CVE Security

Concrete CMS version 9.0 to 9.5.0 is vulnerable to Stored XSS via page name in the Atomik theme. A rogue editor can inject arbitrary JavaScript that ...

Applications Web


                                    CVE-2026-8353

Lire l'article

medium 5.5

29/05/2026

Vulnérabilité medium détectée - CVE-2025-32751

Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Insecure Storage of Sensitive Information vulnerability. A low privileged attacker with loca...

Applications


                                    CVE-2025-32751

Lire l'article

high 7.5

29/05/2026

Vulnérabilité high détectée - CVE-2025-45145

Directory traversal in Follett Software's Destiny Library Manager 22_0_2_rc1 and fixed in v.22.5 AU1 allows remote attackers to read arbitrary system ...

Applications


                                    CVE-2025-45145

Lire l'article

low 3.6

29/05/2026

Vulnérabilité low détectée - CVE-2025-46371

Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) a Use of a Broken or Risky Cryptographic Algorithm vulnerability in the ssh. A low privileged a...

Applications


                                    CVE-2025-46371

Lire l'article

unknown

29/05/2026

Vulnérabilité unknown détectée - CVE-2026-8997

vifm is vulnerable to a heap buffer overflow during the history merge process when saving the state file (vifminfo.json). This flaw occurs because the...

Applications


                                    CVE-2026-8997

Lire l'article

high 8.1

29/05/2026

Vulnérabilité high détectée - CVE-2026-9277

shell-quote's `quote()` function did not validate object-token inputs against the operator model used by `parse()`. The `.op` field was backslash-esca...

Applications


                                    CVE-2026-9277

Lire l'article

medium 6.7

29/05/2026

Vulnérabilité medium détectée - CVE-2021-21508

Dell VxRail versions before 7.0.200 contain a Plain-text Password Storage Vulnerability in VxRail Manager. A sys-admin user may exploit this vulnerabi...

Applications


                                    CVE-2021-21508

Lire l'article

medium 5.3

29/05/2026

Vulnérabilité medium détectée - CVE-2025-32747

Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access co...

Applications


                                    CVE-2025-32747

Lire l'article

medium 5.3

29/05/2026

Vulnérabilité medium détectée - CVE-2025-32749

Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An unauthenticated attacker...

Applications


                                    CVE-2025-32749

Lire l'article

medium 4

29/05/2026

Vulnérabilité medium détectée - CVE-2025-32746

Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Insecure Storage of Sensitive Information vulnerability. An unauthenticated attacker with lo...

Applications


                                    CVE-2025-32746

Lire l'article

high 7.5

29/05/2026

Vulnérabilité high détectée - CVE-2026-44417

The fix for CVE-2025-48913: Apache CXF: Untrusted JMS configuration can lead to RCE was not complete, meaning that another path in the code might lea...

Applications


                                    CVE-2026-44417

Lire l'article

medium 5.3

29/05/2026

Vulnérabilité medium détectée - CVE-2026-44618

Insecure XML parser configuration in Apache CXF's WS-Transfer module may allow attackers to perform XXE attacks. Users are recommended to upgrade to v...

Applications


                                    CVE-2026-44618

Lire l'article

13 14 15 16 17