CVE-2025-65418

docuFORM Managed Print Service Client 11.11c is vulnerable to a directory traversal allowing attackers to read arbitrary files via crafted url...

CVE-2025-65416

docuFORM Managed Print Service Client 11.11c is vulnerable to arbitrary file upload via pmupdate.php...

PT-2026-39614

docuFORM Managed Print Service Client 11.11c is vulnerable to a reflected cross site scripting attack via the login page of the application...

CVE-2025-65415

CVE-2025-65415 affects the docuFORM Managed Print Service Client 11.11c . The issue is a session fixation vulnerability exploitable via the login page, with CVSS v3.1 score 5.4 (Medium). Impact is limited to confidentiality and integrity (Low) ; no availability impact. Exploit details, root cause...

CVE-2025-65417

CVE-2025-65417 affects the docuFORM Managed Print Service Client 11.11c. Affected component: login page, vulnerable to a reflected cross-site scripting (XSS) attack. Underlying cause and impact are described in the provided metrics: CVSS 3.1 base score 6.1 (Medium), vector AV:N/AC:L/PR:N/UI:R/S:C...

PT-2026-39615

Name of the Vulnerable Software and Affected Versions docuFORM Managed Print Service Client version 11.11c Description A directory traversal flaw allows attackers to read arbitrary files by using a crafted URL. Recommendations At the moment, there is no information about a newer version that...

CVE-2025-65417

docuFORM Managed Print Service Client 11.11c is vulnerable to a reflected cross site scripting attack via the login page of the application...

PT-2026-39609

A reflected cross-site scripted XSS vulnerability in the acc-menu pricess.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

CVE-2025-65417

docuFORM Managed Print Service Client 11.11c is vulnerable to a reflected cross site scripting attack via the login page of the application...

CVE-2025-65416

CVE-2025-65416 affects docuFORM Managed Print Service Client 11.11c. The vulnerability is an arbitrary file upload via pmupdate.php, with an underlying impact to confidentiality, integrity and availability evaluated as Low (C/L/I/L) per CVSS 3.1 (base score 6.3, MEDIUM). Exploitation would requir...

CVE-2025-65418

CVE-2025-65418 affects docuFORM Managed Print Service Client 11.11c. It is a directory traversal vulnerability that allows reading arbitrary files via a crafted URL. The CVSSv3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) yields a base score of 7.5 (HIGH). Multiple connected sources corroborate...

CVE-2025-65415

docuFORM Managed Print Service Client 11.11c is vulnerable to a session fixation attack via the login page of the application...

CVE-2026-33109

Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a network...

CVE-2026-33844

Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a network...

EUVD-2026-28749

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp-mach-common: Add missing error check for clock acquisition The acpcardrt5682init and acpcardrt5682sinit functions did not check the return values of clkget. This could lead to a kernel crash when the invalid pointe...

CVE-2026-43443

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp-mach-common: Add missing error check for clock acquisition The acpcardrt5682init and acpcardrt5682sinit functions did not check the return values of clkget. This could lead to a kernel crash when the invalid pointe...

CVE-2026-43443

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp-mach-common: Add missing error check for clock acquisition The acpcardrt5682init and acpcardrt5682sinit functions did not check the return values of clkget. This could lead to a kernel crash when the invalid pointe...

UBUNTU-CVE-2026-43460

In the Linux kernel, the following vulnerability has been resolved: spi: rockchip-sfc: Fix double-free in remove callback The driver uses devmspiregistercontroller for registration, which automatically unregisters the controller via devm cleanup when the device is removed. The manual call to...

CVE-2026-43443

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp-mach-common: Add missing error check for clock acquisition The acpcardrt5682init and acpcardrt5682sinit functions did not check the return values of clkget. This could lead to a kernel crash when the invalid pointe...

CVE-2026-43443 ASoC: amd: acp-mach-common: Add missing error check for clock acquisition

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp-mach-common: Add missing error check for clock acquisition The acpcardrt5682init and acpcardrt5682sinit functions did not check the return values of clkget. This could lead to a kernel crash when the invalid pointe...