EUVD-2026-20232

Missing Authorization vulnerability in Rustaurius Order Tracking order-tracking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Tracking: from n/a through = 3.4.3...

Design/Logic Flaw

Adobe Dimension versions 3.4.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim...

UHP UHP-100 Cross-Site Scripting Vulnerability

The UHP-100 is a high-performance router designed for large-scale deployment in broadband VSAT networks. A cross-site scripting vulnerability exists in the UHP UHP-100 versions 3.4.1.15, 3.4.2.4, and 3.4.3. The vulnerability stems from the lack of proper validation of client-side data by the WEB...

iopa-mqtt (>=0.2.0 <=1.3.3), iopa-mqtt-packet (>=0.2.16 <=1.3.7) +4 more potentially affected by CVE-2019-5432 via mqtt-packet (>=2.0.1 <=3.4.3)

mqtt-packet NPM version =2.0.1, =0.2.0, =0.2.16, =1.0.0, =1.0.0-pre.1, =1.0.0, =1.0.3 - mqtt-stack =0.0.2 Source cves: CVE-2019-5432 Source advisory: OSV:GHSA-WV67-9JQ7-8R69...

CVE-2018-14655

A flaw was found in Keycloak 3.4.3.Final, 4.0.0.Beta2, 4.3.0.Final. When using 'responsemode=formpost' it is possible to inject arbitrary Javascript-Code via the 'state'-parameter in the authentication URL. This allows an XSS-Attack upon succesfully login...