CVE-2025-54253 Adobe Experience Manager | Incorrect Authorization (CWE-863)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a Misconfiguration vulnerability that could result in arbitrary code execution. An attacker could leverage this vulnerability to bypass security mechanisms and execute code. Exploitation of this issue does not require user...

Security Bulletin: Multiple security vulnerabilities in IBM MQ affect IBM Robotic Process Automation

Summary Multiple security vulnerabilities in IBM MQ affect IBM Robotic Process Automation. IBM MQ is used by IBM Robotic Process Automation as a system queue. This bulletin identifies the fixes to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-40681 DESCRIPTION: IBM MQ Operator...

CVE-2023-2941

CVE-2023-2941 affects Google Chrome (Extensions API). Inappropriate implementation in the Extensions API prior to 114.0.5735.90 allowed an attacker to spoof the UI contents when a user installed a crafted malicious extension. Impact stated as low severity by Chromium, with exploitation requiring ...

Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass

Crystal Shard http-protection version 0.2.0 suffers from an IP spoofing bypass vulnerability. Exploit Title : Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass Exploit Author : Halis Duraki @0xduraki Date : 2020-05-28 Product : http-protection Crystal Shard Product URI :...

Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass Vulnerability

Exploit for multiple platform in category web applications Exploit Title : Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass Exploit Author : Halis Duraki @0xduraki Product : http-protection Crystal Shard Product URI : https://github.com/rogeriozambon/http-protection Version :...

Symphony Project sfDoctrinesfPropel 1.x Database Password Disclosure

Exploit Title : Symphony Project sfDoctrinesfPropel 1.x Database Password Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 10/05/2019 Vendor Homepage : symfony.com Information : symfony-project.org/reference/14/en/07-Databases Software Versions : 1.x a...

Zend Framework 1.11.11 Database Configuration Disclosure

Exploit Title : Zend Framework 1.11.11 Database Config Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 14/02/2019 Vendor Homepage : zend.com Software Download Link : zend.com/en/company/community/framework/downloads Software Information Link :...

Zend Framework ZF1 1.x Database Configuration Disclosure

Exploit Title : Zend Framework ZF1 1.x Database Config Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 14/02/2019 Vendor Homepage : zend.com Software Download Link : github.com/RalfEggert/zf1example/archive/master.zip Software Information Link :...

ZRECore 1.3.1 Database Configuration Disclosure

Exploit Title : ZRECore 1.3.1 Database Config Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 14/02/2019 Vendor Homepage : zend.com Software Download Link : github.com/zrecore/ZRECore/archive/master.zip Software Information Link :...

Invo PhalconPHP 1.x Database Configuration Disclosure

Exploit Title : Unvo PhalconPHP 1.x Database Config Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 14/02/2019 Vendor Homepage : phalconphp.com Software Download Link : github.com/phalcon/invo/archive/master.zip Software Information Link :...

DotNetNuke Events Calendar 1.x File Download

Exploit Title : DNNSoftware EventsCalendar Modules 1.x Arbitrary File Download Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 18/01/2019 Vendor Homepage : dnnsoftware.com Software Information Link : store.dnnsoftware.com/home/product-details/events-calendar...

Solaris 10 (sparc) : 120272-31

SunOS 5.10: SMA patch. Date this patch was last updated by Sun : Jun/30/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

CVE-2002-0576

CVE-2002-0576 affects ColdFusion 5.0 and earlier on Windows. A remote attacker can reveal the absolute pathname of .cfm/.dbm files by sending an HTTP request containing an MS-DOS device name (e.g., NUL), which leaks the path in an error message. The associated NVD metric indicates partial confide...