Netwrix Directory Manager 安全漏洞

Netwrix Directory Manager is a group and user management software from Netwrix. A security vulnerability exists in Netwrix Directory Manager versions prior to 11.1.25162.02, which stems from a static code injection vulnerability that could lead to elevation of privilege...

CVE-2025-54393

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows Static Code Injection. Authenticated users can obtain administrative access...

CVE-2025-54393

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows Static Code Injection. Authenticated users can obtain administrative access...

PT-2025-32279 · Imanami +1 · Groupid +1

Name of the Vulnerable Software and Affected Versions: Netwrix Directory Manager versions 11.0.0.0 through 11.1.25162.02 Description: Netwrix Directory Manager formerly Imanami GroupID is susceptible to a static code injection issue. Authenticated users can potentially gain administrative access...

CVE-2025-54393

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 through 11.1.25162.02 is affected by a static code injection vulnerability that authenticated users can exploit to obtain administrative access. The issue is documented under CVE-2025-54393. Remediation: upgrade to version 11.1.25162.0...

CVE-2025-36595

Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

CVE-2025-36595

Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

CVE-2025-36595

Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

CVE-2025-36595

Dell Unisphere for PowerMax vApp 9.2.4.x is affected by a Static Code Injection vulnerability (CVE-2025-36595). A high-privileged attacker with remote access could potentially achieve code execution via the vulnerability. The documented attack surface indicates network access is required with low...

CVE-2025-36595

Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

CVE-2025-36595

Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

PT-2025-27150 · Dell · Dell Unisphere For Powermax Vapp

Name of the Vulnerable Software and Affected Versions: Dell Unisphere for PowerMax vApp version 9.2.4.x Description: The issue is related to an Improper Neutralization of Directives in Statically Saved Code, also known as 'Static Code Injection'. This could allow a high-privileged attacker with...

Dell Unisphere 安全漏洞

Dell Unisphere is a unified storage management platform from Dell. A static code injection vulnerability exists in Dell Unisphere for PowerMax vApp, which arises from failure to properly neutralize instructions in static saved code. An attacker could exploit this vulnerability to execute arbitrar...

Client-Side Zero-Shot LLM Inference for Comprehensive In-Browser URL Analysis

Malicious websites and phishing URLs pose an ever-increasing cybersecurity risk, with phishing attacks growing by 40% in a single year. Traditional detection approaches rely on machine learning classifiers or rule-based scanners operating in the cloud, but these face significant challenges in...

CVE-2011-4337

Static code injection vulnerability in translate.php in Support Incident Tracker aka SiT! 3.45 through 3.65 allows remote attackers to inject arbitrary PHP code into an executable language file in the i18n directory via the lang variable...

CVE-2011-4825

Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted...

CVE-2011-5147

Static code injection vulnerability in ajaxsavename.php in the Ajax File Manager module in the tinymce plugin in FreeWebshop 2.2.9 R2 and earlier allows remote attackers to inject arbitrary PHP code into data.php via the selected document, as demonstrated by a call to ajaxfilecut.php and then to...

CVE-2009-0275

Static code injection vulnerability in admin.php in Ryneezy phoSheezy 0.2 allows remote authenticated administrators to inject arbitrary PHP code into config/header via the header parameter. NOTE: this can be exploited by unauthenticated attackers by leveraging CVE-2009-0250. NOTE: the provenance...

CVE-2009-4646

Static code injection vulnerability in the administrative web interface in Accellion Secure File Transfer Appliance allows remote authenticated administrators to inject arbitrary shell commands by appending them to a request to update the SNMP public community string...

CVE-2002-2319

Static code injection vulnerability in users.php in MySimpleNews allows remote attackers to inject arbitrary PHP code and HTML via the 1 LOGIN, 2 DATA, and 3 MESS parameters, which are inserted into news.php3...