EUVD-2025-26702

Malicious code in bioql PyPI...

CVE-2025-7388

It was possible to perform Remote Command Execution RCE via Java RMI interface in the OpenEdge AdminServer, allowing authenticated users to inject and execute OS commands under the delegated authority of the AdminServer process. An RMI interface permitted manipulation of a configuration property...

CVE-2025-7388 Authenticated Command Injection via configuration parameter manipulation in exposed RMI interface

It was possible to perform Remote Command Execution RCE via Java RMI interface in the OpenEdge AdminServer, allowing authenticated users to inject and execute OS commands under the delegated authority of the AdminServer process. An RMI interface permitted manipulation of a configuration property...

PT-2025-35938

Name of the Vulnerable Software and Affected Versions OpenEdge AdminServer affected versions not specified Description The OpenEdge AdminServer is susceptible to Remote Command Execution RCE via its Java RMI interface. Authenticated users can inject and execute OS commands under the delegated...

PT-2024-2025

Name of the Vulnerable Software and Affected Versions: Progress OpenEdge Authentication Gateway versions prior to 11.7.19 Progress OpenEdge AdminServer versions prior to 11.7.19 Progress OpenEdge Authentication Gateway versions prior to 12.2.14 Progress OpenEdge AdminServer versions prior to...

PT-2023-16960 · Progress · Openedge Authentication Gateway +1

Name of the Vulnerable Software and Affected Versions: Weaver Xtreme Theme for WordPress versions up to and including 5.0.7 OpenEdge Authentication Gateway and AdminServer versions prior to 11.7.19, 12.2.14, and 12.8.1 Description: The issue concerns stored Cross-Site Scripting in the Weaver Xtre...