2 matches found
CVE-2025-6505
creationtimestamp| type| source ---|---|--- 2025-07-29 17:07:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lv4lsvt4fy2e...
CVE-2025-6505
Summary of CVE-2025-6505 : Progress Software’s Hybrid Data Pipeline Server (Linux) versions ≤ 4.6.2.3226 are affected. The root issue is that during an OAuth handshake the server accepts client credentials from both HTTP headers and request parameters, enabling attackers to combine credentials fr...