96 matches found
Oracle Business Process Management Suite (14.1.2.0.0) (April 2026 CPU)
The version of Oracle Business Process Management Suite installed on the remote host is affected by a vulnerability, as referenced in the April 2026 CPU advisory: - Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware component: Composer Apache Commons...
Oracle Business Process Management Suite (12.2.1.4.0) (April 2026 CPU)
The version of Oracle Business Process Management Suite installed on the remote host is affected by a vulnerability, as referenced in the April 2026 CPU advisory: - Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware component: Document Service...
CVE-2026-34284
Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware component: Human workflow 11g+. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
Oracle Business Process Management Suite (12.2.1.4.0) (January 2026 CPU)
The version of Oracle Business Process Management Suite installed on the remote host is affected by a vulnerability, as referenced in the January 2026 CPU advisory: - Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware component: Composer Apache Commo...
TIM BPM Suite和TIM FLOW 安全漏洞
TIM BPM Suite and TIM FLOW are both business process management software from TIM Germany. A security vulnerability exists in TIM BPM Suite,TIM FLOW 9.1.2 and earlier versions, which originates from SQL injection and could lead to unauthorized access to the database...
CVE-2025-15098 YunaiV yudao-cloud Business Process Management BpmSyncHttpRequestTrigger server-side request forgery
A vulnerability was determined in YunaiV yudao-cloud up to 2025.11. This affects the function BpmHttpCallbackTrigger/BpmSyncHttpRequestTrigger of the component Business Process Management. Executing manipulation of the argument url/header/body can lead to server-side request forgery. The attack m...
CVE-2025-15098 YunaiV yudao-cloud Business Process Management BpmSyncHttpRequestTrigger server-side request forgery
A vulnerability was determined in YunaiV yudao-cloud up to 2025.11. This affects the function BpmHttpCallbackTrigger/BpmSyncHttpRequestTrigger of the component Business Process Management. Executing manipulation of the argument url/header/body can lead to server-side request forgery. The attack m...
EUVD-2025-205414
A vulnerability was determined in YunaiV yudao-cloud up to 2025.11. This affects the function BpmHttpCallbackTrigger/BpmSyncHttpRequestTrigger of the component Business Process Management. Executing manipulation of the argument url/header/body can lead to server-side request forgery. The attack m...
CVE-2025-15098
The CVE-2025-15098 occurs in YunaiV yudao-cloud (Business Process Management) affecting the BpmHttpCallbackTrigger/BpmSyncHttpRequestTrigger components. A server-side request forgery (SSRF) can be exploited by manipulating the url/header/body arguments, with remote attacker capability and public ...
yudao-cloud 代码问题漏洞
yudao-cloud is a backend management system for YunaiV individual developers. A code issue vulnerability exists in yudao-cloud version 2025.11 and earlier, which stems from the incorrect manipulation of the url/header/body parameters by the BpmHttpCallbackTrigger/BpmSyncHttpRequestTrigger function...
EUVD-2018-14955
Malware in sbrugna...
EUVD-2019-12345
Malware in sbrugna...
EUVD-2025-25211
Malicious code in bioql PyPI...
EUVD-2024-46856
Malicious code in bioql PyPI...
EUVD-2024-44351
Malicious code in bioql PyPI...
CVE-2025-50434
A security issue has been identified in Appian Enterprise Business Process Management version 25.3. The vulnerability is related to incorrect access control, which under certain conditions could allow unauthorized access to information. NOTE: this has been disputed because the CVE Record...
CVE-2025-50434
A security issue has been identified in Appian Enterprise Business Process Management version 25.3. The vulnerability is related to incorrect access control, which under certain conditions could allow unauthorized access to information. NOTE: this has been disputed because the CVE Record...
CVE-2025-50434
A security issue has been identified in Appian Enterprise Business Process Management version 25.3. The vulnerability is related to incorrect access control, which under certain conditions could allow unauthorized access to information. NOTE: this has been disputed because the CVE Record...
CVE-2025-50434
A security issue has been identified in Appian Enterprise Business Process Management version 25.3. The vulnerability is related to incorrect access control, which under certain conditions could allow unauthorized access to information. NOTE: this has been disputed because the CVE Record...
PT-2025-33745 · Appian · Appian Enterprise Business Process Management
Name of the Vulnerable Software and Affected Versions: Appian Enterprise Business Process Management version 25.3 Description: A security issue has been identified related to incorrect access control. Under certain conditions, this could allow unauthorized access to information. Recommendations: ...