CVE-2024-45518 : SYNACOR ZIMBRA COLLABORATION SUITE HTTP REQUEST SERVER-SIDE REQUEST FORGERY
Description An issue was discovered in Zimbra Collaboration (ZCS) 10.1.x before 10.1.1, 10.0.x before 10.0.9, 9.0.0 before Patch 41, and
CVE-2024-7314 : ANJI-PLUS AJ-REPORT UP TO 1.4.0 HTTP REQUEST /SWAGGER-UI INSUFFICIENT PERMISSIONS OR PRIVILEGES
Description anji-plus AJ-Report is affected by an authentication bypass vulnerability. A remote and unauthenticated attacker can append “;swagger-ui” to HTTP
CVE-2024-41671 : TWISTED UP TO 24.3.0 HTTP REQUEST SMUGGLING
Description Twisted is an event-based framework for internet applications, supporting Python 3.6+. The HTTP 1.0 and 1.1 server provided by
CVE-2024-5201 : OPENTEXT DIMENSIONS RM UP TO 12.11.1.2/12.11.2.5 HTTP REQUEST PRIVILEGE ESCALATION
Description Privilege Escalation in OpenText Dimensions RM allows an authenticated user to escalate there privilege to the privilege of another
CVE-2023-30995 : IBM ASPERA FASPEX 5.0.5 HTTP REQUEST ACCESS CONTROL
Description IBM Aspera Faspex 5.0.5 could allow a malicious actor to bypass IP whitelist restrictions using a specially crafted HTTP
CVE-2023-22919 : ZYXEL NBG-6604 1.01(ABIR.0)C0 HTTP REQUEST OS COMMAND INJECTION
Description The post-authentication command injection vulnerability in the Zyxel NBG6604 firmware version V1.01(ABIR.0)C0 could allow an authenticated attacker to execute
CVE-2023-20102 : CISCO SECURE NETWORK ANALYTICS HTTP REQUEST DESERIALIZATION
Description A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker to
CVE-2022-39952 : FORTINET FORTINAC HTTP REQUEST REMOTE CODE EXECUTION
Description A external control of file name or path in Fortinet FortiNAC versions 9.4.0, 9.2.0 through 9.2.5, 9.1.0 through 9.1.7,
CVE-2022-48323 : SUNLOGIN SUNFLOWER SIMPLIFIED 1.0.1.43315 HTTP REQUEST /CHECK CMD PATH TRAVERSAL
Description Sunlogin Sunflower Simplified (aka Sunflower Simple and Personal) 1.0.1.43315 is vulnerable to a path traversal issue. A remote and
HTTP Request Smuggling
Home HTTP Request Smuggling PROPHAZE APPSEC PLATFORM What is Prophaze WAF? How Prophaze WAF Works? System Requirements Performance SSL Termination
IBM Tivoli Key Lifecycle Manager 3.0/3.0.1/4.0/4.1 HTTP Request denial of service
A vulnerability has been found in IBM Tivoli Key Lifecycle Manager 3.0/3.0.1/4.0/4.1 (Directory Service Software) and classified as problematic. Affected
IBM Tivoli Key Lifecycle Manager 3.0/3.0.1/4.0/4.1 HTTP Request information disclosure
A vulnerability was found in IBM Tivoli Key Lifecycle Manager 3.0/3.0.1/4.0/4.1 (Directory Service Software) and classified as problematic. Affected by
Apache Superset up to 1.3.0 HTTP Request sql injection
A vulnerability classified as critical was found in Apache Superset up to 1.3.0. This vulnerability affects an unknown code block
Node.js up to 12.22.6/14.18.0/16.11.0 llhttp request smuggling
A vulnerability was found in Node.js up to 12.22.6/14.18.0/16.11.0 (JavaScript Library) and classified as critical. Affected by this issue is
Trojan-PSW.Win32.PdPinch.gen HTTP Request denial of service
A vulnerability was found in Trojan-PSW.Win32.PdPinch.gen (unknown version). It has been rated as problematic. This issue affects an unknown part
Gradle Enterprise prior 2021.1.3 HTTP Request Header X-Gradle-Enterprise-Ajax-Request information disclosure
A vulnerability, which was classified as problematic, has been found in Gradle Enterprise. This issue affects an unknown function of
Webuzo up to 2.8.x HTTP Request cross site scripting
A vulnerability has been found in Webuzo up to 2.8.x and classified as problematic. Affected by this vulnerability is an
Siemens SINEC NMS up to 1.0 HTTP Request path traversal
A vulnerability was found in Siemens SINEC NMS up to 1.0. It has been declared as problematic. This vulnerability affects
Fortinet FortiWeb up to 6.2.4/6.3.13 HTTP Request command injection
A vulnerability, which was classified as critical, was found in Fortinet FortiWeb up to 6.2.4/6.3.13. This affects some unknown processing
Sonatype Nexus Repository up to 3.33.1-01 HTTP Request injection
A vulnerability was found in Sonatype Nexus Repository up to 3.33.1-01 and classified as problematic. This issue affects some unknown
Ulfius HTTP Framework up to 2.7.3 HTTP Request initialization
A vulnerability was found in Ulfius HTTP Framework up to 2.7.3. It has been classified as problematic. This affects an
Istio up to 1.9.7/1.10.3/1.11.0 HTTP Request authorization
A vulnerability, which was classified as critical, was found in Istio up to 1.9.7/1.10.3/1.11.0. Affected is an unknown functionality of
D-Link DIR816 HTTP Request Parameter form2userconfig.cgi command injection
A vulnerability classified as critical has been found in D-Link DIR816 (Router Operating System) (the affected version unknown). This affects
D-Link DIR-816 1.10CNB05_R1B011D88210 HTTP Request Parameter form2userconfig.cgi command injection
A vulnerability was found in D-Link DIR-816 1.10CNB05_R1B011D88210 (Router Operating System). It has been rated as critical. Affected by this