CVE-2025-65640

Cross Site Scripting XSS vulnerability in the "Task in Progress / Recent" page in Arket Globe Document Intelligence 5.0.0.559 due to improper sanitization of user input in text fields when creating a new document. Specifically, when an authenticated attacker submits data containing JavaScript cod...

CVE-2025-65640

Cross Site Scripting XSS vulnerability in the "Task in Progress / Recent" page in Arket Globe Document Intelligence 5.0.0.559 due to improper sanitization of user input in text fields when creating a new document. Specifically, when an authenticated attacker submits data containing JavaScript cod...

CVE-2025-65640

Cross Site Scripting XSS vulnerability in the "Task in Progress / Recent" page in Arket Globe Document Intelligence 5.0.0.559 due to improper sanitization of user input in text fields when creating a new document. Specifically, when an authenticated attacker submits data containing JavaScript cod...

Arket Globe Document Intelligence 安全漏洞

Arket Globe Document Intelligence is an enterprise document intelligence management platform developed by the Italian company Arket. Version 5.0.0.559 of Arket Globe Document Intelligence contains a security vulnerability. This vulnerability arises from improper handling of user input in text...

CVE-2025-65640

The CVE-2025-65640 issue affects Arket Globe Document Intelligence 5.0.0.559 (Task in Progress / Recent page). It is a Cross Site Scripting (XSS) vulnerability caused by improper sanitization/escaping of user input in text fields when creating a new document, allowing injected JavaScript to run i...

The vulnerability of Azure AI Document Intelligence, a cloud-based AI service, arises from an incorrect restriction on the path to the restricted access catalog. This allows attackers to escalate their privileges.

The vulnerability of Azure AI Document Intelligence cloud service is related to an incorrect restriction on the path name to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...

CVE-2025-30387

CVE-2025-30387 is a path traversal and elevation-of-privilege vulnerability affecting Microsoft Azure’s Document Intelligence Studio On-Prem implementation. The initial description identifies an improper limitation of a pathname to a restricted directory, enabling an unauthenticated or network-ba...

CVE-2025-30387 Document Intelligence Studio On-Prem Elevation of Privilege Vulnerability

...

CVE-2025-30387 Document Intelligence Studio On-Prem Elevation of Privilege Vulnerability

...

KLA83574 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Azure File Sync can be exploited remotely to gain privileges. 2. An...