Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / progress

progress

244 tracked vulnerabilities.

CVE-2024-7745 MEDIUM

WS_FTP Server <8.8.8 - Privilege Escalation

CVE-2024-7744 MEDIUM

WS_FTP Server < 8.8.8 - Authenticated Path Traversal via Web Transfer Module

CVE-2024-6576 HIGH

Progress MOVEit Transfer - Privilege Escalation

CVE-2024-6327 CRITICAL

Telerik Report Server <2024 Q2 - Code Injection

CVE-2024-6096 HIGH

Telerik Reporting <18.1.24.709 - Code Injection

CVE-2024-5019 MEDIUM

WhatsUp Gold < 23.1.3 - Unauthenticated Arbitrary File Read via SessionController.CachedCSS

CVE-2024-5018 MEDIUM

WhatsUp Gold < 23.1.3 - Unauthenticated Path Traversal via SessionController.LoadNMScript

CVE-2024-5017 MEDIUM

WhatsUp Gold < 23.1.3 - Unauthenticated Path Traversal via AppProfileImport

CVE-2024-5016 HIGH

WhatsUp Gold < 23.1.0 - Remote Code Execution via Untrusted Data Deserialization

CVE-2024-5015 HIGH

WhatsUp Gold < 23.1.3 - Authenticated Server-Side Request Forgery in SessionController

CVE-2024-5014 HIGH

WhatsUp Gold < 23.1.3 - Authenticated Server-Side Request Forgery via GetASPReport Feature

CVE-2024-5013 HIGH

WhatsUp Gold < 23.1.3 - Unauthenticated Denial of Service via SetAdminPassword Installation Step

CVE-2024-5012 HIGH

WhatsUp Gold < 23.1.3 - Unauthenticated Windows Credential Disclosure via WUGDataAccess.Credentials

CVE-2024-5011 HIGH

WhatsUp Gold < 23.1.3 - Unauthenticated Denial of Service via TestController Chart Request

CVE-2024-5010 HIGH

WhatsUp Gold < 23.1.3 - Unauthenticated Sensitive Information Exposure via TestController

CVE-2024-5009 HIGH

WhatsUp Gold < 23.1.3 - Improper Access Control in InstallController.SetAdminPassword

CVE-2024-5008 HIGH

WhatsUp Gold < 23.1.3 - Authenticated Remote Code Execution via AppProfileImportController

CVE-2024-4885 CRITICAL KEVNUCLEI

Progress WhatsUp Gold < 23.1.3 - Unauthenticated Remote Code Execution via ExportUtilities.Export.GetFileWithoutZip

CVE-2024-4884 CRITICAL

WhatsUp Gold < 23.1.3 - Unauthenticated Remote Code Execution via CommunityController

CVE-2024-4883 CRITICAL

Progress WhatsUp Gold < 23.1.3 - Unauthenticated Remote Code Execution via NmApi.exe

CVE-2024-5806 CRITICAL

Progress MOVEit SFTP Authentication Bypass for Arbitrary File Read

CVE-2024-5805 CRITICAL

Progress MOVEit Gateway 2024.0.0.0 - Authentication Bypass in SFTP Modules

CVE-2024-4563 MEDIUM

Progress MOVEit Automation < 2024.0.0 - Use of a Broken or Risky Cryptographic Algorithm in Configuration Export

CVE-2024-4837 MEDIUM

Progress Telerik Report Server < 10.1.24.514 - Sensitive Information Exposure

CVE-2024-4357 MEDIUM

Progress Telerik Report Server < 10.1.24.514 - XML External Entity Injection

Previous Page 4 of 10 Next

Products

whatsup_gold 56 ws_ftp_server 28 moveit_transfer 25 loadmaster 19 sitefinity 19 telerik_reporting 14 openedge 12 moveit_automation 8 telerik_ui_for_asp.net_ajax 8 multi-tenant_loadmaster 7 telerik_report_server 7 ecs_connection_manager 6 connection_manager_for_objectscale 5 progress 5 sitefinity_cms 5 flowmon 3 telerik_document_processing_libraries 3 telerik_ui_for_winforms 3 DataDirect Connect for JDBC Autonomous REST Connector 2 DataDirect Connect for JDBC for Amazon Redshift 2 DataDirect Connect for JDBC for Apache Cassandra 2 DataDirect Connect for JDBC for Apache Impala 2 DataDirect Connect for JDBC for Apache SparkSQL 2 DataDirect Connect for JDBC for DB2 2 DataDirect Connect for JDBC for Google Analytics 4 2 DataDirect Connect for JDBC for Google BigQuery 2 DataDirect Connect for JDBC for Greenplum 2 DataDirect Connect for JDBC for Hive 2 DataDirect Connect for JDBC for Informix 2 DataDirect Connect for JDBC for Microsoft Dynamics 365 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy