Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.5 views

PT-2026-26206

Name of the Vulnerable Software and Affected Versions HAPI FHIR versions prior to 6.9.0 Description HAPI FHIR, a Java implementation of the HL7 FHIR standard, is affected by an issue where HTTP headers, potentially containing privacy-sensitive information, are sent to both the initial host and an...

8.2CVSS5.5AI score0.00264EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/01/09 9:18 a.m.7 views

CVE-2025-61782

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.8.3, an open redirect vulnerability exists in the OpenCTI platform's SAML authentication endpoint /auth/saml/callback. By manipulating the RelayState parameter, an attacker can...

5.4CVSS7AI score0.0022EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/07 5:28 p.m.6 views

CVE-2025-61782 Open Redirect in OpenCTI's SAML Authentication Flow

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.8.3, an open redirect vulnerability exists in the OpenCTI platform's SAML authentication endpoint /auth/saml/callback. By manipulating the RelayState parameter, an attacker can...

5.4CVSS6.7AI score0.0022EPSS
Exploits0References3
OSV
OSV
added 2025/10/28 8:6 p.m.3 views

CVE-2025-62367 Taiga Blind SQL Injection Time Based

Taiga is an open source project management platform. In versions 6.8.3 and earlier, Taiga API is vulnerable to time-based blind SQL injection allowing sensitive data disclosure via response timing. This issue is fixed in version 6.9.0...

4.8CVSS7.7AI score0.00196EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/07/27 12:0 a.m.8 views

PT-2022-12936 · Unknown · Goanywhere Mft

Name of the Vulnerable Software and Affected Versions: GoAnywhere MFT versions prior to 6.8.3 Description: A path traversal issue exists that could allow an external user who self-registers with specific username and/or profile information to access files at a higher directory level than intended...

6.5CVSS6.4AI score0.00864EPSS
Exploits0References6
Rows per page
Query Builder