CVE-2025-62157

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Argo Workflows versions prior to 3.6.12 and versions 3.7.0 through 3.7.2 expose artifact repository credentials in plaintext in workflow-controller pod logs. An attacker with permissio...

CVE-2025-62157

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Argo Workflows versions prior to 3.6.12 and versions 3.7.0 through 3.7.2 expose artifact repository credentials in plaintext in workflow-controller pod logs. An attacker with permissio...

PT-2024-30243 · Ctfd · Ctfd

Name of the Vulnerable Software and Affected Versions: CTFd versions 2.0.0 through 3.7.2 Description: The issue concerns a lack of access control in the ChallengeSolves endpoint /api/v1/challenges//solves that allows authenticated users to retrieve a list of users who have solved a challenge,...

PT-2023-10302 · WordPress · Wp Ultimate Csv Importer Plugin

Name of the Vulnerable Software and Affected Versions: WP Ultimate CSV Importer Plugin version 3.7.2 Description: A problematic vulnerability has been found in the WP Ultimate CSV Importer Plugin, affecting an unknown part, which leads to cross-site request forgery. The attack can be initiated...

PT-2020-8464

Name of the Vulnerable Software and Affected Versions: Mattermost Server versions prior to 3.7.3 Mattermost Server versions prior to 3.6.5 Description: An issue was discovered in Mattermost Server. A System Administrator can place a SAML certificate at an arbitrary pathname. Recommendations: For...