CVE-2026-25950

Further research determined the issue is not a vulnerability...

CVE-2025-25950

Incorrect access control in the component /rest/staffResource/update of Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows create and modify user accounts, including an Administrator account...

Linux Distros Unpatched Vulnerability : CVE-2023-25950

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTTP request/response smuggling vulnerability in HAProxy version 2.7.0, and 2.6.1 to 2.6.7 allows a remote attacker to alter a legitimate user's request. As a...

CVE-2025-25950

creationtimestamp| type| source ---|---|--- 2025-03-03 01:29:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6125 2025-03-03 02:58:44+00:00| seen| https://t.me/cvedetector/19281 2025-03-06 02:16:33+00:00| seen| Telegram/LnjyeAvwJZTh3Jc9tcYXlfWG8Jfh8HLDR5AhqYK-Ww9g5pT 2025-08-19...

CVE-2025-25950

Incorrect access control in the component /rest/staffResource/update of Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows create and modify user accounts, including an Administrator account...

CVE-2025-25950

Incorrect access control in the component /rest/staffResource/update of Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows create and modify user accounts, including an Administrator account...

CVE-2025-25950

CVE-2025-25950 affects Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118. The vulnerability is due to incorrect access control in the /rest/staffResource/update component, enabling creation and modification of user accounts, including Administrator accounts. Doc...

CVE-2025-25950

Incorrect access control in the component /rest/staffResource/update of Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows create and modify user accounts, including an Administrator account...

RHEL 9 : haproxy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - haproxy: malformed HTTP header field name can lead to HTTP request/response smuggling CVE-2023-25950 Note that Ness...

Advisory ROSA-SA-2024-2400

Software: haproxy 2.6.15 OS: ROSA-CHROME packageevrstring: haproxy-2.6.15-1.src.rpm CVE-ID: CVE-2023-0836 BDU-ID: 2023-04833 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the HAProxy server software is related to incomplete cleanup of temporary or auxiliary resources. Exploitation of the...

CVE-2023-25950

creationtimestamp| type| source ---|---|--- 2023-08-12 13:50:18+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4908 2025-02-14 10:03:09+00:00| seen| Telegram/yHU1OxJhpQprZc36Hmmz5LvNQXVaqQIpP2SOA6pRjfooSGp...

OESA-2023-1257 haproxy security update

HAProxy is a free, very fast and reliable solution offering high availability, load balancing, and proxying for TCP and HTTP-based applications. It is particularly suited for very high traffic web sites and powers quite a number of the world's most visited ones. Security Fixes: HTTP...

CVE-2023-25950

HTTP request/response smuggling vulnerability in HAProxy version 2.7.0, and 2.6.1 to 2.6.7 allows a remote attacker to alter a legitimate user's request. As a result, the attacker may obtain sensitive information or cause a denial-of-service DoS condition...

CVE-2023-25950

HTTP request/response smuggling vulnerability in HAProxy version 2.7.0, and 2.6.1 to 2.6.7 allows a remote attacker to alter a legitimate user's request. As a result, the attacker may obtain sensitive information or cause a denial-of-service DoS condition...

CVE-2023-25950

CVE-2023-25950 : HTTP request/response smuggling in HAProxy affects 2.7.0 and 2.6.1–2.6.7, enabling a remote attacker to alter a legitimate user’s request, potentially leaking data or causing DoS. Mitigation in the cited sources points to upgrading HAProxy to newer releases (e.g., 2.8.3 or later)...

CVE-2023-25950

HTTP request/response smuggling vulnerability in HAProxy version 2.7.0, and 2.6.1 to 2.6.7 allows a remote attacker to alter a legitimate user's request. As a result, the attacker may obtain sensitive information or cause a denial-of-service DoS condition...

CVE-2021-25950

...

CVE-2021-25950

This CVE entry is rejected/not used and does not represent an active vulnerability.

CVE-2020-25950

Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery CSRF attacks that can delete a contact from the My Additional Contact page...

CVE-2020-25950

Vulnerability summary (CVE-2020-25950) : A CSRF flaw in Advanced Webhost Billing System 3.7.0 can delete a contact via the My Added Contact page. The affected component is the web application logic handling contact management; the root cause is insufficient validation of request origin for state-...