progress
261 tracked vulnerabilities.
CVE-2024-7763
CRITICAL
WhatsUp Gold < 24.0 - Authentication Bypass
Oct 24, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-8755
HIGH
LoadMaster <7.2.60.1 - OS Command Injection
Oct 11, 2024
CVSS 8.4
EPSS 0.01
CVE-2024-8048
HIGH
In Progress Telerik Reporting <2024 Q3 - Code Injection
Oct 09, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-8015
CRITICAL
Telerik Report Server <2024 Q3 - RCE
Oct 09, 2024
CVSS 9.1
EPSS 0.01
CVE-2024-8014
HIGH
Telerik Reporting <2024 Q3 - Code Injection
Oct 09, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-7840
HIGH
Progress Telerik Reporting < 18.2.24.924 - Command Injection via Hyperlink Element
Oct 09, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-7294
HIGH
Telerik Report Server < 10.2.24.806 - Unauthenticated Denial of Service via HTTP Request Flooding
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-7293
HIGH
Telerik Report Server <2024 Q3 - Info Disclosure
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-7292
HIGH
Progress Telerik Report Server < 10.2.24.806 - Credential Stuffing via Excessive Login Attempts
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-6658
HIGH
LoadMaster <7.2.60.0 - OS Command Injection
Sep 12, 2024
CVSS 8.4
EPSS 0.01
CVE-2024-7654
HIGH
Progress OpenEdge < 11.7.19 and 12.2-12.2.14 - Unauthenticated Content Injection via ActiveMQ Discovery Service
Sep 03, 2024
CVSS 8.3
EPSS 0.00
CVE-2024-7346
HIGH
OpenEdge - Host Name Validation Bypass
Sep 03, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-7345
HIGH
Progress OpenEdge < 11.7.18 - Unauthenticated Code Injection via Local ABL Client
Sep 03, 2024
CVSS 8.3
EPSS 0.01
CVE-2024-6672
HIGH
WhatsUp Gold <2024.0.0 - Privilege Escalation
Aug 29, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-6671
CRITICAL
NUCLEI
WhatsUp Gold <2024.0.0 - SQL Injection
Aug 29, 2024
CVSS 9.8
EPSS 0.15
CVE-2024-6670
CRITICAL
KEVNUCLEI
WhatsUp Gold SQL Injection (CVE-2024-6670)
Aug 29, 2024
CVSS 9.8
EPSS 0.95
CVE-2024-7745
MEDIUM
WS_FTP Server <8.8.8 - Privilege Escalation
Aug 28, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-7744
MEDIUM
WS_FTP Server < 8.8.8 - Authenticated Path Traversal via Web Transfer Module
Aug 28, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-6576
HIGH
Progress MOVEit Transfer - Privilege Escalation
Jul 29, 2024
CVSS 7.3
EPSS 0.01
CVE-2024-6327
CRITICAL
Telerik Report Server <2024 Q2 - Code Injection
Jul 24, 2024
CVSS 9.9
EPSS 0.02
CVE-2024-6096
HIGH
Telerik Reporting <18.1.24.709 - Code Injection
Jul 24, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-5019
MEDIUM
WhatsUp Gold < 23.1.3 - Unauthenticated Arbitrary File Read via SessionController.CachedCSS
Jun 25, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-5018
MEDIUM
WhatsUp Gold < 23.1.3 - Unauthenticated Path Traversal via SessionController.LoadNMScript
Jun 25, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-5017
MEDIUM
WhatsUp Gold < 23.1.3 - Unauthenticated Path Traversal via AppProfileImport
Jun 25, 2024
CVSS 6.5
EPSS 0.02
CVE-2024-5016
HIGH
WhatsUp Gold < 23.1.0 - Remote Code Execution via Untrusted Data Deserialization
Jun 25, 2024
CVSS 7.2
EPSS 0.22
Products
whatsup_gold 56
moveit_transfer 33
ws_ftp_server 28
sitefinity 24
loadmaster 21
telerik_reporting 14
openedge 12
MOVEit Transfer 9
moveit_automation 8
telerik_ui_for_asp.net_ajax 8
ecs_connection_manager 7
multi-tenant_loadmaster 7
telerik_report_server 7
connection_manager_for_objectscale 6
progress 5
sitefinity_cms 5
flowmon 4
telerik_document_processing_libraries 3
telerik_ui_for_winforms 3
DataDirect Connect for JDBC Autonomous REST Connector 2
DataDirect Connect for JDBC for Amazon Redshift 2
DataDirect Connect for JDBC for Apache Cassandra 2
DataDirect Connect for JDBC for Apache Impala 2
DataDirect Connect for JDBC for Apache SparkSQL 2
DataDirect Connect for JDBC for DB2 2
DataDirect Connect for JDBC for Google Analytics 4 2
DataDirect Connect for JDBC for Google BigQuery 2
DataDirect Connect for JDBC for Greenplum 2
DataDirect Connect for JDBC for Hive 2
DataDirect Connect for JDBC for Informix 2
Quick Filters