CVE-2026-34785

creationtimestamp| type| source ---|---|--- 2026-04-02 19:26:18+00:00| seen| Telegram/zX6Kqs44rDek2r3jgp5vCS4jdZwe09icUbxsylGXOdI3O8 2026-04-03 06:01:19+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mil27ua5vw2c 2026-04-03 06:05:34+00:00| seen|...

CVE-2026-34785

Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Static determines whether a request should be served as a static file using a simple string prefix check. When configured with URL prefixes such as "/css", it matches any request path that begins with...

CVE-2022-34785

Jenkins build-metrics Plugin 1.3 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about jobs otherwise inaccessible to them...

CVE-2024-34785

An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution...

CVE-2024-34785

CVE-2024-34785 details (Ivanti Endpoint Manager EPM): An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update, allows a remote authenticated attacker with admin privileges to achieve remote code execution. Affected versions include Ivanti Endpoint Manager 2024 and...

Ivanti Releases Urgent Security Updates for Endpoint Manager Vulnerabilities

Ivanti has released software updates to address multiple security flaws impacting Endpoint Manager EPM, including 10 critical vulnerabilities that could result in remote code execution. A brief description of the issues is as follows - CVE-2024-29847 CVSS score: 10.0 - A deserialization of...

CVE-2024-34785

creationtimestamp| type| source ---|---|--- 2024-09-11 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1369 2024-09-12 04:44:40+00:00| seen| https://t.me/cvedetector/5421...

CVE-2022-34785

creationtimestamp| type| source ---|---|--- 2022-06-30 22:38:51+00:00| seen| https://t.me/cibsecurity/45435...

CVE-2022-34785

Jenkins build-metrics Plugin 1.3 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about jobs otherwise inaccessible to them...

CVE-2022-34785

CVE-2022-34785 affects the Jenkins build-metrics Plugin (version 1.3 and earlier). The issue is that the plugin does not perform permission checks on multiple HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about jobs they would normally not have access to. P...

CVE-2021-34785

creationtimestamp| type| source ---|---|--- 2021-09-09 12:29:18+00:00| seen| https://t.me/cibsecurity/28547...

CVE-2021-34785 Cisco BroadWorks CommPilot Application Software Vulnerabilities

Multiple vulnerabilities in Cisco BroadWorks CommPilot Application Software could allow an authenticated, remote attacker to delete arbitrary user accounts or gain elevated privileges on an affected system...

CVE-2021-34785

Cisco BroadWorks CommPilot Application Software contains multiple authentication/authorization vulnerabilities in its web interface that an authenticated remote attacker could exploit to delete arbitrary user accounts or escalate privileges on an affected system. The issues are documented across ...

CVE-2021-34785 Cisco BroadWorks CommPilot Application Software Vulnerabilities

Multiple vulnerabilities in Cisco BroadWorks CommPilot Application Software could allow an authenticated, remote attacker to delete arbitrary user accounts or gain elevated privileges on an affected system...

CVE-2010-4821

creationtimestamp| type| source ---|---|--- 2010-09-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/34785...

CVE-2025-34785

...

CVE-2025-34785

CVE-2025-34785 is rejected/not used and does not represent an active vulnerability entry.