Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities
CVE-2025-63830
CKFinder 1.4.3 is vulnerable to Cross Site Scripting (XSS) in the File Upload function. An attacker can upload a crafted SVG containing active content.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-11-14
CVE-2025-54348
A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-11-14
CVE-2025-54559
An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote Path Traversal for loading arbitrary external content.
CVSS Score
3.7
EPSS Score
0.0
Published
2025-11-14
CVE-2025-54560
A Server-side Request Forgery vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Probing of internal infrastructure.
CVSS Score
3.8
EPSS Score
0.0
Published
2025-11-14
CVE-2025-54561
An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote access to content despite lack of the correct permission through a Broken Authorization Schema.
CVSS Score
4.3
EPSS Score
0.0
Published
2025-11-14
CVE-2025-54562
A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Technical Information to be Disclosed through stack trace.
CVSS Score
4.3
EPSS Score
0.0
Published
2025-11-14
CVE-2025-54339
An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges.
CVSS Score
10.0
EPSS Score
0.001
Published
2025-11-14
CVE-2025-54340
A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is a Broken or Risky Cryptographic Algorithm.
CVSS Score
4.1
EPSS Score
0.0
Published
2025-11-14
CVE-2025-54342
A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is Exposure of Sensitive Information because of Incompatible Policies.
CVSS Score
3.3
EPSS Score
0.0
Published
2025-11-14
CVE-2025-54343
An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges.
CVSS Score
9.6
EPSS Score
0.0
Published
2025-11-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved