CVE-2025-46752

A insertion of sensitive information into log file in Fortinet FortiDLP 12.0.0 through 12.0.5, 11.5.1, 11.4.6, 11.4.5 allows attacker to information disclosure via re-using the enrollment code...

EUVD-2025-3804

Malicious code in bioql PyPI...

Grafana Alerting DingDing Integration URL Exposed to Viewers

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01,...

CVE-2025-24600

Missing Authorization vulnerability in davidfcarr RSVPMarker rsvpmaker.This issue affects RSVPMarker : from n/a through = 11.4.5...

CVE-2025-3616 Greenshift 11.4 - 11.4.5 - Authenticated (Subscriber+) Arbitrary File Upload

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the gspbmakeproxyapirequest function in versions 11.4 to 11.4.5. This makes it possible for authenticated attackers, with Subscriber-level access...

WordPress plugin RSVPMarker 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security...

PT-2025-5436 · Rsvpmaker · Rsvpmaker

Name of the Vulnerable Software and Affected Versions: RSVPMarker versions prior to 11.4.5 Description: The issue is related to a lack of authorization in RSVPMarker. This problem affects RSVPMarker from an unspecified starting version up to version 11.4.5. Recommendations: For versions prior to...

WordPress RSVPMaker plugin <= 11.4.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika in WordPress Plugin RSVPMarker versions = 11.4.5...

CVE-2024-37865

An issue in S3Browser v.11.4.5 and v.10.9.9 and fixed in v.11.5.7 allows a remote attacker to obtain sensitive information via the S3 compatible storage component...

PT-2024-27795 · Unknown · S3 Browser

Name of the Vulnerable Software and Affected Versions: S3Browser versions 10.9.9 through 11.4.5 Description: An issue in the S3 compatible storage component allows a remote attacker to obtain sensitive information. Recommendations: For versions 10.9.9 through 11.4.5, update to version 11.5.7 to...

CVE-2023-51717

Dataiku DSS before 11.4.5 and 12.4.1 has Incorrect Access Control that could lead to a full authentication bypass...

PT-2024-14257 · Dataiku · Dataiku Dss

Name of the Vulnerable Software and Affected Versions: Dataiku DSS versions prior to 11.4.5 Dataiku DSS versions prior to 12.4.1 Description: The issue is related to Incorrect Access Control, which could lead to a full authentication bypass. Recommendations: For versions prior to 11.4.5, update t...

Adobe Connect 11.4.5 - Local File Disclosure Vulnerability

Title: Adobe Connect 11.4.5 - Local File Disclosure Author: h4shur date:2021.01.16-2023.02.17 CVE: CVE-2023-22232 Vendor Homepage: https://www.adobe.com Software Link: https://www.adobe.com/products/adobeconnect.html Version: 11.4.5 and earlier, 12.1.5 and earlier User interaction: None Tested on...

Adobe Connect 11.4.5 / 12.1.5 Local File Disclosure

Title: adobe connect - Local File Disclosure / Download security feature bypass vulnerability Author: h4shur date:2021.01.16-2023.02.17 CVE: CVE-2023-22232 Vendor Homepage: https://www.adobe.com Software Link: https://www.adobe.com/products/adobeconnect.html Version: 11.4.5 and earlier, 12.1.5 an...

PT-2023-1470 · Adobe · Connect

Name of the Vulnerable Software and Affected Versions: Adobe Connect versions 11.4.5 and earlier Adobe Connect versions 12.1.5 and earlier Description: The issue is related to an Improper Access Control vulnerability in Adobe Connect, which could result in a Security feature bypass. An attacker...

Quest NetVault Backup Server &lt; 11.4.5 - Process Manager Service SQL Injection / Remote Code Execution

Exploit Title: Quest NetVault Backup Server 11.4.5 Process Manager Service SQL Injection Remote Code Execution Vulnerability ZDI-17-982 Date: 2-21-2019 Exploit Author: credit goes to rgod for finding the bug Version: Quest NetVault Backup Server 11.4.5 CVE : CVE-2017-17417 There is a decent...

Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37641)

Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability in the handling of NVBUJobCountHistory Get method requests in Quest NetVault Backup versions prior to 11.4.5 stems from the program's failure to properly inspect user-submitted strings...

Quest NetVault Backup 'NVBUBackup TimeRange' Method SQL Injection Vulnerability

Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability in the handling of NVBUBackup TimeRange method requests in Quest NetVault Backup versions prior to 11.4.5 stems from the program's failure to properly detect user-submitted strings pri...

Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37640)

Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability in the handling of NVBUBackupTargetSet Get method requests in Quest NetVault Backup versions prior to 11.4.5 stems from the program's failure to properly inspect user-submitted strings...

Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37629)

Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability in the handling of NVBUBackupSegment Get method requests in Quest NetVault Backup versions prior to 11.4.5 stems from the program's failure to properly detect user-submitted strings...