CVE-2025-62001

BullWall Ransomware Containment contains excluded file paths, such as '$recycle.bin' that are not monitored. An attacker with file write permissions could bypass detection by renaming a directory. Versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 were confirmed to be affected; other versions before...

CVE-2025-62003

BullWall Server Intrusion Protection has a noticeable configuration-dependent delay before the MFA check for RDP connections. A remote, authenticated attacker can potentially bypass detection during this delay. Versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 are affected. Other versions may also ...

CVE-2025-62002

BullWall Ransomware Containment considers the number of files modified to trigger detection. An authenticated attacker could encrypt a single possibly large file without triggering detection if thresholds are configured to require multiple file changes. The number of files to trigger detection ca...

CVE-2025-62000

BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection method that evaluates file content based on header bytes. An authenticated attacker could encrypt files, preserving the first four bytes and preventing this particular method fro...

CVE-2025-62003

CVE-2025-62003 affects BullWall Server Intrusion Protection; a configuration-dependent delay before MFA check for RDP could allow a remote, authenticated attacker with administrative privileges to bypass detection during the delay. Affected versions: 4.6.0.0, 4.6.0.6, 4.6.0.7, 4.6.1.4 (other vers...

CVE-2025-62002

BullWall Ransomware Containment considers the number of files modified to trigger detection. An authenticated attacker could encrypt a single possibly large file without triggering detection if thresholds are configured to require multiple file changes. The number of files to trigger detection ca...

CVE-2025-62000

BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection method that evaluates file content based on header bytes. An authenticated attacker could encrypt files, preserving the first four bytes and preventing this particular method fro...

BullWall Ransomware Containment 安全漏洞

BullWall Ransomware Containment is a ransomware protection software from BullWall Denmark. A security vulnerability exists in BullWall Ransomware Containment versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from an incomplete file check and could lead to bypassing detection...

BullWall Server Intrusion Protection 安全漏洞

BullWall Server Intrusion Protection is a server security software from the Danish company BullWall. A security vulnerability exists in BullWall Server Intrusion Protection versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from an improperly sequenced initialization of the service and...

PT-2025-52341

Name of the Vulnerable Software and Affected Versions BullWall Server Intrusion Protection versions 4.6.0.0 through 4.6.1.4 Description BullWall Server Intrusion Protection exhibits a delay before Multi-Factor Authentication MFA is checked when connecting via Remote Desktop Protocol RDP. A remote...

EUVD-2017-11058

Malware in sbrugna...

Dell AppSync File Upload Vulnerability

Dell AppSync is a data replication management application from Dell USA. A file upload vulnerability exists in Dell AppSync version 4.6.0.0, which stems from the application's lack of effective validation of uploaded files. The vulnerability can be exploited to remotely execute arbitrary code by...

CVE-2020-8436

XSS was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress via the rmformid, rmtr, or formname parameter...

CVE-2020-8435

An issue was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress. There is SQL injection via the rmanalyticsshowform rmformid parameter...

CVE-2017-20042

A vulnerability has been found in Navetti PricePoint 4.6.0.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection Blind. The attack can be launched remotely. Upgrading to version 4.7.0.0 is able to address this issue. It i...

PT-2024-19439 · Dell Emc · Dell Emc Appsync

Name of the Vulnerable Software and Affected Versions: Dell EMC AppSync versions 4.2.0.0 through 4.6.0.0 Description: The issue allows a high privileged remote attacker to potentially exploit an exposure of sensitive information vulnerability in AppSync server logs, leading to the disclosure of...

PT-2023-23802 · Dell · Dell Appsync

Name of the Vulnerable Software and Affected Versions: Dell AppSync versions 4.4.0.0 through 4.6.0.0 Description: The issue is related to an improper access control vulnerability in the Embedded Service Enabler component. A local malicious user could potentially exploit this vulnerability during...

Cross site request forgery (csrf)

A vulnerability was found in Navetti PricePoint 4.6.0.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading t...

PT-2022-7916 · Navetti · Navetti Pricepoint

Name of the Vulnerable Software and Affected Versions: Navetti PricePoint version 4.6.0.0 Description: A vulnerability was found in Navetti PricePoint, classified as problematic. The issue affects some unknown functionality and leads to basic cross site scripting Persistent. The attack can be...

Navetti PricePoint 跨站脚本漏洞

Navetti PricePoint is a unique pricing software solution from Navetti. Designed to allow companies with international sales operations to develop locally based pricing structures that take unique local factors into account to achieve the best price for their product or service. A cross-site...