158 matches found
PT-2026-27381
PhreeBooks ERP 5.2.3 contains a remote code execution vulnerability in the image manager that allows authenticated attackers to upload and execute arbitrary PHP files by bypassing file extension controls. Attackers can upload malicious PHP files through the image manager endpoint and execute them...
PhreeSoft PhreeBooks ERP 代码问题漏洞
PhreeSoft PhreeBooks ERP is a business resource planning software provided by PhreeSoft Corporation, which offers enterprise financial management and business process handling functions. Version 5.2.3 of PhreeSoft PhreeBooks ERP contains a code vulnerability. This vulnerability stems from a remot...
PT-2026-27364
PhreeBooks ERP 5.2.3 contains an arbitrary file upload vulnerability in the Image Manager component that allows authenticated attackers to upload malicious files by submitting requests to the image upload endpoint. Attackers can upload PHP files through the imgFile parameter to the...
EUVD-2026-10629
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally...
CVE-2026-25166
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally...
CVE-2026-25166
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally...
CVE-2026-25166
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally...
CVE-2026-25166 Windows System Image Manager Assessment and Deployment Kit (ADK) Remote Code Execution Vulnerability
...
CVE-2026-25166
CVE-2026-25166 /Windows System Image Manager ADK: A.local, low-privilege, no-user-interaction remote code execution vulnerability with high impact (C/H/I/A) per CVSS 3.1; fix is an official update. Exploitation details are not provided in the document.
March 10, 2026—KB5079466 (OS Build 28000.1719)
March 10, 2026—KB5079466 OS Build 28000.1719 This security update for Windows 11, version 26H1 KB5079466, includes the latest security improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates, optional...
Windows System Image Manager Assessment and Deployment Kit (ADK) Remote Code Execution Vulnerability
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally...
PT-2026-24293
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally...
GHSA-8JVR-VH7G-F8GX vulnerabilities
Vulnerabilities for packages: velero, cluster-autoscaler, gitlab-rails-ce-fips, gcp-compute-persistent-disk-csi-driver-fips, redpanda, terragrunt, git-lfs-fips, keda-fips, harbor-registry-fips, osv-scanner, postgres-operator-fips, azure-workload-identity-webhook, bank-vaults-fips, kiali, nsc-fips...
CVE-2021-47904
PhreeBooks 5.2.3 contains an authenticated file upload vulnerability in the Image Manager that allows remote code execution. Attackers can upload a malicious PHP web shell by exploiting unrestricted file type uploads to gain command execution on the server...
CVE-2021-47904
PhreeBooks 5.2.3 contains an authenticated file upload vulnerability in the Image Manager that allows remote code execution. Attackers can upload a malicious PHP web shell by exploiting unrestricted file type uploads to gain command execution on the server...
CVE-2021-47904
PhreeBooks 5.2.3 contains an authenticated file upload vulnerability in the Image Manager that allows remote code execution. Attackers can upload a malicious PHP web shell by exploiting unrestricted file type uploads to gain command execution on the server...
CVE-2021-47904 PhreeBooks 5.2.3 - Remote Code Execution
PhreeBooks 5.2.3 contains an authenticated file upload vulnerability in the Image Manager that allows remote code execution. Attackers can upload a malicious PHP web shell by exploiting unrestricted file type uploads to gain command execution on the server...
CVE-2021-47904 PhreeBooks 5.2.3 - Remote Code Execution
PhreeBooks 5.2.3 contains an authenticated file upload vulnerability in the Image Manager that allows remote code execution. Attackers can upload a malicious PHP web shell by exploiting unrestricted file type uploads to gain command execution on the server...
CVE-2021-47904
CVE-2021-47904 affects PhreeBooks 5.2.3. An authenticated attacker can upload a malicious PHP web shell via the Image Manager’s unrestricted file-type uploads, enabling remote code execution on the server. Impact: remote code execution with high confidentiality, integrity, and availability implic...
PhreeBooks security vulnerabilities
PhreeBooks is a business resource planning and accounting software developed by the PhreeBooks company. Version 5.2.3 of PhreeBooks contains a security vulnerability, which stems from a file upload vulnerability in the Image Manager, potentially allowing remote code execution...