GestioIP 3.5.7 Remote Command Execution

This module exploits a command execution via file upload. If GestioIP is configured to use no authentication for admin account, no password is required to exploit the vulnerability. Otherwise, an authenticated user with admin right on the web site is required to exploit. Module Options msf use...

User Impersonation

Overview Affected versions of this package are vulnerable to User Impersonation in the authentication process when JWT tokens are parsed without enforcing the audience claim in certain configurations. An attacker can gain unauthorized access by presenting a validly signed JWT token with an...

CVE-2026-20142 Sensitive Information Disclosure in "_internal" index in Splunk Enterprise

In Splunk Enterprise versions below 10.2.0, 10.0.2, 9.4.7, 9.3.9, and 9.2.11, a user of a Splunk Search Head Cluster SHC deployment who holds a role with access to the Splunk internal index could view the RSA accessKey value from the Authentication.conf file, in plain text...

EUVD-2025-203118

A vulnerability was found in UTT 进取 512W up to 1.7.7-171114. This affects an unknown part of the file /goform/formWebAuthGlobalConfig. Performing manipulation of the argument hidcontact results in memory corruption. Remote exploitation of the attack is possible. The exploit has been made public a...

EUVD-2005-0441

Malware in sbrugna...

EUVD-2013-6274

Malware in sbrugna...

EUVD-2004-0809

Malware in sbrugna...

EUVD-2025-23933

Malicious code in bioql PyPI...

EUVD-2025-4100

Malicious code in bioql PyPI...

Siemens Mendix SAML 数据伪造问题漏洞

Siemens Mendix SAML is an authentication module provided by the Siemens Mendix platform for single sign-on SSO functionality. An account hijacking vulnerability exists in Siemens Mendix SAML, which stems from insufficient signature verification and binding checks, and can be exploited by an...

CVE-2025-54395

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication configuration data...

CVE-2025-54395

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication configuration data...

CVE-2025-54395

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication configuration data...

CVE-2025-54395

Summary: CVE-2025-54395 affects Netwrix Directory Manager (formerly Imanami GroupID) versions 11.0.0.0 up to 11.1.25162.02. The issue is a cross-site scripting (XSS) vulnerability in authentication configuration data. What’s affected: Netwrix Directory Manager software; vulnerable component is th...

CVE-2025-54395

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication configuration data...

PT-2025-32281 · Netwrix · Netwrix Directory Manager

Name of the Vulnerable Software and Affected Versions: Netwrix Directory Manager versions 11.0.0.0 through 11.1.25162.02 Description: The software contains a cross-site scripting XSS issue affecting authentication configuration data. Recommendations: Update Netwrix Directory Manager to version...

RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update (Important) (RHSA-2025:3637)

The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:3637 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can...

Crayfish allows Remote Code Execution via Homarus Authorization header

Impact Remote code execution may be possible in web-accessible installations of Homarus in certain configurations. Patches The issue has been patched in islandora/crayfish:4.1.0 Workarounds The exploit requires making a request against the Homarus's /convert endpoint; therefore, the ability to...

Rasa Allows Remote Code Execution via Remote Model Loading

Vulnerability A vulnerability has been identified in Rasa Pro and Rasa Open Source that enables an attacker who has the ability to load a maliciously crafted model remotely into a Rasa instance to achieve Remote Code Execution. The prerequisites for this are: - The HTTP API must be enabled on the...

CVAD Workspace App (Windows, MAC, Linux)

Introduction This article is a summary of the top support articles related to CVAD Workspace App Windows, MAC, Linux Overview of the Issue Provide a brief yet comprehensive overview of the issue, outlining the common challenges and key points that will be addressed in detail in the linked content...