Devolutions Remote Desktop Manager <= 2025.3.30 Sensitive Information Exposure (DEVO-2026-0005)

The version of Devolutions Remote Desktop Manager installed on the remote host is 2025.3.30 or earlier. It is, therefore, affected by a sensitive information exposure vulnerability: - Improper enforcement of the Disable password saving in vaults setting in the connection entry component in...

CVE-2026-2590

creationtimestamp| type| source ---|---|--- 2026-03-03 23:48:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg6xggot7p2e 2026-03-04 16:21:12+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgaoup5rdc2c 2026-03-04 16:22:16+00:00| seen|...

CVE-2026-2590

Improper enforcement of the Disable password saving in vaults setting in the connection entry component in Devolutions Remote Desktop Manager 2025.3.30 and earlier allows an authenticated user to persist credentials in vault entries, potentially exposing sensitive information to other users, by...

CVE-2026-2590

CVE-2026-2590 affects Devolutions Remote Desktop Manager up to version 2025.3.30. The issue is improper enforcement of the Disable password saving in vaults setting in the connection entry component, allowing an authenticated user to persist credentials in vault entries by creating or editing cer...

MiracleLinux 7 : java-1.7.0-openjdk-1.7.0.251-2.6.21.0.0.1.el7.AXS7 (AXSA:2020-4487:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4487:02 advisory. OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS Security, 8229951 CVE-2020-2601 OpenJDK: Serialization filter changes via jdk.serialFilter...

MiracleLinux 4 : java-1.8.0-openjdk-1.8.0.51-0.b16.AXS4 (AXSA:2015-186:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-186:02 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2015-2590 RESERVED This candidate has been reserved by an organization ...

MiracleLinux 4 : rh-mysql56-mysql-5.6.39-1.AXS4.1 (AXSA:2018-2638:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-2638:01 advisory. mysql: sha256password authentication DoS via long password CVE-2018-2696 mysql: Server : Partition unspecified vulnerability CPU Jan 2018...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.51-1.b16.el7 (AXSA:2015-225:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-225:01 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2015-2590 RESERVED This candidate has been reserved by an organization ...

MiracleLinux 7 : rh-mysql56-mysql-5.6.39-1.el7.1 (AXSA:2018-2639:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-2639:01 advisory. mysql: sha256password authentication DoS via long password CVE-2018-2696 mysql: Server : Partition unspecified vulnerability CPU Jan 2018...

EUVD-2026-2590

EUVD-2026-2590...

CVE-2019-2590

Vulnerability in the PeopleSoft Enterprise HCM Talent Acquisition Manager component of Oracle PeopleSoft Products subcomponent: Job Opening. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

CVE-2020-2590 vulnerabilities

Vulnerabilities for packages: openjdk...

CVE-2025-2590

A vulnerability was found in code-projects Human Resource Management System 1.0.1. It has been classified as problematic. Affected is the function UpdateRecruitmentById of the file \handler\recruitment.go. The manipulation of the argument c leads to cross site scripting. It is possible to launch...

CVE-2025-2590

creationtimestamp| type| source ---|---|--- 2025-03-21 13:19:06+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8332 2025-03-21 15:58:41+00:00| seen| https://t.me/cvedetector/20812 2025-08-11 18:27:49+00:00| seen| MISP/3e4b778d-5810-4171-a915-f1d106684af4...

CVE-2025-2590

A vulnerability was found in code-projects Human Resource Management System 1.0.1. It has been classified as problematic. Affected is the function UpdateRecruitmentById of the file \handler\recruitment.go. The manipulation of the argument c leads to cross site scripting. It is possible to launch...

CVE-2025-2590

CVE-2025-2590 affects code-projects Human Resource Management System 1.0.1. The vulnerability lies in the UpdateRecruitmentById function of the file handler\recruitment.go, where manipulation of the argument c leads to cross-site scripting. It can be exploited remotely and the exploit has been di...

CVE-2025-2590 code-projects Human Resource Management System recruitment.go UpdateRecruitmentById cross site scripting

A vulnerability was found in code-projects Human Resource Management System 1.0.1. It has been classified as problematic. Affected is the function UpdateRecruitmentById of the file \handler\recruitment.go. The manipulation of the argument c leads to cross site scripting. It is possible to launch...

Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On July 2020 CPU plus deferred CVE-2020-2590 and CVE-2020-2601

Summary IBM WebSphere Application Server is shipped with IBM Security Access Manager for Enterprise Single Sign-On. Information about security vulnerabilities affecting IBM WebSphere Application Server has been published in another security bulletin. Vulnerability Details Refer to the security...

Amazon Linux 2 : nano (ALAS-2024-2590)

The version of nano installed on the remote host is prior to 2.9.8-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2590 advisory. nano: running chmod and chown on the filename allows malicious user to replace the emergency file with a malicious symlink to a...

RHEL 6 / 7 : rh-mysql57-mysql (RHSA-2018:0586)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0586 advisory. - mysql: Server: InnoDB unspecified vulnerability CPU Jan 2018 CVE-2018-2565 - mysql: Server: GIS unspecified vulnerability CPU Jan 2018...