CVE-2025-30073

HIGH Year: 2025
CVSS v3 Score
7.5
High
Weakness Type
CWE-488
View all →

Vulnerability Description

An issue was discovered in OPC cardsystems Webapp Aufwertung 2.1.0. The reference assigned to transactions can be reused. When completing a payment, the first or all transactions with the same reference are completed, depending on timing. This can be used to transfer more money onto employee cards than is paid.

Related Vulnerabilities

CVE-2023-6519

HIGH
CVSS:7.5(High)

Exposure of Data Element to Wrong Session vulnerability in Mia Technology Inc. MİA-MED allows Read Sensitive Strings Within an Executable.This issue affects MİA-MED: before 1.0.7.

CWE-4882023

CVE-2024-5148

HIGH
CVSS:7.5(High)

A flaw was found in the gnome-remote-desktop package. The gnome-remote-desktop system daemon performs inadequate validation of session agents using D-Bus methods related to transitioning a client conn...

CWE-4882024

CVE-2022-40210

HIGH
CVSS:7.8(High)

Exposure of data element to wrong session in the Intel DCM software before version 5.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

CWE-4882022

CVE-2023-1907

HIGH
CVSS:8.0(High)

A vulnerability was found in pgadmin. Users logging into pgAdmin running in server mode using LDAP authentication may be attached to another user's session if multiple connection attempts occur simult...

CWE-4882023

CVE-2024-41977

HIGH
CVSS:8.0(High)

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.1), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.1), SCALANCE M804PB ...

CWE-4882024

CVE-2024-27935

HIGH
CVSS:8.3(High)

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Starting in version 1.35.1 and prior to version 1.36.3, a vulnerability in Deno's Node.js compatibility runtime allows for cross-session data...

CWE-4882024