CVE-2025-32746

CVE-2025-32746 affects Dell PowerFlex Manager, versions ≤ 4.6.2. The vulnerability is described as an Insecure Storage of Sensitive Information, enabling an unauthenticated local attacker to access sensitive information. The CVSSv3.1 base score is 4.0 (Medium) with local attack vector, no privile...

CVE-2025-32747

Dell PowerFlex Manager, versions =4.6.2, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...

Exploit for CVE-2026-41200

CVE-2026-41200 — STIG Manager OIDC Reflected XSS PoC Conceptu...

CVE-2025-13718

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow a remote attacker to obtain sensitive information in cleartext in a communication channel that can be sniffed by unauthorized actors...

CVE-2026-24936

When a specific function is enabled while joining a AD Domain from ADM, an improper input parameters validation vulnerability in a specific CGI program allowing an unauthenticated remote attacker to write arbitrary data to any file on the system. By exploiting this vulnerability, attackers can...

@conglomerate/weaver (>=2.1.1 <=2.6.1), @derivative/derive (>=0.1.0 <=0.1.1) +10 more potentially affected by CVE-2026-24131 via pnpm (>=0.21.0 <=10.18.3)

pnpm NPM version =0.21.0, =2.1.1, =0.1.0, =0.1.0, =3.7.16, =2.3.0, =0.1.0, =0.2.7, =1.0.4, =1.0.7 Source cves: CVE-2026-24131 Source advisory: OSV:GHSA-V253-RJ99-JWPQ...

EUVD-2025-202560

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

CVE-2025-64541

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

CVE-2025-36592

Dell Secure Connect Gateway (SCG) Policy Manager is affected across versions 5.20–5.28 by an "Improper Neutralization of Input During Web Page Generation" (Cross-site Scripting). The vulnerability allows an unauthenticated, remote attacker to inject scripts via web pages, with potential script ex...

EUVD-2021-13777

Malware in sbrugna...

EUVD-2016-9362

Malware in sbrugna...

EUVD-2016-9364

Malware in sbrugna...

EUVD-2024-48351

Malicious code in bioql PyPI...

CVE-2025-40751

A vulnerability has been identified in SIMATIC RTLS Locating Manager All versions V3.3. Affected SIMATIC RTLS Locating Manager Report Clients do not properly protect credentials that are used to authenticate to the server. This could allow an authenticated local attacker to extract the credential...

CVE-2025-47004

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

CVE-2025-46976

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

PT-2025-22971 · Suse +1 · Suse Manager Server Module +1

Name of the Vulnerable Software and Affected Versions: spacewalk-java versions 5.0.4.7.19.1 through 5.0.24-150600.3.25.1 SUSE Manager Server Module 4.3 versions prior to 4.3.85-150400.3.105.3 Description: A vulnerability in spacewalk-java allows execution of arbitrary Javascript code on users'...

PT-2025-4822 · Mitel · Mitel Openscape 4000 Manager +1

Name of the Vulnerable Software and Affected Versions: Mitel OpenScape 4000 versions V10 R1.54.1 and earlier Mitel OpenScape 4000 Manager versions V10 R1.54.1 and earlier Mitel OpenScape 4000 versions V11 through R0.22.1 Mitel OpenScape 4000 Manager versions V11 through R0.22.1 Description: The...

PT-2025-1501 · Unknown · Applyonline

Name of the Vulnerable Software and Affected Versions: ApplyOnline – Application Form Builder and Manager versions 2.5.3 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. This can...

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...