17 matches found
CVE-2025-12540
creationtimestamp| type| source ---|---|--- 2026-01-07 09:53:26+00:00| seen| https://gist.github.com/Darkcrai86/fd6d045a3da5e78459e50ff9bca8fe1a...
CVE-2019-12540
An issue was discovered in Zoho ManageEngine ServiceDesk Plus 10.5. There is XSS via the WorkOrder.do search field...
CVE-2024-12540
creationtimestamp| type| source ---|---|--- 2025-01-07 03:35:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/280 2025-01-07 03:58:16+00:00| seen| https://infosec.exchange/users/cve/statuses/113785064306284750 2025-01-07 04:15:52+00:00| seen|...
CVE-2024-12540
...
CVE-2024-12540
...
CVE-2020-12540
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
CVE-2019-12540
Zoho ManageEngine ServiceDesk Plus 10.5 contains a cross-site scripting (XSS) vulnerability in the WorkOrder.do search field. The issue is documented across multiple feeds (CVE-2019-12540, with corroboration from RH and CNVD entries). Connected documents confirm the vulnerable component (WorkOrde...
CVE-2019-12540
An issue was discovered in Zoho ManageEngine ServiceDesk Plus 10.5. There is XSS via the WorkOrder.do search field...
Moderate: Red Hat Security Advisory: Red Hat OpenShift Application Runtimes security and bug fix update
An update is now available for Red Hat OpenShift Application Runtimes. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
CVE-2018-12540
In version from 3.0.0 to 3.5.2 of Eclipse Vert.x, the CSRFHandler do not assert that the XSRF Cookie matches the returned XSRF header/form parameter. This allows replay attacks with previously issued tokens which are not expired yet...
CVE-2018-12540
In version from 3.0.0 to 3.5.2 of Eclipse Vert.x, the CSRFHandler do not assert that the XSRF Cookie matches the returned XSRF header/form parameter. This allows replay attacks with previously issued tokens which are not expired yet...
CVE-2018-12540
The CVE-2018-12540 entry refers to Eclipse Vert.x Vert.x-Web CSRFHandler: versions 3.0.0–3.5.2 do not verify that the XSRF cookie matches the returned XSRF header/form parameter, enabling replay attacks with non-expired tokens. Public sources (including Red Hat RHSA-2018:2371 and OSV/GHSA entries...
CVE-2017-12540
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...
CVE-2017-12540
CVE-2017-12540 describes a Remote Code Execution vulnerability in Hewlett Packard Enterprise’s Intelligent Management Center (iMC) PLAT, affecting PLAT version 7.3 (E0504). The issue is resolved in PLAT v7.3 (E0506) or any later release. Public references in the connected documents confirm it as ...
CVE-2017-12540
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...
PointDev IDEAL Migration Buffer Overflow
This module exploits a stack buffer overflow in versions v9.7 through v10.5 of IDEAL Administration and versions 4.5 and 4.51 of IDEAL Migration. All versions are suspected to be vulnerable. By creating a specially crafted ipj file, an attacker may be able to execute arbitrary code. NOTE: IDEAL...
CVE-2020-12540
CVE-2020-12540 is rejected/not used; this CVE ID does not represent an active vulnerability entry.