🌐

Web Application

slug: web-application

🛡 Vulnérabilités associées 157

ID Titre
CVE-2024-1708 KEV [KEV] Traversée de chemin dans Connectwise screenconnect (CVE-2024-1708)
CVE-2024-57728 KEV [KEV] Traversée de chemin dans Simplehelp path-traversal (CVE-2024-57728)
CVE-2026-39987 KEV [KEV] Vulnérabilité dans Marimo remote-attack (CVE-2026-39987)
CVE-2026-20122 KEV [KEV] Vulnérabilité dans Cisco catalyst-sd-wan-manger (CVE-2026-20122)
CVE-2025-2749 KEV [KEV] Traversée de chemin dans Kentico path-traversal (CVE-2025-2749)
CVE-2025-48700 KEV [KEV] XSS (Cross-Site Scripting) dans Synacor zimbra-collaboration-suite-zcs (CVE-2025-48700)
CVE-2024-27199 KEV [KEV] Vulnérabilité dans Jetbrains teamcity (CVE-2024-27199)
CVE-2026-40316 OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. Versions prior to 2.1.1 contain an RCE vulnerability in the .github/workflo...
CVE-2026-32201 KEV [KEV] Vulnérabilité dans Microsoft sharepoint-server (CVE-2026-32201)
CVE-2023-21529 KEV [KEV] Désérialisation non sécurisée dans Microsoft exchange-server (CVE-2023-21529)
CVE-2020-9715 KEV [KEV] Use-After-Free dans Adobe acrobat (CVE-2020-9715)
CVE-2026-34621 KEV [KEV] Vulnérabilité dans Adobe acrobat-and-reader (CVE-2026-34621)
CVE-2026-3502 KEV [KEV] Vulnérabilité dans Trueconf client (CVE-2026-3502)
CVE-2026-33017 KEV [KEV] Vulnérabilité dans langflow (CVE-2026-33017)
CVE-2026-1618 Authentication Bypass Using an Alternate Path or Channel vulnerability in Universal Software Inc....
CVE-2020-37210 SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste i...
CVE-2020-37211 SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputting a large buffer in the registration name field. Attackers can generate a 1000-character...
CVE-2020-37212 SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste...
CVE-2026-1819 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
CVE-2025-2155 Unrestricted Upload of File with Dangerous Type vulnerability in Echo Call Center Services Trade...
CVE-2025-64666 Vulnérabilité dans microsoft (CVE-2025-64666)
CVE-2025-54236 KEV [KEV] Vulnérabilité dans Adobe commerce (CVE-2025-54236)
CVE-2025-2411 Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft TaskPano...
CVE-2025-2413 Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft ProKuafor...
CVE-2025-0610 Cross-Site Request Forgery (CSRF) vulnerability in Akınsoft QR Menü allows Cross Site Request...
CVE-2025-53786 Contournement d'authentification dans microsoft (CVE-2025-53786)
CVE-2024-27289 pgx is a PostgreSQL driver and toolkit for Go. Prior to version 4.18.2, SQL injection can occur when all of the following conditions are met: the non-default simple protocol is used; a placeholder for...
CVE-2022-27224 An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated...
CVE-2020-7564 Vulnérabilité dans schneider-electric (CVE-2020-7564)
CVE-2017-14852 An insecure communication was found between a user and the Orpak SiteOmat management console for...

🍪 À propos des cookies

Nous utilisons des cookies pour conserver votre session, mémoriser la langue et améliorer le service.

En savoir plus →