|
4661
|
- |
|
-
|
-
|
The file indexer does not normalize the configured directory path. A backend user with permission to edit indexer configurations can index documents from arbitrary locations on the server file system…
|
CWE-22
Path Traversal
|
CVE-2026-46724
|
2026-05-19 23:47 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4662
|
- |
|
-
|
-
|
The extension passes an attacker-controlled cookie directly to PHP's unserialize() without safely processing the input. A remote, unauthenticated attacker can supply a crafted serialized payload to t…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-46725
|
2026-05-19 23:47 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4663
|
- |
|
-
|
-
|
The extension fails to properly sanitize user input before using it in a database query. As a result, an unauthenticated attacker can inject arbitrary SQL through a URL parameter on pages using the "…
|
CWE-89
SQL Injection
|
CVE-2026-8726
|
2026-05-19 23:47 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4664
|
- |
|
-
|
-
|
The Crawler extension passes the X-T3Crawler-Meta response header from crawled URLs directly to PHP's unserialize(). An attacker controlling a crawled endpoint can inject arbitrary serialized PHP obj…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-8727
|
2026-05-19 23:47 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4665
|
- |
|
-
|
-
|
The AddressRepository::getSqlQuery() method constructs a database query without properly sanitizing user input, leading to SQL Injection. The method is not invoked anywhere within the extension itsel…
|
CWE-89
SQL Injection
|
CVE-2026-8827
|
2026-05-19 23:47 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4666
|
- |
|
-
|
-
|
An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) in Qt Qt Framework (Unix) allows a local attacker to load a rogue CA certificate as a trusted syste…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2025-14575
|
2026-05-19 23:46 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4667
|
- |
|
-
|
-
|
Sparx Pro Cloud Server is vulnerable to Broken Access Control within communication with the database. Due to lack of permission checks, any low privileged user can run arbitrary SQL queries within da…
|
CWE-863
Incorrect Authorization
|
CVE-2026-42096
|
2026-05-19 23:45 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4668
|
- |
|
-
|
-
|
Sparx Pro Cloud Server requires authentication based on requested URL. An attacker can omit the "model" query parameter and send the model name only in the binary blob in POST request allowing SQL qu…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-42097
|
2026-05-19 23:45 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4669
|
- |
|
-
|
-
|
Sparx Enterprise Architect software has a security feature that limits user's actions to those specified in the role. An authenticated attacker can modify the Enterprise Architect client behavior (e…
|
CWE-603
Use of Client-Side Authentication
|
CVE-2026-42098
|
2026-05-19 23:45 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4670
|
- |
|
-
|
-
|
Sparx Pro Cloud Server is vulnerable to a Race Condition in the /data_api/dl_internal_artifact.php endpoint. The application downloads the properties of the object pointed by guid parameter and saves…
|
CWE-362
Race Condition
|
CVE-2026-42099
|
2026-05-19 23:45 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
