Henkel Cyber Security team

7 exploits Active since Nov 2024
CVE-2026-31150 WRITEUP MEDIUM WORKING POC
Kaleris YMS 7.2.2.1 - Incorrect Access Control
Incorrect access control in Kaleris YMS v7.2.2.1 allows authenticated attackers with only the shipping/receiving role to view the truck's dashboard resources.
CVSS 4.3
CVE-2024-51162 WRITEUP HIGH WRITEUP
Audimex EE <15.1.20 - Privilege Escalation
An issue in Audimex EE versions 15.1.20 and earlier allowing a remote attacker to escalate privileges. Analyzing the offline client code, it was identified that it is possible for any user (with any privilege) of Audimex to dump the whole Audimex database. This gives visibility upon password hashes of any user, ongoing audit data and more.
CVSS 8.8
CVE-2025-43946 WRITEUP CRITICAL WORKING POC
Tcpwave Ddi < 11.34p1c2 - Unrestricted File Upload
TCPWave DDI 11.34P1C2 allows Remote Code Execution via Unrestricted File Upload (combined with Path Traversal).
CVSS 9.8
CVE-2025-43947 WRITEUP HIGH WORKING POC
Codemers Klims < 1.6_dev - Improper Access Control
Codemers KLIMS 1.6.DEV lacks a proper access control mechanism, allowing a normal KLIMS user to perform all the actions that an admin can perform, such as modifying the configuration, creating a user, uploading files, etc.
CVSS 7.3
CVE-2025-43948 WRITEUP HIGH WORKING POC
Codemers KLIMS 1.6.DEV - Code Injection
Codemers KLIMS 1.6.DEV allows Python code injection. A user can provide Python code as an input value for a parameter or qualifier (such as for sorting), which will get executed on the server side.
CVSS 7.3
CVE-2025-43951 WRITEUP CRITICAL WORKING POC
LabVantage <8.8.0.13 HF6 - Path Traversal
LabVantage before LV 8.8.0.13 HF6 allows local file inclusion. Authenticated users can retrieve arbitrary files from the environment via the objectname request parameter.
CVSS 9.8
CVE-2025-43952 WRITEUP MEDIUM WORKING POC
Mettler Toledo FreeWeight.Net <8.4.0 - XSS
A cross-site scripting (reflected XSS) vulnerability was found in Mettler Toledo FreeWeight.Net Web Reports Viewer 8.4.0 (440). It allows an attacker to inject malicious scripts via the IW_SessionID_ parameter.
CVSS 6.1