Marvell QConvergeConsole path traversal vulnerability (CNVD-2025-20446)

Marvell QConvergeConsole is a unified adapter management software across data centers from Marvell USA. Marvell QConvergeConsole has a path traversal vulnerability that is caused by an error in the getDriverTmpPath method. An attacker could exploit the vulnerability to disclose information in the...

Sql injection

SQL Injection vulnerability in User Stats interface /vicidial/userstats.php of VICIdial via the filedownload parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailable, and beco...