EUVD-2025-38438

A vulnerability was determined in Sangfor Operation and Maintenance Security Management System 3.0. Impacted is an unknown function of the file /fort/portallogin of the component Frontend. This manipulation of the argument loginUrl causes command injection. The attack may be initiated remotely. T...

CVE-2025-12916

A vulnerability was determined in Sangfor Operation and Maintenance Security Management System 3.0. Impacted is an unknown function of the file /fort/portallogin of the component Frontend. This manipulation of the argument loginUrl causes command injection. The attack may be initiated remotely. T...

PT-2024-33447 · Unknown · Toast Plugins Animator

Name of the Vulnerable Software and Affected Versions: Toast Plugins Animator versions 3.0.11 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Reflected XSS Cross-site Scripting vulnerability. This allows for Reflected...

SUSE CVE-2024-1019

ModSecurity / libModSecurity 3.0.0 to 3.0.11 is affected by a WAF bypass for path-based payloads submitted via specially crafted request URLs. ModSecurity v3 decodes percent-encoded characters present in request URLs before it separates the URL path component from the optional query string...