Infocad

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-26853 CRITICAL Act Now

DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 has a broken authorization schema. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Infocad

NVD

CVSS 3.1

10.0

EPSS

0.3%

CVE-2025-26852 CRITICAL Act Now

DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 allows SQL Injection. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Infocad

NVD

CVSS 3.1

10.0

EPSS

0.2%

CVE-2025-26853

EPSS 0% CVSS 10.0

CRITICAL Act Now

DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 has a broken authorization schema. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Infocad

NVD

CVE-2025-26852

EPSS 0% CVSS 10.0

CRITICAL Act Now

DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 allows SQL Injection. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Infocad

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy