Aggregator

CVE-2026-32642 | Apache Artemis/ActiveMQ Artemis on OpenWire OpenWire Consumer permission (EUVD-2026-14782 / WID-SEC-2026-0816)

Vuldb Updates
3 weeks ago
A vulnerability, which was classified as critical, was found in Apache Artemis and ActiveMQ Artemis on OpenWire. This issue affects some unknown processing of the component OpenWire Consumer Handler. Executing a manipulation can lead to permission issues. This vulnerability is tracked as CVE-2026-32642. The attack can be launched remotely. No exploit exists. You should upgrade the affected component.
vuldb.com

CVE-2026-4649 | KNIME Business Hub up to 1.15.1/1.16.2/1.17.3 Apache Artemis missing authentication (EUVD-2026-14786 / Nessus ID 303741)

Vuldb Updates
3 weeks ago
A vulnerability classified as critical was found in KNIME Business Hub up to 1.15.1/1.16.2/1.17.3. This impacts an unknown function of the component Apache Artemis. Executing a manipulation can lead to missing authentication. This vulnerability is tracked as CVE-2026-4649. The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.
vuldb.com

CVE-2026-3509 | CODESYS Control RTE prior 3.5.22.0 format string (VDE-2026-018 / EUVD-2026-14784)

Vuldb Updates
3 weeks ago
A vulnerability, which was classified as critical, has been found in CODESYS Control RTE, Control RTE SL, Control Win, Runtime Toolkit, Control for BeagleBone SL, Control for emPC-A, iMX6 SL, Control for IOT2000 SL, Control for Linux ARM SL, Control for Linux SL, Control for PFC100 SL, Control for PFC200 SL, Control for PLCnext SL, Control for Raspberry Pi SL, Control for WAGO Touch Panels 600 SL and Virtual Control SL. Affected is an unknown function. The manipulation leads to format string. This vulnerability is listed as CVE-2026-3509. The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.
vuldb.com

CVE-2019-25630 | Phreesoft PhreeBooks ERP 5.2.3 Image Manager bizuno/image/manager imgFile cross site scripting (Exploit 46644 / EDB-46644)

Vuldb Updates
3 weeks ago
A vulnerability has been found in Phreesoft PhreeBooks ERP 5.2.3 and classified as problematic. Affected by this issue is some unknown functionality of the file bizuno/image/manager of the component Image Manager Component. This manipulation of the argument imgFile causes cross site scripting. This vulnerability is registered as CVE-2019-25630. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
vuldb.com

CVE-2019-25632 | Sourceforge phpFileManager 1.7.8 Parameter index.php action/fm_current_dir/filename missing authentication (Exploit 46638 / EDB-46638)

Vuldb Updates
3 weeks ago
A vulnerability identified as critical has been detected in Sourceforge phpFileManager 1.7.8. The impacted element is an unknown function of the file index.php of the component Parameter Handler. This manipulation of the argument action/fm_current_dir/filename causes missing authentication. This vulnerability is handled as CVE-2019-25632. It is possible to launch the attack on the local host. Additionally, an exploit exists.
vuldb.com

CVE-2019-25628 | Speedbit Download Accelerator Plus DAP up to 10.0.6.0 URL out-of-bounds write (Exploit 46673 / EDB-46673)

Vuldb Updates
3 weeks ago
A vulnerability described as critical has been identified in Speedbit Download Accelerator Plus DAP up to 10.0.6.0. Affected is an unknown function of the component URL Handler. Executing a manipulation can lead to out-of-bounds write. The identification of this vulnerability is CVE-2019-25628. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2019-25631 | Aida64 Business up to 5.99.4900 SMTP display name out-of-bounds write (Exploit 46639 / EDB-46639)

Vuldb Updates
3 weeks ago
A vulnerability was found in Aida64 Business up to 5.99.4900. It has been classified as critical. The affected element is an unknown function. The manipulation of the argument SMTP display name leads to out-of-bounds write. This vulnerability is documented as CVE-2019-25631. The attack needs to be performed locally. Additionally, an exploit exists.
vuldb.com

SLH

Dark Feed IO
3 weeks ago

You must login to view this content

cohenido

From Data to Intelligence: Why More Signals Don’t Equal Better Security

Security Boulevard
3 weeks ago

The misconception: more data intelligence equals better security In cybersecurity, there’s a common assumption: More data = more visibility = better protection But in reality, more data often creates more problems. Security teams today are overwhelmed with: Alerts Feeds Data sources Yet many still struggle to understand what actually matters. The problem with too many […]

The post From Data to Intelligence: Why More Signals Don’t Equal Better Security appeared first on Security Boulevard.

Christine Castro

Managed ad