CVE-2025-15404

creationtimestamp| type| source ---|---|--- 2026-01-01 14:28:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbelngc4uq2e 2026-01-02 18:51:49+00:00| published-proof-of-concept| Telegram/sF16qz9SaUDSadNVLgSgh1syTWV3sUsgubpOk2fuZWjrWs...

CVE-2025-15404

A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /savefile.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclose...

CVE-2025-15404 campcodes School File Management System save_file.php unrestricted upload

A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /savefile.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclose...

CVE-2021-46610

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

CVE-2019-15404

The Asus ZenFone Max 4 Android device with a build fingerprint of asus/WWPhone/ASUSX00HD4:7.1.1/NMF26F/14.2016.1712.367-20171225:user/release-keys contains a pre-installed app with a package name of com.asus.loguploaderproxy app versionCode=1570000020, versionName=7.0.0.4170901 that allows other...

CVE-2019-15404

creationtimestamp| type| source ---|---|--- 2024-02-20 08:42:10+00:00| seen| https://t.me/ctinow/188223...

CVE-2021-46610

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

Design/Logic Flaw

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

CVE-2021-46610

Bentley MicroStation CONNECT 10.16.0.80 is affected by CVE-2021-46610. The vulnerability arises in the JT file parsing due to insufficient validation, causing a read past the end of an allocated buffer and enabling information disclosure. Exploitation requires user interaction (visiting a malicio...

CVE-2019-15404

Technical details (affected products, component, root cause, fixes) are not publicly provided in the connected documents. The CVE entry lacks concrete details in the supplied materials. Monitor for updates from vendor and CVE repositories.

CVE-2017-15404

creationtimestamp| type| source ---|---|--- 2019-01-09 22:23:25+00:00| seen| https://t.me/cibsecurity/1949...

CVE-2017-15404

CVE-2017-15404 affects Crash Reporting in Google Chrome on Chrome OS prior to 61.0.3163.113. The issue involves processing crash dumps with root privileges and improper symlink handling, enabling local privilege escalation via a crafted HTML page. The Chrome OS update 61.0.3163.113 addresses this...

CVE-2018-15404

The CVE-2018-15404 issue affects Cisco Integrated Management Controller (IMC) Supervisor and Cisco UCS Director web interfaces. A vulnerability due to insufficient restrictions on resource size/total amount allows an authenticated, remote attacker with valid credentials to send crafted HTTP reque...