4 matches found
MedDream PACS Premium modifyEmail reflected cross-site scripting (XSS) vulnerability
Talos Vulnerability Report TALOS-2025-2263 MedDream PACS Premium modifyEmail reflected cross-site scripting XSS vulnerability January 20, 2026 CVE Number CVE-2025-57881 SUMMARY A reflected cross-site scripting xss vulnerability exists in the modifyEmail functionality of MedDream PACS Premium...
MedDream PACS Premium PACS privilege escalation vulnerability
Talos Vulnerability Report TALOS-2025-2156 MedDream PACS Premium PACS privilege escalation vulnerability July 28, 2025 CVE Number CVE-2025-27724 SUMMARY A privilege escalation vulnerability exists in the login.php functionality of meddream MedDream PACS Premium 7.3.3.840. A specially crafted .php...
Metasploit Wrap-Up 05/09/2025
New Toys and New Techniques This release features a new OPNSense login scanner, a module targeting the Sante PACS path traversal vulnerability, an additional method for stealing Network Access Account credentials via SMB to HTTP relay, and the Erlang/OTP SSH exploit everyone was excited about. Ne...
Philips Vue PACS 路径遍历漏洞
Philips Vue PACS is an image management solution from Philips, a Dutch company. A security vulnerability exists in Philips Vue PACS that stems from a VideoStream feature that allows authenticated users to access files stored outside of the web root directory...