9 matches found
PT-2026-29866
Name of the Vulnerable Software and Affected Versions Newgen OmniDocs versions up to 12.0.00 Description A security flaw exists in Newgen OmniDocs up to version 12.0.00. The issue involves improper control of resource identifiers due to manipulation of the DocumentId argument within the...
CVE-2025-14289
IBM webMethods Integration Server 12.0 is vulnerable to HTML injection in the Security > Claims UI (CVE-2025-14289). A remote attacker could inject malicious HTML that executes in the victim’s browser within the hosting site’s security context. Root cause: improper neutralization of script-rel...
PT-2026-2376
Name of the Vulnerable Software and Affected Versions Wondershare Dr.Fone version 12.0.18 Description Wondershare Dr.Fone version 12.0.18 contains an unquoted service path issue. This allows local users to execute arbitrary code with elevated system privileges. The misconfigured service path can ...
CVE-2024-25532
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the btid parameter at /include/getdict.aspx...
HCL Sametime 安全漏洞
HCL Sametime is a conferencing solution from HCL Corporation, USA. A security vulnerability exists in HCL Sametime v12.0.2 and prior versions, which stems from the use of an unused, legacy REST service enabled using the HTTP protocol, which could be used maliciously by an attacker with this servi...
SUSE CVE-2019-2818
Vulnerability in the Java SE component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 11.0.3 and 12.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...
Vulnerabilities fixed in Adobe Bridge
Adobe has fixed several vulnerabilities in Bridge. A malicious party could exploit the vulnerabilities to execute arbitrary code in the context of the application, or to access gain access to sensitive data in the context of the application. To do this, the malicious party must trick the victim...
Trend Micro ScanMail for Exchange Security Restriction Bypass Vulnerability (CNVD-2018-01122)
Trend Micro ScanMail for Exchange is a mail firewall solution developed and maintained by Trend Micro that is designed to protect Exchange mail servers from viruses, spyware and spam threats. A security vulnerability exists in Trend Micro ScanMail for Exchange version 12.0. The vulnerability can ...
CVE-2017-3477
Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications subcomponent: Miscellaneous. Supported versions that are affected are 12.0.0 and 12.1.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...