SolarWinds Database Performance Analyzer 11.1.457 - Cross-Site Scripting

SolarWinds Database Performance Analyzer 11.1.457 contains a reflected cross-site scripting vulnerability in its idcStateError component, where the page parameter is reflected into the HREF of the 'Try Again' Button on the page, aka a /iwc/idcStateError.iwc?page= URI. id: CVE-2018-19386 info: nam...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper checking of the isusertask auxiliary function. This vulnerability could potentially caus...

CVE-2018-19386

SolarWinds Database Performance Analyzer 11.1.457 contains an instance of Reflected XSS in its idcStateError component, where the page parameter is reflected into the HREF of the 'Try Again' Button on the page, aka a /iwc/idcStateError.iwc?page= URI...

SolarWinds Database Performance Analyzer (DPA) Installed (Linux)

Binary data solarwindsdpanixinstalled.nbin...

EUVD-2019-0965

Malware in sbrugna...

EUVD-2018-8095

Malware in sbrugna...

EUVD-2025-24229

Malicious code in bioql PyPI...

EUVD-2022-40712

Malicious code in bioql PyPI...

SolarWinds Database Performance Analyzer (DPA) Installed (Windows)

Binary data solarwindsdpawininstalled.nbin...

CVE-2025-26398

SolarWinds Database Performance Analyzer was found to contain a hard-coded cryptographic key. If exploited, this vulnerability could lead to a machine-in-the-middle MITM attack against users. This vulnerability requires additional software not installed by default, local access to the server and...

CVE-2025-26398

CVE-2025-26398 is documented as a vulnerability in SolarWinds Database Performance Analyzer where a hard-coded cryptographic key exists. According to the sources, exploitation could enable a local attacker with administrator privileges (and with access to the host where the additional software is...

CVE-2025-26398 SolarWinds Database Performance Analyzer Hard-coded Cryptographic Key Vulnerability

SolarWinds Database Performance Analyzer was found to contain a hard-coded cryptographic key. If exploited, this vulnerability could lead to a machine-in-the-middle MITM attack against users. This vulnerability requires additional software not installed by default, local access to the server and...

PT-2025-32636 · Solarwinds · Solarwinds Database Performance Analyzer

Name of the Vulnerable Software and Affected Versions: SolarWinds Database Performance Analyzer affected versions not specified Description: SolarWinds Database Performance Analyzer contains a hard-coded cryptographic key. Exploitation of this issue could lead to a machine-in-the-middle MITM atta...

CVE-2019-0158

Insufficient path checking in the installation package for IntelR Graphics Performance Analyzer for Linux version 18.4 and before may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2018-16243

SolarWinds Database Performance Analyzer DPA 11.1.468 and 12.0.3074 have several persistent XSS vulnerabilities, related to logViewer.iwc, centralManage.cen, userAdministration.iwc, database.iwc, alertManagement.iwc, eventAnnotations.iwc, and central.cen...

PT-2025-6682 · Intel · Intel Gpa +1

Name of the Vulnerable Software and Affected Versions: IntelR GPA and IntelR GPA Framework affected versions not specified Description: The issue concerns incorrect default permissions for some software installers, potentially allowing an authenticated user to enable escalation of privilege via...

CVE-2023-33231 XSS in SolarWinds Database Performance Analyzer 2023.2

XSS attack was possible in DPA 2023.2 due to insufficient input validation...

CVE-2023-23838 Directory traversal and file enumeration vulnerability: Database Performance Analyzer (DPA) 2023.1

Directory traversal and file enumeration vulnerability which allowed users to enumerate to different folders of the server...

PT-2023-19245 · Solarwinds · Database Performance Analyzer

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A directory traversal and file enumeration issue allows users to enumerate different folders of the server. Recommendations: At the moment, there is no information about a newer version...

SolarWinds Database Performance Analyzer 路径遍历漏洞

SolarWinds Database Performance Analyzer is a set of database performance analyzers from SolarWinds Inc. in the United States. The product is used for SQL query performance monitoring, analysis and tuning, etc. A security vulnerability exists in SolarWinds Database Performance Analyzer version...