PT-2026-2444

Name of the Vulnerable Software and Affected Versions Progress Flowmon ADS versions prior to 12.5.4 and 13.0.1 Description An SQL injection issue exists in Progress Flowmon ADS that allows authenticated users to execute unintended SQL queries and commands. The issue allows for the execution of...

CVE-2023-31140 OpenProject user sessions not terminated after activation of 2FA

OpenProject is open source project management software. Starting with version 7.4.0 and prior to version 12.5.4, when a user registers and confirms their first two-factor authentication 2FA device for an account, existing logged in sessions for that user account are not terminated. Likewise, if a...

PT-2021-5413 · Apple +5 · Ios +6

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 12.5.4 Description: A memory corruption issue was addressed with improved state management. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issu...