CVE-2025-62763

CVE-2025-62763 affects Zimbra Collaboration (ZCS) before 10.1.12. The root cause is a misconfiguration of the chat proxy that enables SSRF. The CVSS base metrics indicate a Network attack with Low complexity, Privileges Required: Low, and no user interaction, with partial impact on integrity. The...

EUVD-2017-7113

Malware in sbrugna...

EUVD-2018-2658

Malware in sbrugna...

Synergetic Data Systems UnForm Server Manager 安全漏洞

Synergetic Data Systems UnForm Server Manager is a browser-based management tool from Synergetic Data Systems, USA. A security vulnerability exists in Synergetic Data Systems UnForm Server Manager versions prior to 10.1.12 that stems from insufficient input validation of the log file analysis...

Security Bulletin: Insecure handling of TLS certificates by IBM Spectrum Protect Plus (CVE-2022-40234)

Summary IBM Spectrum Protect Plus incorrectly handles TLS certificates which can result in an attacker obtaining private key information for the uploaded certificate. Vulnerability Details CVEID:CVE-2022-40234 DESCRIPTION: Versions of IBM Spectrum Protect Plus prior to 10.1.12 excluding 10.1.12...

CVE-2024-51462

IBM QRadar WinCollect Agent 10.0.0 through 10.1.12 could allow a remote attacker to inject XML data into parameter values due to improper input validation of assumed immutable data...

IBM QRadar WinCollect Agent 安全漏洞

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM that collects and sends Windows event logs. A security vulnerability exists in IBM QRadar WinCollect Agent versions 10.0.0 through 10.1.12, which arises from improper validation of inputs for assumed immutabl...

Security Bulletin: Vulnerabilities in PostgreSQL may affect IBM Spectrum Protect Plus (CVE-2022-2625, CVE-2022-1552, CVE-2021-3677)

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in PostgreSQL. Vulnerabilities include obtaining sensitive information and remote execution of arbitrary code, as described by the CVEs in the "Vulnerability Details" section. These vulnerabilities have been addressed...

Information disclosure

Versions of IBM Spectrum Protect Plus prior to 10.1.12 excluding 10.1.12 include the private key information for a certificate inside the generated .crt file when uploading a TLS certificate to IBM Spectrum Protect Plus. If this generated .crt file is shared, an attacker can obtain the private ke...

CVE-2018-10586

NetGain Enterprise Manager EM is affected by multiple Stored Cross-Site Scripting XSS vulnerabilities in versions before 10.1.12...

CVE-2018-10586

NetGain Enterprise Manager EM is affected by multiple Stored Cross-Site Scripting XSS vulnerabilities in versions before 10.1.12...

Flexense VX Search 10.7 Cross Site Scripting

Description: URL: localhost/ Affected Component: /?n0ipr0csalert'XSS'n0ipr0cs=1 Vulnerability Type: Cross Site Scripting https://cwe.mitre.org/data/definitions/79.html Vendor of Product: Flexense VX Search Version: from v10.1.12 to v10.7. Attack Type: Remote Impact: This attack allows an attacker...

Flexense VX Search Enterprise Cross-Site Scripting Vulnerability

Flexense VX Search Enterprise is an automated rules-based document search solution from Flexense Canada. A cross-site scripting vulnerability exists in Flexense VX Search Enterprise versions 10.1.12 through 10.7. A remote attacker could exploit the vulnerability to execute code that could obtain...

CVE-2018-10567

XSS exists in Flexense VX Search Enterprise from v10.1.12 to v10.7...

CVE-2017-15662

In Flexense VX Search Enterprise v10.1.12, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVERGETINFO packet sent to control port 9123...

Flexense VX Search Enterprise Buffer Overflow Vulnerability

Flexense VX Search Enterprise is an automated rules-based document search solution from Flexense Canada. A buffer overflow vulnerability exists in Flexense VX Search Enterprise version 10.1.12. A remote attacker could exploit the vulnerability by sending a buffer overflow to a file that begins wi...

CVE-2017-15220

Flexense VX Search Enterprise 10.1.12 is vulnerable to a buffer overflow via an empty POST request to a long URI beginning with a /../ substring. This allows remote attackers to execute arbitrary code...

Buffer overflow

Flexense VX Search Enterprise 10.1.12 is vulnerable to a buffer overflow via an empty POST request to a long URI beginning with a /../ substring. This allows remote attackers to execute arbitrary code...

mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU April 2016)

Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier and MariaDB 10.0.x before 10.0.24 and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to InnoDB...