Offensive Services - Zero-Defense

Our Advisories

Explore our expertly analyzed vulnerabilities with detailed insights, impacts, and mitigation strategies. With a proven track record, we are dedicated to protecting businesses from evolving cyber threats.

CVE-2025-31508

Cross-Site Scripting in Sysaid Technologies 23.3.40

CVE-2024-51239

Sparx Systems Prolaborate 5.3.0.291 Hard-Coded AES Key Vulnerability

CVE-2024-57091

Sparx Systems Prolaborate 5.3.0.291 Zip Slip Vulnerability

CVE-2024-57090

Sparx Systems Prolaborate 5.3.0.291 Arbitrary File Deletion Vulnerability

CVE-2024-57089

Sparx Systems Prolaborate 5.3.0.291 License Response Manipulation Vulnerability

CVE-2024-57088

Sparx Systems Prolaborate 5.3.0.291 Authentication Bypass Vulnerability

CVE-2024-25090

Insufficient input validation in Apache Roller

CVE-2023-31837

ZIP Slip Vulnerability in MasaCMS

CVE-2023-31836

Cross-Site Request Forgery in MasaCMS

CVE-2023-31835

User Enumeration in MasaCMS

CVE-2023-31834

Session Fixation in MasaCMS

CVE-2023-31833

Authenticated Stored XSS via Title Injection in MasaCMS

CVE-2023-31832

Open Redirect Vulnerability in URL Parsing in MasaCMS

CVE-2023-29686

XML External Entity (XXE) Vulnerability in MasaCMS

CVE-2023-29685

Stored XSS in the Collections Component of MasaCMS

CVE-2023-29684

Authenticated DOM-based XSS in MasaCMS

CVE-2023-29683

Authenticated Stored XSS in MasaCMS

CVE-2023-29682

Open Redirect Vulnerability in MasaCMS

CVE-2021-35386

Server-Side Request Forgery in NPM axios 0.21.1

CVE-2019-6505

GoAnywhere Managed File Transfer with XML External Entity 6.0.1

CVE-2018-19920

Cross-Site Scripting in Access Category Password 1.4.1

CVE-2018-14932

DLL Hijacking in Zoom Client for Meetings 4.1.28245.0717

CVE-2018-10288

Cross-site scripting in Smart Slider version 3.2

CVE-2018-10053

Reflected XSS in Lightstreamer Web Client 7.0.2, build 1710

CVE-2018-9239

Host Header Injection in IceWarp WebMail 12.0.4

CVE-2018-9231

Open Redirect in IceWarp WebMail version 12.0.4

CVE-2018-9181

Reflected Cross-site scripting in IceWarp WebMail 10.3.1

CVE-2018-9180

Listing of the directories in IceWarp WebMail 12.0.4

CVE-2018-9179

DOM based Cross-site scripting (XSS) in the Web Admin Portal for IceWarp Server 12.0.4

CVE-2018-9178

DOM-based Cross-site scripting in IceWarp Web Client 12.0.4

CVE-2018-9124

Local Credentials disclosure in Private Internet Access VPN

CVE-2018-6354

Formspree is vulnerable to cross-site scripting attacks

CVE-2018-5682

User Enumeration in Prestashop Reset Password Mechanism

CVE-2018-5681

Cross-Site Scripting vulnerability in Prestashop CMS Editing Page

Ready to Secure Your Digital Future?

Join the companies that trust Zero-Defense Labs for their security needs.

Don't wait until it's too late.
Get started today.

Get to know us Contact Us

Don't Trust, Verify

Solutions

Resources

Company