A vulnerability was found in Dell PowerScale OneFS. It has been rated as problematic. Affected by this vulnerability is an unknown functionality of the component NFSv4/SMB. The manipulation leads to authorization bypass.
This vulnerability is referenced as CVE-2025-43724. The attack can only be performed from a local environment. No exploit is available.
Upgrading the affected component is advised.
A vulnerability was found in code-projects E-Commerce Website 1.0. It has been declared as critical. Affected is an unknown function of the file /pages/supplier_add.php. Executing manipulation of the argument supp_email can lead to sql injection.
The identification of this vulnerability is CVE-2025-11511. The attack may be launched remotely. Furthermore, there is an exploit available.
A vulnerability was found in code-projects E-Commerce Website 1.0. It has been classified as critical. This impacts an unknown function of the file /pages/product_add.php. Performing manipulation of the argument prod_name results in sql injection.
This vulnerability was named CVE-2025-11509. The attack may be initiated remotely. In addition, an exploit is available.
A vulnerability, which was classified as critical, has been found in Ivanti Connect Secure and Policy Secure. This affects an unknown function of the component Web. Performing manipulation results in improper authentication.
This vulnerability is known as CVE-2023-46805. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
It is recommended to apply the suggested workaround.
A vulnerability was found in Ivanti Connect Secure and Policy Secure up to 9.1R18/22.6R2 and classified as critical. Affected by this vulnerability is an unknown functionality of the component SAML. Such manipulation leads to server-side request forgery.
This vulnerability is traded as CVE-2024-21893. The attack may be launched remotely. Furthermore, there is an exploit available.
It is best practice to apply a patch to resolve this issue.
A vulnerability was found in Microsoft Windows up to Server 2022 23H2. It has been rated as critical. Affected is an unknown function of the component Internet Shortcut File Handler. Performing manipulation results in protection mechanism failure.
This vulnerability is cataloged as CVE-2024-21412. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
To fix this issue, it is recommended to deploy a patch.
A vulnerability was found in code-projects Voting System 1.0 and classified as critical. This affects an unknown function of the file /admin/voters_add.php. Such manipulation of the argument photo leads to unrestricted upload.
This vulnerability is uniquely identified as CVE-2025-11508. The attack can be launched remotely. Moreover, an exploit is present.
A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1 and classified as critical. The impacted element is an unknown function of the file /admin/search-invoices.php. This manipulation of the argument searchdata causes sql injection.
This vulnerability is handled as CVE-2025-11507. The attack can be initiated remotely. Additionally, an exploit exists.
A vulnerability, which was classified as critical, was found in PHPGurukul Beauty Parlour Management System 1.1. The affected element is an unknown function of the file /admin/search-appointment.php. The manipulation of the argument searchdata results in sql injection.
This vulnerability is known as CVE-2025-11506. It is possible to launch the attack remotely. Furthermore, an exploit is available.