CVE-2025-7974 rocket.chat Incorrect Authorization Information Disclosure Vulnerability

rocket.chat Incorrect Authorization Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of rocket.chat. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web...

PT-2025-34547

Name of the Vulnerable Software and Affected Versions: StorageGRID versions prior to 11.8.0.15 StorageGRID versions prior to 11.9.0.8 Description: StorageGRID is susceptible to a privilege escalation issue. A successful exploit could allow an unauthorized, authenticated attacker to discover Grid...

CVE-2024-26517

CVE-2024-26517 is a SQL injection vulnerability in School Task Manager v1.0, exploitable via the delete-task.php component, allowing a remote attacker to obtain sensitive information. The linked documents consistently identify the affected software and component (School Task Manager 1.0, delete-t...

CVE-2024-26517

SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component...

CVE-2024-26517

creationtimestamp| type| source ---|---|--- 2024-05-08 20:34:28+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/7251...

CVE-2023-26517

creationtimestamp| type| source ---|---|--- 2023-05-07 08:15:39+00:00| seen| https://t.me/cibsecurity/63402...

CVE-2023-26517

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jeff Starr Dashboard Widgets Suite plugin = 3.2.1 versions...

CVE-2023-26517

CVE-2023-26517 affects the WordPress plugin Dashboard Widgets Suite (Jeff Starr Dashboard Widgets Suite) up to version 3.2.1. The vulnerability is an authenticated stored XSS requiring admin privileges. A fix was released in version 3.2.2. Public references (Patchstack/NVD/Red Hat/NVD entries) co...

K54082580: BIG-IP CGNAT LSN vulnerability CVE-2022-26517

Security Advisory Description When the BIG-IP CGNAT Large Scale NAT LSN pool is configured on a virtual server and packet filtering is enabled, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. CVE-2022-26517 For more information about packet filters, refer to th...

CVE-2022-26517

creationtimestamp| type| source ---|---|--- 2022-05-05 20:36:47+00:00| seen| https://t.me/cibsecurity/42012...

CVE-2022-26517

On F5 BIG-IP 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, and 13.1.x versions prior to 13.1.5, when the BIG-IP CGNAT Large Scale NAT LSN pool is configured on a virtual server and packet filtering is enabled, undisclosed requests can cause the Traffic Management Microkern...

CVE-2020-26517

A cross-site scripting XSS issue was discovered in Intland codeBeamer ALM 10.x through 10.1.SP4. It is possible to perform XSS attacks through using the WebDAV functionality to upload files to a project Authn users, using the users import functionality Admin only, and changing the login text in t...