Dolusoft Omaspot vulnerabilities
3 known vulnerabilities affecting dolusoft/omaspot.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-7744P2CRITICALCVSS 9.8fixed in 12.09.20252025-09-16
CVE-2025-7744 [CRITICAL] CWE-89 CVE-2025-7744: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Dolusoft Omaspot allows SQL Injection.
This issue affects Omaspot: before 12.09.2025.
nvd
CVE-2025-7743P3CRITICALCVSS 9.6fixed in 12.09.20252025-09-16
CVE-2025-7743 [CRITICAL] CWE-319 CVE-2025-7743: Cleartext Transmission of Sensitive Information vulnerability in Dolusoft Omaspot allows Interceptio
Cleartext Transmission of Sensitive Information vulnerability in Dolusoft Omaspot allows Interception, Privilege Escalation.
This issue affects Omaspot: before 12.09.2025.
nvd
CVE-2025-6575P4MEDIUMCVSS 6.1fixed in 12.09.20252025-09-16
CVE-2025-6575 [MEDIUM] CWE-79 CVE-2025-6575: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dolusoft Omaspot allows Reflected XSS.
This issue affects Omaspot: before 12.09.2025.
nvd