CGA-7235-W595-G588

Bulletin has no description...

CVE-2020-7235

UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= profile title...

EUVD-2025-7235

Malicious code in bioql PyPI...

CVE-2025-7235

IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

CVE-2025-7235

CVE-2025-7235 affects IrfanView CADImage Plugin. The issue is a DXF file parser buffer overflow caused by improper validation of user-supplied data, leading to an out-of-bounds write and remote code execution in the plugin context. Exploitation requires user interaction (visiting a malicious page...

CVE-2025-7235

creationtimestamp| type| source ---|---|--- 2025-07-08 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-485/...

Ubuntu 20.04 LTS : Linux kernel (Azure) Unknown kernel vulnerabilities (USN-7235-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7235-2 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

CVE-2024-7235

AVG AntiVirus Free Link Following Denial-of-Service Vulnerability. This vulnerability allows local attackers to create a denial-of-service condition on affected installations of AVG AntiVirus Free. An attacker must first obtain the ability to execute low-privileged code on the target system in...

CVE-2023-7235

creationtimestamp| type| source ---|---|--- 2024-02-21 12:26:39+00:00| seen| https://t.me/ctinow/189520 2024-02-21 12:31:27+00:00| seen| https://t.me/ctinow/189523 2024-02-22 21:14:56+00:00| seen| https://t.me/arpsyndicate/4052...

CVE-2023-7235 vulnerabilities

Vulnerabilities for packages: openvpn...

CVE-2023-7235 vulnerabilities

Vulnerabilities for packages: openvpn...

CVE-2014-7235

creationtimestamp| type| source ---|---|--- 2020-11-05 16:55:13+00:00| seen| MISP/9fbd6001-b34c-4886-8240-d3e93a433faf 2020-11-05 19:44:38+00:00| seen| MISP/77f74cbc-dd0e-4c6e-a9c4-f15e1a87c0f9 2020-11-05 19:44:38+00:00| seen| MISP/d60bbf52-1b06-4ddd-b894-c1da7f68f083 2020-11-05 19:44:39+00:00|...

CVE-2020-7235

CVE-2020-7235 involves UHP UHP-100 devices (versions 3.4.1.15, 3.4.2.4, 3.4.3) where a cross-site scripting (XSS) vulnerability exists due to improper validation of client data by the WEB application. Exploitation details, including vector or in-the-wild status, are not provided in the supplied d...

CVE-2019-7235

The CVE-2019-7235 entry concerns idreamsoft iCMS 7.0.13. A directory traversal flaw exists in admincp.php?app=apps&do=save that can be triggered through _app=/../ to designate an arbitrary directory; this path can then be deleted via an admincp.php?app=apps&do=uninstall request. The connected doc...

CVE-2018-7235

A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow arbitrary system file download due to lack of validation of the shell meta characters with the value of 'system.download.sdfile'...

CVE-2018-7235

Schneider Electric Pelco Sarix Professional devices running firmware before 3.29.67 are vulnerable to arbitrary system file download caused by lack of validation of shell metacharacters in the system.download.sd_file parameter. Exploitation is network-vector with high impact (CVE-2018-7235; CVSS ...

CVE-2017-7235

CVE-2017-7235 affects cloudflare-scrape (Python module). The issue enables a malicious page to cause arbitrary Python code execution against a user of cloudflare-scrape versions 1.6.6 through 1.7.1. Root cause details describe code execution when scraping a crafted page; the advisory notes the fi...

Freepbx 2.11.1.5 - Remote Code Execution Vulnerability

Exploit for php platform in category web applications Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched...

FreePBX Remote Code Execution

Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched/ Trixbox/freepbx/elastix/pbxinflash/ Tested on: Cento...

Freepbx < 2.11.1.5 - Remote Code Execution

Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched/ Trixbox/freepbx/elastix/pbxinflash/ Tested on: Cento...