CVE-2025-12774

A vulnerability in the migration script for Brocade SANnav before 3.0 could allow the collection of database sql queries in the SANnav support save file. An attacker with access to Brocade SANnav supportsave file, could open the file and then obtain sensitive information such as details of databa...

CVE-2025-12774

A vulnerability in the migration script for Brocade SANnav before 3.0 could allow the collection of database sql queries in the SANnav support save file. An attacker with access to Brocade SANnav supportsave file, could open the file and then obtain sensitive information such as details of databa...

CVE-2025-12774 SQL queries with sensitive information printed in logs with Brocade SANnav before 3.0

A vulnerability in the migration script for Brocade SANnav before 3.0 could allow the collection of database sql queries in the SANnav support save file. An attacker with access to Brocade SANnav supportsave file, could open the file and then obtain sensitive information such as details of databa...

CVE-2025-12774 SQL queries with sensitive information printed in logs with Brocade SANnav before 3.0

A vulnerability in the migration script for Brocade SANnav before 3.0 could allow the collection of database sql queries in the SANnav support save file. An attacker with access to Brocade SANnav supportsave file, could open the file and then obtain sensitive information such as details of databa...

CVE-2026-24871

Improper Control of Generation of Code 'Code Injection' vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manage: before 3.0...

EUVD-2025-202310

Ladybug adds message-based debugging, unit, system, and regression testing to Java applications. Versions prior to 3.0-20251107.114628 contain the APIs /iaf/ladybug/api/report/storage and /iaf/ladybug/api/report/upload, which allow uploading gzip-compressed XML files with user-controllable conten...

CVE-2025-40773

A vulnerability has been identified in SiPass integrated All versions V3.0. Affected server applications contains a broken access control vulnerability. The authorization mechanism lacks sufficient server-side checks, allowing an attacker to execute a specific API request. Successful exploitation...

CVE-2025-40772

A vulnerability has been identified in SiPass integrated All versions V3.0. Affected server applications are vulnerable to stored Cross-Site Scripting XSS, allowing an attacker to inject malicious code that can be executed by other users when they visit the affected page. Successful exploitation...

PT-2025-40980

Name of the Vulnerable Software and Affected Versions Callvision Emergency Code versions prior to 3.0 Description A flaw exists in Callvision Emergency Code that allows for SQL Injection, including Blind SQL Injection. This issue could grant attackers full database access. The vulnerability is...

CVE-2023-1274

The Pricing Tables For WPBakery Page Builder formerly Visual Composer WordPress plugin before 3.0 does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users such as subscriber to perform LFI attacks...

CVE-2017-15304

/bin/login.php in the Web Panel on the Airtame HDMI dongle with firmware before 3.0 allows an attacker to set his own session id via a "Cookie: PHPSESSID=" header. This can be used to achieve persistent access to the admin panel even after an admin password change...

CVE-2014-10383

The memphis-documents-library plugin before 3.0 for WordPress has Remote File Inclusion...

WordPress Reservit Hotel plugin < 3.0 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Ilteris Kaan Pehlivan in WordPress Plugin Reservit Hotel versions 3.0...

Intel Neural Compressor 安全漏洞

Intel Neural Compressor is an open source project from Intel Corporation USA designed to help developers easily optimize AI models. A security vulnerability exists in versions prior to Intel Neural Compressor v3.0 that stems from the presence of a competitive condition that could allow...

PT-2025-5156 · Unknown · Copyright Safeguard Footer Notice

Name of the Vulnerable Software and Affected Versions: Copyright Safeguard Footer Notice versions prior to 3.0 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on...

PT-2024-30267 · Unknown · Renwoxing Enterprise Intelligent Management System

Name of the Vulnerable Software and Affected Versions: Renwoxing Enterprise Intelligent Management System versions prior to 3.0 Description: The issue is related to a SQL injection vulnerability. It can be exploited via the parid parameter at the "/fx/baseinfo/SearchInfo" API endpoint...

CVE-2023-2957

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Lisa Software Florist Site allows SQL Injection.This issue affects Florist Site: before 3.0...

CVE-2023-2957 SQLi in Lisa Softwares Florist Site

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Lisa Software Florist Site allows SQL Injection. This issue affects Florist Site: before 3.0...

BULUTDESK CALLCENTER SQL注入漏洞

BULUTDESK CALLCENTER is a versatile and easy-to-use call center software from BULUTDESK. A SQL injection vulnerability exists in BULUTDESK CALLCENTER versions prior to 3.0. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...

CVE-2022-29881

A vulnerability has been identified in SICAM T All versions V3.0. The web based management interface of affected devices does not employ special access protection for certain internal developer views. This could allow unauthenticated users to extract internal configuration details...