CVE-2025-54153

An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.2 2025/07/31...

CVE-2025-59154 Openfire allows potential identity spoofing via unsafe CN parsing

Openfire is an XMPP server licensed under the Open Source Apache License. Openfire’s SASL EXTERNAL mechanism for client TLS authentication contains a vulnerability in how it extracts user identities from X.509 certificates. Instead of parsing the structured ASN.1 data, the code calls...

FunAdmin 安全漏洞

FunAdmin is FunAdmin open source a lightweight and high-color backend development system based on ThinkPHP6+Layui development. A security vulnerability exists in FunAdmin version 5.0.2, which stems from a logic flaw in the Curd one-click command delete function that could lead to a denial of...

Gigamon GigaVUE-OS 跨站脚本漏洞

Gigamon GigaVUE-OS is an operating system for GigaVUE network devices from Gigamon Corporation, USA. A security vulnerability exists in Gigamon GigaVUE-OS version 5.0 202, which stems from a discovery containing a Reflective Cross-Site Scripting XSS vulnerability. An attacker could exploit the...

OpenEMR Cross-Site Scripting Vulnerability (CNVD-2019-41603)

OpenEMR is an open source medical management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. A cross-site scripting vulnerability exists in the...

Intel Data Center Manager SDK Denial of Service Vulnerability

Intel Data Center Manager SDK is a data center manager SDK software development kit from Intel USA. The product provides real-time power and cooling data for devices. A security vulnerability exists in the encryption routines in Intel Data Center Manager SDK versions prior to 5.0.2. An attacker...

IBM Rational Quality Manager Cross-Site Scripting Vulnerability (CNVD-2018-13752)

IBM Rational Quality Manager RQM is a collaborative, Web-based quality management solution from IBM. The program provides test planning and test evaluation management methods within the entire software development lifecycle, and the ability to share information, automation to accelerate the proje...

PT-2004-2549 · Ipswitch · Ws Ftp

Name of the Vulnerable Software and Affected Versions: WS FTP version 5.0.2 Description: The issue allows remote authenticated users to cause a denial of service, specifically CPU consumption, by sending a CD command with an invalid path containing a "../" sequence. Recommendations: For WS FTP...