CVE-2025-12542

creationtimestamp| type| source ---|---|--- 2025-11-11 01:31:13+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5cyghpdot52...

PT-2025-46317

CVE-2025-12542 - CVE-2022-1234: Apache HTTP Server Unauthenticated Remote Code Execution CVE ID : CVE-2025-12542 Published : Nov. 10, 2025, 11:15 p.m. | 1 hour, 30 minutes ago Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Severity: 0.0 |...

CVE-2018-12542

creationtimestamp| type| source ---|---|--- 2025-08-18 21:02:40+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lwpcbo2gzi2y...

Exploit for CVE-2024-12542

CVE-2024-12542-PoC Missing Authorization to Unauthenticated Se...

WordPress linkID 0.1.2 Missing Authorization / Information Disclosure Vulnerability

CVE-2024-12542 linkID = 0.1.2 - Missing Authorization to Unauthenticated Sensitive Information Exposure Description The linkID plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check when including the 'phpinfo' function in all versions up to, and...

CVE-2024-12542 linkID <= 0.1.2 - Missing Authorization to Unauthenticated Sensitive Information Exposure

The linkID plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check when including the 'phpinfo' function in all versions up to, and including, 0.1.2. This makes it possible for unauthenticated attackers to read configuration settings and predefined...

HP ILO 4 1.00-2.50 Authentication Bypass Administrator Account Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP iLO 4 1.00-2.50 Authentication Bypass Administrator Account Creation', 'Description' = %q This module exploits an authentication bypass in HP...

CVE-2020-12542

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

VulnCheck KEV: CVE-2017-12542

A authentication bypass and execution of code vulnerability in HPE Integrated Lights-out 4 iLO 4 version prior to 2.53 was found...

CVE-2019-12542

CVE-2019-12542 affects Zoho ManageEngine ServiceDesk Plus 9.3. A cross-site scripting vulnerability exists via the SearchN.do parameter userConfigID, enabling injection of client-side code. The issue is documented across multiple sources (NVD, Red Hat security, CNVD, CVE listings) with the core d...

Zoho ManageEngine ServiceDesk Plus 9.3 Cross Site Scripting

Exploit Title: Zoho ManageEngine ServiceDesk Plus 9.3 Cross-Site Scripting via SiteLookup.do Date: 2019-06-04 Exploit Author: Tarantula Team - VinCSS a member of Vingroup Vendor Homepage: https://www.manageengine.com/products/service-desk Version: Zoho ManageEngine ServiceDesk Plus 9.3 CVE :...

Zoho ManageEngine ServiceDesk Plus 9.3 - SearchN.do Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - SearchN.do Cross-Site Scripting Exploit Title: Zoho ManageEngine ServiceDesk Plus 9.3 Cross-Site Scripting via SearchN.do Date: 2019-06-04 Exploit Author: Tarantula Team - VinCSS a member of Vingroup Vendor Homepage:...

iLO 4 < 2.53 Remote Code Execution Vulnerability

A remote command execution vulnerability exists in Integrated Lights-Out 4 iLO 4 due to a buffer overflow in the server's http connection handling code. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands. C Tenable Network Security, Inc...

HPE Lights-Out Authentication Bypass (CVE-2017-12542)

An authentication bypass vulnerability exists in HPE Lights-Out. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...

be.fluid-it.reactive-microservice.bundle:bootique-vertx (>=0.1-0 <=0.1-8), be.fluid-it.reactive-microservice.bundle:reactive-microservice-bundle-core (>=0.1-0 <=0.1-8) +590 more potentially affected by CVE-2018-12542 via io.vertx:vertx-web (>=3.0.0 <=3.5.3.CR1)

io.vertx:vertx-web MAVEN version =3.0.0, =0.1-0, =0.1-0, =1.2.1, =3.0.5, =1.0.0, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.5 and more Source cves: CVE-2018-12542 Source advisory: OSV:GHSA-H39X-M55C-V55H...

CVE-2018-12542

In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the StaticHandler uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '' forward slashes sequences that can resolve to a location that is outside of that directory when...

CVE-2018-12542

In Eclipse Vert.x 3.0.0–3.5.3, the StaticHandler reads external input to form a pathname and fails to neutralize backslash sequences on Windows, allowing path traversal to locations outside the intended restricted directory. This CVE is documented with a high/critical impact (CVE-2018-12542) and ...

CVE-2018-12542

In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the StaticHandler uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '' forward slashes sequences that can resolve to a location that is outside of that directory when...

HPE Integrated Lights-Out 4 Authentication Bypass (CVE-2017-12542)

An authentication bypass vulnerability exists in HPE Integrated Lights-Out 4. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary code...

CVE-2017-12542

creationtimestamp| type| source ---|---|--- 2018-04-27 23:53:47+00:00| exploited| https://t.me/itsecalert/105 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/hp/hpilocreateadminaccount.rb 2018-07-10 10:00:16+00:00| seen|...