Filters

Progress Telerik Report ServerAccount Controller allows high count of login attempts

8.8
First published (updated )

Progress Telerik ReportingUncontrolled resource consumption of anonymous endpoints

7.5
First published (updated )

Progress Telerik ReportingPassword policy for new users is not strong enough

8.8
First published (updated )

Progress Telerik ReportingImproper neutralization special element in hyperlinks

7.8
First published (updated )

Progress Telerik ReportingTelerik Reporting Insecure Expression Evaluation

7.8
EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress Telerik ReportingTelerik Reporting EntityDataSource Insecure Type Resolution

8.8
EPSS
0.04%
First published (updated )

Progress OpenEdgeClient connections using default TLS certificates from OpenEdge may bypass TLS host name validation

7.2
EPSS
0.05%
First published (updated )

Progress OpenEdgeUnauthenticated Content Injection in OpenEdge Management web interface via ActiveMQ discovery service

8.3
EPSS
0.05%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold getMonitorJoin SQL Injection Privilege Escalation Vulnerability

8.8
EPSS
0.04%
First published (updated )

Progress Ws Ftp ServerMulti-Factor Authentication Bypass in Progress WS_FTP Server

8.1
EPSS
0.07%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress WhatsUp GoldWhatsUp Gold LoadCSSUsingBasePath Directory Traversal Information Disclosure Vulnerability

7.5
EPSS
0.09%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold LoadUsingBasePath Directory Traversal Information Disclosure Vulnerability

7.5
EPSS
0.09%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold OnMessage Deserialization of Untrusted Data Remote Code Execution Vulnerability

7.2
EPSS
0.05%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold SessionControler Server-Side Request Forgery Information Disclosure Vulnerability

8.8
EPSS
0.05%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold GetASPReport Server-Side Request Forgery Information Disclosure

7.1
EPSS
0.05%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress WhatsUp GoldWhatsUp Gold InstallController Denial-of-Service Vulnerability

7.5
EPSS
0.05%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold Missing Authentication GetWindowsCredential Information Disclosure Vulnerability

8.6
EPSS
0.04%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold TestController Chart denial of service vulnerability

7.5
EPSS
0.04%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold TestController multiple information disclosure vulnerabilities

7.5
EPSS
0.04%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold SetAdminPassword Improper Access Control Privilege Escalation Vulnerability

8.4
EPSS
0.05%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress WhatsUp GoldWhatsUp Gold APM Unrestricted File Upload Remote Code Execution Vulnerability

8.8
EPSS
0.05%
First published (updated )

Progress Telerik Test StudioPrivilege Elevation via Telerik Test Studio

7.8
EPSS
0.06%
First published (updated )

Progress Telerik ReportingPrivilege Elevation via Telerik Reporting Installer

7.8
EPSS
0.06%
First published (updated )

Progress Telerik JustdecompilePrivilege Elevation via Telerik JustDecompile Installer

7.8
EPSS
0.06%
First published (updated )

Progress OpenEdgeProgress Application Server (PAS) for OpenEdge Denial of Service

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress MOVEit TransferMissing Server-Side Input Validation in HTTP Parameter

7.1
EPSS
0.06%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold Unauthenticated Access to an API Endpoint

7.5
EPSS
0.05%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold Stored Cross-Site Scripting (XSS) via Roles

7.6
EPSS
0.04%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold Stored Cross-Site Scripting (XSS) via Alert Center

7.6
EPSS
0.04%
First published (updated )

Progress WhatsUp GoldWhatsUp Gold Stored Cross-Site Scripting (XSS) via Device Groups

7.6
EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress WhatsUp GoldWhatsUp Gold Stored Cross-Site Scripting (XSS) via Dashboard

7.6
EPSS
0.04%
First published (updated )

Progress MOVEit TransferMOVEit Transfer Group Admin Privilege Escalation

7.2
EPSS
0.05%
First published (updated )

Progress MOVEit TransferMOVEit Transfer XSS via MOVEit Gateway

7.1
EPSS
0.05%
First published (updated )

Progress Ws Ftp ServerWS_FTP Server Stored Cross-Site Scripting Vulnerability

8.3
First published (updated )

Progress Ws Ftp ServerWS_FTP Server SQL Injection via Administrative Interface

8.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress Ws Ftp ServerWS_FTP Server Ad Hoc Transfer Module Reflected Cross-Site Scripting Vulnerability

8.3
First published (updated )

Progress MOVEit TransferMOVEit Transfer System Administrator SQL Injection

7.2
First published (updated )

Progress MOVEit TransferMOVEit Transfer Machine Interface SQL Injection

8.8
First published (updated )

Progress MOVEit TransferIn Progress MOVEit Transfer before 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8…

7.5
First published (updated )

Progress MOVEit TransferSQL Injection

8.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress OpenEdgeIn Progress OpenEdge OEM (OpenEdge Management) and OEE (OpenEdge Explorer) before 12.7, a remote use…

8.8
First published (updated )

Progress Flowmon Packet InvestigatorPath Traversal

7.5
First published (updated )

Progress Ws Ftp ServerIn Progress WS_FTP Server before 8.8, it is possible for a host administrator to elevate their privi…

7.2
First published (updated )

Ipswitch WhatsUp GoldSSRF

7.5
First published (updated )

Progress OpenEdgeIn Progress OpenEdge before 11.7.14 and 12.x before 12.2.9, certain SUID binaries within the OpenEdg…

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Progress MOVEit TransferSQL Injection

8.8
First published (updated )

Progress MOVEit TransferSQL Injection

8.8
First published (updated )

Progress MOVEit TransferSQL Injection

8.8
First published (updated )

Progess Moveit TransferSQL Injection

8.8
First published (updated )

Progress FiddlerTelerik Fiddler v5.0.20182.28034 doesn't verify the hash of EnableLoopback.exe before running it, wh…

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203