
CVE
CVEadded 2024/10/05 4:15 p.m.43 views

CVE-2024-9536

A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this issue is some unknown functionality of the file /MultiServerBackService?path=1. The manipulation of the argument fileId leads to sql injection. The attack may be launched remotely. The exploit has been dis...

9.8CVSS6.7AI score0.00039EPSS
CVE
CVEadded 2025/01/28 10:15 p.m.43 views

CVE-2025-0787

A vulnerability was found in ESAFENET CDG V5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /appDetail.jsp. The manipulation of the argument curpage leads to cross site scripting. The attack can be launched remotely. The exploit has been...

5.4CVSS6.2AI score0.00035EPSS
CVE
CVEadded 2025/03/03 12:15 a.m.43 views

CVE-2025-1841

A vulnerability classified as critical has been found in ESAFENET CDG 5.6.3.154.205. This affects an unknown part of the file /CDGServer3/logManagement/ClientSortLog.jsp. The manipulation of the argument startDate/endDate leads to sql injection. It is possible to initiate the attack remotely. The e...

9.8CVSS7.5AI score0.00062EPSS
CVE
CVEadded 2024/10/23 1:15 p.m.42 views

CVE-2024-10279

A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects unknown code of the file /com/esafenet/servlet/policy/PrintPolicyService.java. The manipulation of the argument policyId leads to sql injection. The attack can be initiated remotely. The exploi...

9.8CVSS7AI score0.00102EPSS
CVE
CVEadded 2025/04/08 2:15 a.m.42 views

CVE-2025-3399

A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5.6.3.154.205_20250114. Affected by this issue is some unknown functionality of the file /pubinfo/updateNotice.jsp. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The ...

9.8CVSS7.4AI score0.00039EPSS
CVE
CVEadded 2024/10/17 3:15 p.m.41 views

CVE-2024-10069

A vulnerability was found in ESAFENET CDG 5. It has been rated as critical. Affected by this issue is the function actionPassMainApplication of the file /com/esafenet/servlet/client/MailDecryptApplicationService.java. The manipulation of the argument id leads to sql injection. The attack may be lau...

8.8CVSS6.8AI score0.00098EPSS
CVE
CVEadded 2024/10/17 4:15 p.m.41 views

CVE-2024-10071

A vulnerability classified as critical was found in ESAFENET CDG 5. This vulnerability affects the function actionUpdateEncryptPolicyEdit of the file /com/esafenet/servlet/policy/EncryptPolicyService.java. The manipulation of the argument encryptPolicyId leads to sql injection. The attack can be in...

8.8CVSS7AI score0.00098EPSS
CVE
CVEadded 2025/01/28 10:15 p.m.41 views

CVE-2025-0785

A vulnerability was found in ESAFENET CDG V5 and classified as problematic. This issue affects some unknown processing of the file /SysConfig.jsp. The manipulation of the argument help leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public ...

6.1CVSS6.3AI score0.00035EPSS
CVE
CVEadded 2025/01/28 11:15 p.m.41 views

CVE-2025-0788

A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this issue is some unknown functionality of the file /content_top.jsp. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the publ...

8.8CVSS6.9AI score0.00041EPSS
CVE
CVEadded 2025/04/08 3:15 a.m.41 views

CVE-2025-3401

A vulnerability has been found in ESAFENET CDG 5.6.3.154.205_20250114 and classified as critical. This vulnerability affects unknown code of the file /parameter/getLimitIPList.jsp. The manipulation of the argument noticeId leads to sql injection. The attack can be initiated remotely. The exploit ha...

9.8CVSS7.6AI score0.00039EPSS
CVE
CVEadded 2024/10/23 12:15 p.m.40 views

CVE-2024-10277

A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/ajax/UsbKeyAjax.java. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been ...

9.8CVSS6.9AI score0.00102EPSS
CVE
CVEadded 2024/10/31 9:15 p.m.40 views

CVE-2024-10596

A vulnerability was found in ESAFENET CDG 5. It has been rated as critical. Affected by this issue is the function delEntryptPolicySort of the file /com/esafenet/servlet/system/EncryptPolicyTypeService.java. The manipulation of the argument id leads to sql injection. The attack may be launched remo...

8.8CVSS6.9AI score0.00092EPSS
CVE
CVEadded 2024/10/31 9:15 p.m.40 views

CVE-2024-10597

A vulnerability classified as critical has been found in ESAFENET CDG 5. This affects the function delPolicyAction of the file /com/esafenet/servlet/system/PolicyActionService.java. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The explo...

9.8CVSS7AI score0.00092EPSS
CVE
CVEadded 2025/01/28 11:15 p.m.40 views

CVE-2025-0789

A vulnerability classified as critical has been found in ESAFENET CDG V5. This affects an unknown part of the file /doneDetail.jsp. The manipulation of the argument flowId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

8.8CVSS7AI score0.00051EPSS
CVE
CVEadded 2025/01/29 12:15 a.m.40 views

CVE-2025-0792

A vulnerability, which was classified as critical, was found in ESAFENET CDG V5. Affected is an unknown function of the file /sdTodoDetail.jsp. The manipulation of the argument flowId leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public ...

9.8CVSS6.8AI score0.00051EPSS
CVE
CVEadded 2024/10/31 9:15 p.m.39 views

CVE-2024-10594

A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. Affected is the function docHistory of the file /com/esafenet/servlet/fileManagement/FileDirectoryService.java. The manipulation of the argument fileId leads to sql injection. It is possible to launch the attack remote...

8.8CVSS7AI score0.00092EPSS
CVE
CVEadded 2024/11/01 3:15 a.m.39 views

CVE-2024-10612

A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. Affected is the function removeHookInvalidCourse of the file /com/esafenet/servlet/system/HookInvalidCourseService.java. The manipulation of the argument id leads to sql injection. It is possible to launch the attack r...

8.8CVSS7AI score0.00092EPSS
CVE
CVEadded 2024/09/30 4:15 p.m.39 views

CVE-2024-46510

ESAFENET CDG v5 was discovered to contain a SQL injection vulnerability via the id parameter in the NavigationAjax interface

7.6CVSS8.3AI score0.00103EPSS
CVE
CVEadded 2024/10/25 6:15 p.m.39 views

CVE-2024-48343

A SQL Injection vulnerability in ESAFENET CDG 5 and earlier allows an attacker to execute arbitrary code via the id parameter of the dataSearch.jsp page.

6.3CVSS8.7AI score0.00166EPSS
CVE
CVEadded 2025/01/29 1:15 a.m.39 views

CVE-2025-0793

A vulnerability has been found in ESAFENET CDG V5 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /todoDetail.jsp. The manipulation of the argument flowId leads to sql injection. The attack can be launched remotely. The exploit has been disclosed t...

9.8CVSS7.3AI score0.00016EPSS
CVE
CVEadded 2024/10/30 1:15 a.m.38 views

CVE-2024-10502

A vulnerability has been found in ESAFENET CDG 5 and classified as critical. This vulnerability affects the function getOneFileDirectory of the file /com/esafenet/servlet/fileManagement/FileDirectoryService.java. The manipulation of the argument directoryId leads to sql injection. The attack can be...

8.8CVSS7AI score0.00102EPSS
CVE
CVEadded 2024/11/01 3:15 a.m.38 views

CVE-2024-10613

A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. Affected by this vulnerability is the function delSystemEncryptPolicy of the file /com/esafenet/servlet/system/SystemEncryptPolicyService.java. The manipulation of the argument id leads to sql injection. The attack can b...

8.8CVSS7AI score0.00092EPSS
CVE
CVEadded 2025/01/29 1:15 a.m.38 views

CVE-2025-0794

A vulnerability was found in ESAFENET CDG V5 and classified as problematic. Affected by this issue is some unknown functionality of the file /todoDetail.jsp. The manipulation of the argument curpage leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed t...

6.1CVSS6.1AI score0.00013EPSS
CVE
CVEadded 2024/10/19 9:15 a.m.37 views

CVE-2024-10133

A vulnerability has been found in ESAFENET CDG 5 and classified as critical. Affected by this vulnerability is the function updateNetSecPolicyPriority of the file /com/esafenet/servlet/ajax/NetSecPolicyAjax.java. The manipulation of the argument id/frontId leads to sql injection. The attack can be ...

8.8CVSS7AI score0.00098EPSS
CVE
CVEadded 2024/10/25 11:15 a.m.37 views

CVE-2024-10376

A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects the function actionPassOrNotAutoSign of the file /com/esafenet/servlet/service/processsign/AutoSignService.java. The manipulation of the argument UniqueId leads to sql injection. The attack can...

9.8CVSS7AI score0.00112EPSS
CVE
CVEadded 2024/10/30 1:15 a.m.37 views

CVE-2024-10501

A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function findById of the file /com/esafenet/servlet/document/ExamCDGDocService.java. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The explo...

8.8CVSS7AI score0.00102EPSS
CVE
CVEadded 2024/11/01 4:15 p.m.37 views

CVE-2024-10659

A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is the function delSystemEncryptPolicy of the file /com/esafenet/servlet/document/CDGAuthoriseTempletService.java. The manipulation of the argument id leads to sql injection. The attack may b...

9.8CVSS7AI score0.001EPSS
CVE
CVEadded 2025/01/29 12:15 a.m.37 views

CVE-2025-0790

A vulnerability classified as problematic was found in ESAFENET CDG V5. This vulnerability affects unknown code of the file /doneDetail.jsp. The manipulation of the argument curpage leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and...

6.1CVSS3.9AI score0.00045EPSS
CVE
CVEadded 2025/01/29 12:15 a.m.37 views

CVE-2025-0791

A vulnerability, which was classified as critical, has been found in ESAFENET CDG V5. This issue affects some unknown processing of the file /sdDoneDetail.jsp. The manipulation of the argument flowId leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the...

9.8CVSS6.8AI score0.00051EPSS
CVE
CVEadded 2024/10/17 3:15 p.m.36 views

CVE-2024-10070

A vulnerability classified as critical has been found in ESAFENET CDG 5. This affects the function actionPolicyPush of the file /com/esafenet/policy/action/PolicyPushControlAction.java. The manipulation of the argument policyId leads to sql injection. It is possible to initiate the attack remotely....

8.8CVSS7AI score0.00098EPSS
CVE
CVEadded 2024/10/19 10:15 a.m.36 views

CVE-2024-10134

A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is the function connectLogout of the file /com/esafenet/servlet/ajax/MultiServerAjax.java. The manipulation of the argument servername leads to sql injection. The attack may be launched remotely. The expl...

8.8CVSS6.9AI score0.00102EPSS
CVE
CVEadded 2024/10/23 1:15 p.m.36 views

CVE-2024-10278

A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects an unknown part of the file /com/esafenet/servlet/user/ReUserOrganiseService.java. The manipulation of the argument userId leads to sql injection. It is possible to initiate the attack remotely. The exploi...

9.8CVSS7AI score0.00102EPSS
CVE
CVEadded 2024/11/01 2:15 a.m.36 views

CVE-2024-10610

A vulnerability has been found in ESAFENET CDG 5 and classified as critical. This vulnerability affects the function delProtocol of the file /com/esafenet/servlet/system/ProtocolService.java. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The explo...

8.8CVSS7AI score0.00095EPSS
CVE
CVEadded 2025/01/29 2:15 a.m.36 views

CVE-2025-0795

A vulnerability was found in ESAFENET CDG V5. It has been classified as problematic. This affects an unknown part of the file /todolistjump.jsp. The manipulation of the argument flowId leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to t...

6.1CVSS3.8AI score0.00012EPSS
CVE
CVEadded 2024/10/30 1:15 a.m.35 views

CVE-2024-10500

A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/policy/HookWhiteListService.java. The manipulation of the argument policyId leads to sql injection. The attack may be launched ...

8.8CVSS6.9AI score0.00102EPSS
CVE
CVEadded 2024/10/31 9:15 p.m.35 views

CVE-2024-10595

A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. Affected by this vulnerability is the function delFile/delDifferCourseList of the file /com/esafenet/servlet/ajax/PublicDocInfoAjax.java. The manipulation leads to sql injection. The attack can be launched remotely. The ...

9.8CVSS7AI score0.00095EPSS
CVE
CVEadded 2024/11/01 4:15 p.m.35 views

CVE-2024-10660

A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function deleteHook of the file /com/esafenet/servlet/policy/HookService.java. The manipulation of the argument hookId leads to sql injection. It is possible to initiate the attack remotely. The exploit...

9.8CVSS7AI score0.35433EPSS
CVE
CVEadded 2024/10/17 5:15 p.m.34 views

CVE-2024-10072

A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. This issue affects the function actionAddEncryptPolicyGroup of the file /com/esafenet/servlet/policy/EncryptPolicyService.java. The manipulation of the argument checklist leads to sql injection. The attack may be i...

8.8CVSS7AI score0.00105EPSS
CVE
CVEadded 2024/11/01 2:15 a.m.34 views

CVE-2024-10611

A vulnerability was found in ESAFENET CDG 5 and classified as critical. This issue affects the function delProtocol of the file /com/esafenet/servlet/system/PrintScreenListService.java. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

8.8CVSS7AI score0.00092EPSS
CVE
CVEadded 2024/10/19 12:15 p.m.33 views

CVE-2024-10135

A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects the function actionDelNetSecConfig of the file /com/esafenet/servlet/netSec/NetSecConfigService.java. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remot...

8.8CVSS7AI score0.00112EPSS
CVE
CVEadded 2024/10/25 12:15 p.m.33 views

CVE-2024-10378

A vulnerability classified as critical has been found in ESAFENET CDG 5. Affected is the function actionViewCDGRenewFile of the file /com/esafenet/servlet/client/CDGRenewApplicationService.java. The manipulation of the argument CDGRenewFileId leads to sql injection. It is possible to launch the att...

9.8CVSS7AI score0.00105EPSS
Total number of security vulnerabilities52