Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2026/05/26 8:13 p.m.18 views

CVE-2025-1782

In HylaFAX Enterprise Web Interface and AvantFAX, the language form element is not properly sanitized before being used and can be misused to include an arbitrary file in the PHP code allowing an attacker to do anything as the web server user. This flaw requires the attacker to be authenticated...

9.9CVSS7AI score0.00517EPSS
Exploits0References1
NVD
NVD
added 2025/04/14 7:15 p.m.17 views

CVE-2025-1782

In HylaFAX Enterprise Web Interface and AvantFAX, the language form element is not properly sanitized before being used and can be misused to include an arbitrary file in the PHP code allowing an attacker to do anything as the web server user. This flaw requires the attacker to be authenticated...

9.9CVSS0.00517EPSS
Exploits0References1
Circl
Circl
added 2025/04/14 6:54 p.m.7 views

CVE-2025-1782

creationtimestamp| type| source ---|---|--- 2025-04-14 18:54:04+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11676 2025-04-14 19:46:18+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114338036274546789 2025-04-14 20:18:49+00:00| seen|...

9.9CVSS5.3AI score0.00517EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/04/14 6:41 p.m.9 views

CVE-2025-1782 Unsanitized input in language form field

In HylaFAX Enterprise Web Interface and AvantFAX, the language form element is not properly sanitized before being used and can be misused to include an arbitrary file in the PHP code allowing an attacker to do anything as the web server user. This flaw requires the attacker to be authenticated...

9.9CVSS6AI score0.00517EPSS
Exploits0References1
CVE
CVE
added 2025/04/14 6:41 p.m.867 views

CVE-2025-1782

CVE-2025-1782 affects HylaFAX Enterprise Web Interface and AvantFAX. The vulnerability arises from an unsanitized language form element that can be abused to include an arbitrary file in PHP code, enabling an authenticated attacker to perform actions as the web server user. The available document...

9.9CVSS9.4AI score0.00517EPSS
Exploits0References1
Rows per page
Query Builder