27 matches found
CVE-2026-7864 Exposure of Sensitive Information to an Unauthorized Actor
SEPPmail Secure Email Gateway before version 15.0.4 exposes server environment variables through an unauthenticated endpoint in the new GINA UI, allowing remote attackers to obtain sensitive system information...
EUVD-2015-8584
Malware in sbrugna...
EUVD-2008-6169
Malware in sbrugna...
EUVD-1999-0990
Malware in sbrugna...
EUVD-2018-18557
Malware in sbrugna...
EUVD-2012-5842
Malware in sbrugna...
EUVD-2015-7805
Malware in sbrugna...
CVE-2025-29885
An improper certificate validation vulnerability has been reported to affect File Station 5. If exploited, the vulnerability could allow remote attackers who have gained user access to compromise the security of the system. We have already fixed the vulnerability in the following versions: File...
CVE-2011-4704
The Voxofon com.voxofon application before 2.5.2 for Android does not properly protect data, which allows remote attackers to read or modify SMS information via a crafted application...
Linux Distros Unpatched Vulnerability : CVE-2017-1000250
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain...
K000150206: PostgreSQL vulnerabilities CVE-2019-10211, CVE-2017-7546, and CVE-2015-0244
Security Advisory Description CVE-2019-10211 Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via bundled OpenSSL executing code from unprotected directory. CVE-2017-7546 PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerabl...
HCL Technologies HCL Launch Security Breach
HCL Technologies HCL Launch is a versatile, enterprise-grade continuous delivery automation software from HCL Technologies, Inc. for handling the most complex deployment processes in DevOps. A security vulnerability exists in HCL Launch versions 7.0 through 7.0.5.18, 7.1 through 7.1.2.14, 7.2...
sd-webui-infinite-image-browsing security vulnerability
sd-webui-infinite-image-browsing is an image browser by zanllp personal developer. A security vulnerability exists in versions prior to sd-webui-infinite-image-browsing 977815a, which stems from a vulnerability that allows a remote attacker to obtain local files if Gradio authentication is enable...
mysql: Server: Information Schema unspecified vulnerability (CPU Apr 2021)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Information Schema. Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...
CVE-2019-7195
This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions...
imcat Information Disclosure Vulnerability (CNVD-2019-00971)
imcat is a PHP-based open source website building system . A security vulnerability exists in imcat version 4.4. Remote attackers can use root/tools/adbug/binfo.php?phpinfo1 URI to obtain information...
CVE-2014-5422
CareFusion Pyxis SupplyStation 8.1 with hardware test tool before 1.0.16 has a hardcoded service password, which makes it easier for remote attackers to obtain access via unspecified vectors...
CVE-2014-2350 Emerson DeltaV Use of Hard-coded Credentials
Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3 uses hardcoded credentials for diagnostic services, which allows remote attackers to bypass intended access restrictions via a TCP session, as demonstrated by a session that uses the telnet program...
CVE-2013-0765
Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 do not prevent multiple wrapping of WebIDL objects, which allows remote attackers to bypass intended access restrictions via unspecified vectors...
CVE-2012-5885
The replay-countermeasure functionality in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 tracks cnonce aka client nonce values instead of nonce aka server nonce and nc aka nonce-count values, which makes it easi...