EUVD-2026-24610

Vulnerability in Spring Spring Security. When an application configures JWT decoding with NimbusJwtDecoder or NimbusReactiveJwtDecoder, it must configure an OAuth2TokenValidator separately, for example by calling setJwtValidator.This issue affects Spring Security: from 6.3.0 through 6.3.14, from...

Archer Platform Security Vulnerability

Archer Platform is a modern integrated risk management solution from Archer, Inc. A security vulnerability in Archer Platform version 6.x prior to 6.14 P1 HF2 6.14.0.1.2 stems from a vulnerability that allows an authenticated attacker to bypass authorization checks by manipulating a user request ...

CVE-2018-16417

Aruba Instant 4.x prior to 6.4.4.8-4.2.4.12, 6.5.x prior to 6.5.4.11, 8.3.x prior to 8.3.0.6, and 8.4.x prior to 8.4.0.1 allows Command injection...

Unify OpenScape Deployment Service SQL Injection Vulnerability

Unify OpenScape Deployment Service DLS is a suite of deployment tools for Unify products from Unify USA. A SQL injection vulnerability exists in Unify OpenScape DLS versions prior to 6.x and 7.x versions prior to 7 R1.11.3. A remote attacker could exploit the vulnerability to execute arbitrary SQ...

Drupal OpenID Module Session Hijacking Vulnerability

Drupal is an open source content management framework CMF written in the PHP language, which consists of a content management system CMS and PHP development framework Framework together. A session hijacking vulnerability exists in the OpenID module in Drupal versions 6.x before 6.36 and 7.x befor...