6 matches found
CVE-2026-29137 Long Subject Untagging
SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to hide security tags from users by crafting a long subject...
IBM webMethods API Gateway 路径遍历漏洞
IBM webMethods API Gateway is an interface gateway provided by IBM Corporation. Versions 10.11 to 10.11Fix3210.15, 10.15 to 10.15Fix2711.1, and 11.1 to 11.1Fix7 of the IBM webMethods API Gateway have a path traversal vulnerability. This vulnerability arises from insufficient validation of the inp...
CVE-2025-37145
Arbitrary file download vulnerabilities exist in a low-level interface library in AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
F-Secure Internet Gatekeeper代码注入漏洞
F-Secure Internet Gatekeeper is a gateway product that acts as a virus scanning agent for HTTP, SMTP, POP, and FTP protocols.An arbitrary code execution vulnerability exists in the Web user interface of F-Secure Internet Gatekeeper version 5 Series. The vulnerability can be exploited by an attack...
HackerOne: Any user with access to program can resume and suspend HackerOne Gateway
An Insecure Direct Object Reference IDOR vulnerability is present in the UpdateGatewayProgramStateMutation that'd allow an attacker to suspend and resume the HackerOne Gateway feature for any program the user has access to. This includes any private programs that use the Gateway product and have ...
ClarkConnect proxy.php url Parameter XSS
The remote web server is used by ClarkConnect, an Internet server and gateway product, to process PHP scripts used for configuration. The installed version includes a script, '/public/proxy.php', that fails to sanitize user- supplied input to the 'url' parameter before using it to generate dynami...