Latest CVE Feed
-
4.3
MEDIUMCVE-2025-54397
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 inserts Sensitive Information Into Sent Data to authenticated users.... Read more
Affected Products : directory_manager- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Information Disclosure
-
5.4
MEDIUMCVE-2025-54396
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows SQL Injection. Authenticated users can exploit this.... Read more
Affected Products : directory_manager- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
6.1
MEDIUMCVE-2025-54395
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows XSS for authentication configuration data.... Read more
Affected Products : directory_manager- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Cross-Site Scripting
-
5.3
MEDIUMCVE-2025-54394
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 has Insufficiently Protected Credentials for requests to remote Excel resources.... Read more
Affected Products : directory_manager- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Misconfiguration
-
5.4
MEDIUMCVE-2025-54393
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows Static Code Injection. Authenticated users can obtain administrative access.... Read more
Affected Products : directory_manager- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
6.1
MEDIUMCVE-2025-54392
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error data, a different vulnerability than CVE-2025-47189.... Read more
Affected Products : directory_manager- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Cross-Site Scripting
-
8.8
HIGHCVE-2023-41532
Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the doctor_contact parameter in doctorsearch.php.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
8.8
HIGHCVE-2023-41531
Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func3.php via the username1 and password2 parameters.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2023-41530
Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the app_contact parameter in appsearch.php.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
6.1
MEDIUMCVE-2023-41529
Hospital Management System v4 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in func2.php via the fname and lname parameters.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Cross-Site Scripting
-
9.8
CRITICALCVE-2023-41528
Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in contact.php via the txtname, txtphone, and txtmail parameters.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2023-41527
Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the password2 parameter in func.php.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2023-41526
Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func1.php via the username3 and password3 parameters.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2023-41525
Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the patient_contact parameter in patientsearch.php.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
6.5
MEDIUMCVE-2023-40992
Hospital Management System 4 is vulnerable to a SQL injection in /Hospital-Management-System-master/func.php via the password2 parameter.... Read more
Affected Products : hospital_management_system- Published: Aug. 07, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Injection
-
6.5
MEDIUMCVE-2024-4445
The WP Compress – Image Optimizer [All-In-One] plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the several functions in versions up to, and including, 6.20.01. This makes it possible for authent... Read more
Affected Products : wp_compress- Published: May. 14, 2024
- Modified: Aug. 11, 2025
-
9.8
CRITICALCVE-2024-37119
Missing Authorization vulnerability in Uncanny Owl Uncanny Automator Pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Uncanny Automator Pro: from n/a through 5.3.0.0.... Read more
Affected Products : uncanny_automator- Published: Nov. 01, 2024
- Modified: Aug. 11, 2025
-
9.8
CRITICALCVE-2024-37470
Missing Authorization vulnerability in WofficeIO Woffice Core allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Woffice Core: from n/a through 5.4.8.... Read more
Affected Products : woffice- Published: Nov. 01, 2024
- Modified: Aug. 11, 2025
-
8.6
HIGHCVE-2024-20351
A vulnerability in the TCP/IP traffic handling function of the Snort Detection Engine of Cisco Firepower Threat Defense (FTD) Software and Cisco FirePOWER Services could allow an unauthenticated, remote attacker to cause legitimate network traffic to be d... Read more
- Published: Oct. 23, 2024
- Modified: Aug. 11, 2025
-
9.8
CRITICALCVE-2023-25613
An LDAP Injection vulnerability exists in the LdapIdentityBackend of Apache Kerby before 2.0.3. ... Read more
- EPSS Score: %0.13
- Published: Feb. 20, 2023
- Modified: Aug. 11, 2025