Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/14 12:18 a.m.5 views

CVE-2025-65784

Insecure permissions in Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows authenticated attackers with low-level privileges to access other users' information via a crafted API request...

6.5CVSS6.4AI score0.00306EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/14 12:18 a.m.11 views

CVE-2025-65783

An arbitrary file upload vulnerability in the /utils/uploadFile component of Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows attackers to execute arbitrary code via uploading a crafted PDF file...

9.8CVSS7.9AI score0.00441EPSS
Exploits0References1
NVD
NVD
added 2026/01/13 4:15 p.m.7 views

CVE-2025-65783

An arbitrary file upload vulnerability in the /utils/uploadFile component of Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows attackers to execute arbitrary code via uploading a crafted PDF file...

9.8CVSS0.00441EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/13 12:0 a.m.3 views

CVE-2025-65783

An arbitrary file upload vulnerability in the /utils/uploadFile component of Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows attackers to execute arbitrary code via uploading a crafted PDF file...

7.5AI score0.00441EPSS
Exploits0References1
CVE
CVE
added 2026/01/13 12:0 a.m.16 views

CVE-2025-65784

Hubert Hub v2.0.1.27.3 (Hubert Imoveis e Administracao Ltda) has an insecure permissions issue that lets authenticated users with low privileges retrieve other users’ information through a crafted API request. Impact: confidentiality of data. Root cause: improper access controls on API endpoints....

6.5CVSS6AI score0.00306EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.14 views

PT-2026-2485

CVE-2025-65783 An arbitrary file upload vulnerability in the /utils/uploadFile component of Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows attackers to execute arbitrary… https://t.co/LqnyiifjdF...

7.3AI score0.00441EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/01/13 12:0 a.m.26 views

CVE-2025-65783

An arbitrary file upload vulnerability in the /utils/uploadFile component of Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows attackers to execute arbitrary code via uploading a crafted PDF file...

0.00441EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/13 12:0 a.m.26 views

CVE-2025-65784

Insecure permissions in Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows authenticated attackers with low-level privileges to access other users' information via a crafted API request...

0.00306EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:6 a.m.6 views

CVE-2024-11923

Under certain log settings the IAM or CORE service will log credentials in the iam logfile in Fortra Application Hub Formerly named Helpsystems One prior to version 1.3...

5.5CVSS6.9AI score0.00201EPSS
Exploits0References1
OSV
OSV
added 2022/02/25 3:15 p.m.3 views

CVE-2022-24327

In JetBrains Hub before 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions...

7.5CVSS5.8AI score0.00924EPSS
Exploits0References2
0day.today
0day.today
added 2020/01/17 12:0 a.m.118 views

Plantronics Hub 3.13.2 - SpokesUpdateService Privilege Escalation Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Plantronics Hub SpokesUpdateService Privilege Escalation', 'Description' = %q The Plantronics Hub client application for Windows makes use of an...

7.8CVSS0.5AI score0.04979EPSS
Exploits5
Positive Technologies
Positive Technologies
added 2018/08/02 12:0 a.m.8 views

PT-2018-6270 · Insteon · Insteon Hub

Name of the Vulnerable Software and Affected Versions: Insteon Hub version 1012 Description: An attacker could send an authenticated HTTP request to trigger this issue in the Insteon Hub. The value for the s vol play key is copied using strcpy to a buffer, which is maximum 8 bytes large. Sending ...

9.9CVSS8.3AI score0.0136EPSS
Exploits2References3
Rows per page
Query Builder