VYPR

Open Source

by Knowledgetree

CVEs (5)

  • CVE-2019-5893CriJan 10, 2019
    risk 0.69cvss 9.8epss 0.25

    Nelson Open Source ERP v6.3.1 allows SQL Injection via the db/utils/query/data.xml query parameter.

  • CVE-2026-41665MedApr 22, 2026
    risk 0.33cvss 6.1epss 0.00

    Integer overflow in scratch buffer initialization size calculation in Samsung Open Source ONE cause incorrect memory initialization for large intermediate tensors. Affected version is prior to commit 1.30.0.

  • CVE-2019-7940MedAug 2, 2019
    risk 0.24cvss 4.8epss 0.01

    A stored cross-site scripting vulnerability exists in the admin panel of Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This could be exploited by an authenticated…

  • CVE-2007-4281Aug 9, 2007
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in KnowledgeTree Open Source 3.4 and 3.4.1 allows remote attackers to inject arbitrary web script or HTML via the login field on the login page, and other unspecified vectors.

  • CVE-2006-2886Jun 7, 2006
    risk 0.00cvss epss 0.01

    view.php in KnowledgeTree Open Source 3.0.3 and earlier allows remote attackers to obtain the full installation path via a crafted fDocumentId parameter, which displays the path in the resulting error message. NOTE: this might be resultant from another vulnerability, since this…