Name of the Vulnerable Software and Affected Versions: Сервис обновлений (affected versions not specified) Description: The issue is related to the WSDL request handler in the &quo ...
Continue Reading
August 09, 2025
Name of the Vulnerable Software and Affected Versions: NCR Terminal Handler version 1.5.1 Description: The issue involves Multiple Cross-Site Request Forgery (CSRF) chaining, allowing an attacker to e ...
Continue Reading
August 08, 2025
Name of the Vulnerable Software and Affected Versions: Quest Analytics LLC IQCRM version 2023.9.5 Description: The issue allows a remote attacker to execute arbitrary code via a crafted request to the ...
Continue Reading
August 08, 2025
Name of the Vulnerable Software and Affected Versions: NCR Terminal Handler version 1.5.1 Description: The issue is related to Cross-Site Request Forgery (CSRF) that can lead to a one-click account ta ...
Continue Reading
August 06, 2025
Medical Systems Co. Medisys Weblab Products v19.4.03 was discovered to contain a SQL injection vulnerability via the tem:statement parameter in the WSDL...Read More ...
Continue Reading
July 04, 2025
Multiple Cross-Site Request Forgery (CSRF) chaining in NCR Terminal Handler v.1.5.1 allows privileges to be escalated by an attacker through a crafted request involving user account creation and addin ...
Continue Reading
July 04, 2025
SQL Injection vulnerability in Quest Analytics LLC IQCRM v.2023.9.5 allows a remote attacker to execute arbitrary code via a crafted request to the Common.svc WSDL...Read More ...
Continue Reading
July 04, 2025
Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover. This is achieved by exploiting multiple vulnerabilities, including an undisclosed function in t ...
Continue Reading
July 04, 2025
Back to Main
