Aggregator

CVE-2026-3509 | CODESYS Control RTE prior 3.5.22.0 format string (VDE-2026-018 / EUVD-2026-14784)

Vuldb Updates
4 days ago
A vulnerability, which was classified as critical, has been found in CODESYS Control RTE, Control RTE SL, Control Win, Runtime Toolkit, Control for BeagleBone SL, Control for emPC-A, iMX6 SL, Control for IOT2000 SL, Control for Linux ARM SL, Control for Linux SL, Control for PFC100 SL, Control for PFC200 SL, Control for PLCnext SL, Control for Raspberry Pi SL, Control for WAGO Touch Panels 600 SL and Virtual Control SL. Affected is an unknown function. The manipulation leads to format string. This vulnerability is listed as CVE-2026-3509. The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.
vuldb.com

CVE-2019-25630 | Phreesoft PhreeBooks ERP 5.2.3 Image Manager bizuno/image/manager imgFile cross site scripting (Exploit 46644 / EDB-46644)

Vuldb Updates
4 days ago
A vulnerability has been found in Phreesoft PhreeBooks ERP 5.2.3 and classified as problematic. Affected by this issue is some unknown functionality of the file bizuno/image/manager of the component Image Manager Component. This manipulation of the argument imgFile causes cross site scripting. This vulnerability is registered as CVE-2019-25630. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
vuldb.com

CVE-2019-25632 | Sourceforge phpFileManager 1.7.8 Parameter index.php action/fm_current_dir/filename missing authentication (Exploit 46638 / EDB-46638)

Vuldb Updates
4 days ago
A vulnerability identified as critical has been detected in Sourceforge phpFileManager 1.7.8. The impacted element is an unknown function of the file index.php of the component Parameter Handler. This manipulation of the argument action/fm_current_dir/filename causes missing authentication. This vulnerability is handled as CVE-2019-25632. It is possible to launch the attack on the local host. Additionally, an exploit exists.
vuldb.com

CVE-2019-25628 | Speedbit Download Accelerator Plus DAP up to 10.0.6.0 URL out-of-bounds write (Exploit 46673 / EDB-46673)

Vuldb Updates
4 days ago
A vulnerability described as critical has been identified in Speedbit Download Accelerator Plus DAP up to 10.0.6.0. Affected is an unknown function of the component URL Handler. Executing a manipulation can lead to out-of-bounds write. The identification of this vulnerability is CVE-2019-25628. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2019-25631 | Aida64 Business up to 5.99.4900 SMTP display name out-of-bounds write (Exploit 46639 / EDB-46639)

Vuldb Updates
4 days ago
A vulnerability was found in Aida64 Business up to 5.99.4900. It has been classified as critical. The affected element is an unknown function. The manipulation of the argument SMTP display name leads to out-of-bounds write. This vulnerability is documented as CVE-2019-25631. The attack needs to be performed locally. Additionally, an exploit exists.
vuldb.com

From Data to Intelligence: Why More Signals Don’t Equal Better Security

Security Boulevard
4 days ago

The misconception: more data intelligence equals better security In cybersecurity, there’s a common assumption: More data = more visibility = better protection But in reality, more data often creates more problems. Security teams today are overwhelmed with: Alerts Feeds Data sources Yet many still struggle to understand what actually matters. The problem with too many […]

The post From Data to Intelligence: Why More Signals Don’t Equal Better Security appeared first on Security Boulevard.

Christine Castro

Managed ad