24 matches found
EUVD-2026-25377
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Versions prior to 8.2.6.4 have a SQL injection vulnerability in the haproxysectionsave function in app/routes/config/routes.py. The serverip parameter, sourced from the URL path, is passed unsanitized through...
CVE-2025-14345
A post-authentication flaw in the network two-phase commit protocol used for cross-shard transactions in MongoDB Server may lead to logical data inconsistencies under specific conditions which are not predictable and exist for a very short period of time. This error can cause the transaction...
PT-2025-45135
Name of the Vulnerable Software and Affected Versions Dell CloudLink versions prior to 8.2 Description A privileged user with knowledge of a password can execute command injection to gain control of the system. This allows an attacker to potentially compromise the affected system. Recommendations...
CVE-2025-61754
Vulnerability in the Oracle BI Publisher product of Oracle Analytics component: Web Service API. Supported versions that are affected are 7.6.0.0.0 and 8.2.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle BI Publisher...
CVE-2024-48119
Vtiger CRM v8.2.0 has a HTML Injection vulnerability in the module parameter. Authenticated users can inject arbitrary HTML...
CVE-2024-51051
AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account...
CVE-2019-19664
A CSRF vulnerability exists in the Web Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server Web settings at RAPR/WebSettingsGeneralSet.html...
CVE-2024-13804
Unauthenticated RCE in HPE Insight Cluster Management Utility...
CVE-2024-32854
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management vulnerability. A local high privilege attacker could potentially exploit this vulnerability, leading to privilege escalation...
IBM TXSeries for Multiplatforms 安全漏洞
IBM TXSeries for Multiplatforms is a transaction monitoring and management software product from International Business Machines IBM designed to support distributed transaction processing on multiple platforms. A security vulnerability exists in IBM TXSeries for Multiplatforms version 8.2, which...
WordPress Media Library Folders plugin <= 8.2.0 - Reflected Cross-Site Scripting via 's' vulnerability
Reflected Cross-Site Scripting via 's' vulnerability discovered by Krzysztof Zając in WordPress Plugin Media Library Folders versions = 8.2.0...
PT-2023-26560 · Unknown · Cypress-Image-Snapshot
Name of the Vulnerable Software and Affected Versions: cypress-image-snapshot versions prior to 8.0.2 Description: The issue allows a user to pass a relative file path for the snapshot name, potentially reaching outside of the project directory into the machine running the test. This can be...
SUSE CVE-2022-1851
Out-of-bounds Read in GitHub repository vim/vim prior to 8.2...
CVE-2022-29853
OX App Suite through 8.2 allows XSS via a certain complex hierarchy that forces use of Show Entire Message for a huge HTML e-mail message...
CVE-2022-42306
An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products. An attacker with local access can send a crafted packet to pbxexchange during registration and cause a NULL pointer exception, effectively crashing the pbxexchange process...
CVE-2022-2231
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2...
UBUNTU-CVE-2022-2231
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2...
CVE-2022-2182 Heap-based Buffer Overflow in vim/vim
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2...
Hotfix XS82E020 - For Citrix Hypervisor 8.2
Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2. Information About this Hotfix Component| Details ---|--- Prerequisite| None Post-update tasks| Restart the XAPI Toolstack Content live patchable| No Baselines for Live Patch| N/A Revision History|...
Pegasystem PEGA Platform Resource Management Error Vulnerability
Pegasystem PEGA Platform is a suite of application development platforms from Pegasystem UK. The platform is used to develop applications for BPM Business Process Management, Case Management, Real Time Decision Making and CRM Customer Relationship Management. A resource management error...