Lucene search
+L

89 matches found

OSV
OSV
added 2025/11/10 3:15 p.m.7 views

CVE-2025-12480

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete...

9.1CVSS5.8AI score0.90532EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/10 2:20 p.m.103 views

CVE-2025-12480

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete...

9.1CVSS0.90532EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/11/10 2:20 p.m.5 views

CVE-2025-12480

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete...

9.1CVSS6.5AI score0.90532EPSS
Exploits1References4
CVE
CVE
added 2025/11/10 2:20 p.m.442 views

CVE-2025-12480

The connected nuclei template confirms an improper access control vulnerability in Gladinet Triofox and CentreStack. Before versions 12.91.1126.65588 (Triofox) and 12.10.595.65696 (CentreStack), unauthenticated users can reach the /management/admindatabase.aspx endpoint, exposing sensitive databa...

9.1CVSS6.4AI score0.90532EPSS
In wildExploits1References5Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2025/11/10 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-12480

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete...

9.1CVSS5.8AI score0.90532EPSS
In wildExploits1References100
Positive Technologies
Positive Technologies
added 2025/11/10 12:0 a.m.3 views

PT-2025-46160

Name of the Vulnerable Software and Affected Versions Triofox versions prior to 16.7.10368.56560 Description Triofox is vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete. This vulnerability, designated CVE-2025-12480, allows...

9.4CVSS6.6AI score0.90532EPSS
Exploits1References101
Tenable Nessus
Tenable Nessus
added 2025/11/10 12:0 a.m.8 views

Gladinet CentreStack/Triofox < 16.10.10408.56683 Local File Inclusion

Gladinet CentreStack/Triofox versions prior to 16.10.10408.56683 are vulnerable to a Local File Inclusion LFI vulnerability. An unauthenticated attacker could exploit this issue to read arbitrary files on the affected system, potentially leading to information disclosure. The vulnerability exists...

7.5CVSS6.6AI score0.92094EPSS
Exploits4References2
CNNVD
CNNVD
added 2025/11/10 12:0 a.m.8 views

TrioFox 安全漏洞

TrioFox is a remote access software from TrioFox USA. A security vulnerability exists in versions prior to Triofox 16.7.10368.56560, which stems from improper access control and could result in access to the initial settings page...

9.1CVSS6.8AI score0.90532EPSS
Exploits1References5
The Hacker News
The Hacker News
added 2025/11/05 6:12 a.m.10 views

CISA Adds Gladinet and CWP Flaws to KEV Catalog Amid Active Exploitation Evidence

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday added two security flaws impacting Gladinet and Control Web Panel CWP to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation in the wild. The vulnerabilities in question are listed below ...

9.8CVSS8.9AI score0.99589EPSS
Exploits8
CISA
CISA
added 2025/11/04 12:0 p.m.11 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-11371link is external Gladinet CentreStack and Triofox Files or Directories Accessible to External Parties Vulnerability CVE-2025-48703link is external CWP...

9CVSS7.2AI score0.99589EPSS
In wildExploits7References7
CISA KEV Catalog
CISA KEV Catalog
added 2025/11/04 12:0 a.m.8 views

Gladinet CentreStack and Triofox Files or Directories Accessible to External Parties Vulnerability

Gladinet CentreStack and Triofox contains a files or directories accessible to external parties vulnerability that allows unintended disclosure of system files...

7.5CVSS6.8AI score0.92094EPSS
In wildExploits4
GithubExploit
GithubExploit
added 2025/10/15 2:10 p.m.232 views

Exploit for CVE-2025-11371

CVE-2025-11371 Overview This repository contains a proof-...

9.8CVSS6.8AI score0.93842EPSS
Exploits8
RedhatCVE
RedhatCVE
added 2025/10/10 7:17 p.m.8 views

CVE-2025-11371

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and...

6.2CVSS6.7AI score0.92094EPSS
Exploits4References1
GithubExploit
GithubExploit
added 2025/10/10 10:26 a.m.237 views

Exploit for CVE-2025-11371

CVE-2025-11371 In the default installation and configuration...

6.1CVSS6.6AI score0.92094EPSS
Exploits4
The Hacker News
The Hacker News
added 2025/10/10 9:34 a.m.12 views

From LFI to RCE: Active Exploitation Detected in Gladinet and TrioFox Vulnerability

Cybersecurity company Huntress said it has observed active in-the-wild exploitation of an unpatched security flaw impacting Gladinet CentreStack and TrioFox products. The zero-day vulnerability, tracked as CVE-2025-11371 CVSS score: 6.1, is an unauthenticated local file inclusion bug that allows...

9.8CVSS10AI score0.93842EPSS
Exploits8
EUVD
EUVD
added 2025/10/09 6:30 p.m.5 views

EUVD-2025-33408

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and...

6.1CVSS6.3AI score0.92094EPSS
Exploits4References2
OSV
OSV
added 2025/10/09 5:15 p.m.1 views

CVE-2025-11371

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and...

7.5CVSS5.7AI score0.92094EPSS
Exploits4References3
NVD
NVD
added 2025/10/09 5:15 p.m.5 views

CVE-2025-11371

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and...

7.5CVSS0.92094EPSS
Exploits4References3
Vulnrichment
Vulnrichment
added 2025/10/09 4:50 p.m.4 views

CVE-2025-11371 Gladinet CentreStack and TrioFox Local File Inclusion Flaw

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and...

6.4AI score0.92094EPSS
Exploits4References1
ATTACKERKB
ATTACKERKB
added 2025/10/09 4:50 p.m.4 views

CVE-2025-11371

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and...

7.5CVSS5.4AI score0.92094EPSS
In wildExploits4References4
Rows per page
Query Builder