An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unautho…

Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI comman…

Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18…

A vulnerability has been discovered in the customer-managed ShareFile storage zones controller…

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 D…

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent…

RCE-Remote Command Execution vulnerability in Apache HugeGraph-Server.This issue affects Apache…

Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affe…

Adobe ColdFusion versions 2018u18 (and earlier), 2021u8 (and earlier) and 2023u2 (and earlier) …

Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unc…

Adobe ColdFusion versions 2018u16 (and earlier), 2021u6 (and earlier) and 2023.0.0.330468 (and …

This vulnerability allows remote attackers to bypass authentication on affected installations o…

Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Up…

ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Access Control vuln…

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 u…

The mod_copy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary fil…

Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute ar…

An issue has been discovered in GitLab CE/EE affecting all versions from 16.1 prior to 16.1.6, …

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 U…

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and J…

pgAdmin versions 8.11 and earlier are vulnerable to a security flaw in OAuth2 authentication. T…

Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache al…

Improper Access Control to Remote Code Execution in GitHub repository webmin/webmin prior to 1.…

After the initial setup process, some steps of setup.php file are reachable not only by super-a…

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and J…

The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (ak…

A vulnerability was found in Ruijie RG-EW1200G 1.0(1)B1P5. It has been declared as critical. Af…

Grav Admin Plugin is an HTML user interface that provides a way to configure Grav and create an…

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 U…

Incorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands …

PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.

ZenML Server in the ZenML machine learning package before 0.46.7 for Python allows remote privi…

Telerik.Web.UI.dll in Progress Telerik UI for ASP.NET AJAX before R2 2017 SP1 and Sitefinity be…

pyLoad is the free and open-source Download Manager written in pure Python. Any unauthenticated…

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Cor…

Improper Access Control in Citrix ShareFile storage zones controller before 5.11.20 may allow a…

The Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce plugin for WordPress is vulnerab…

Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 …

H3C ER8300G2-X is vulnerable to Incorrect Access Control. The password for the router's managem…

Kyocera multifunction printers running vulnerable versions of Net View unintentionally expose s…