4 matches found
PT-2025-24500 · Unknown · Silverpeas
Name of the Vulnerable Software and Affected Versions: Silverpeas version 6.4.2 Description: The issue is a stored cross-site scripting XSS vulnerability in the event management module. An authenticated user can upload a malicious SVG file as an event attachment, which, when viewed by an...
CVE-2025-48927
CVE-2025-48927 concerns TeleMessage service configuring Spring Boot Actuator with an exposed /heapdump endpoint. Connected sources confirm the heapdump exposure stems from Actuator configuration and is implicated by multiple advisories (NVD entry, CISA KEV listing, and related GitHub/GHSA advisor...
CVE-2022-3713
creationtimestamp| type| source ---|---|--- 2022-12-01 20:36:58+00:00| seen| https://t.me/cibsecurity/53778 2022-12-07 10:30:06+00:00| exploited| https://t.me/truesecator/3794...
CVE-2015-4852
creationtimestamp| type| source ---|---|--- 2018-01-05 01:08:44+00:00| seen| MISP/5a4ecbf4-1b24-4a5f-9f4d-4b7c98036464 2019-03-26 22:18:44+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/weblogicdeserializerawobject.rb 2019-03-28 00:00:00+00:00|...