CVE-2023-37535 – HCL Domino Volt and Domino Leap Unvalidated Request Parameter Vulnerability

April 30, 2025

CVE ID : CVE-2023-37535

Published : April 30, 2025, 10:15 p.m. | 54 minutes ago

Description : Insufficient URI protocol whitelist in HCL Domino Volt and Domino Leap
allow script injection through query parameters.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2023-4533 – Red Hat OpenShift Remote Code Execution

Next Article CVE-2023-45721 – HCL Leap Unauthenticated Directory Information Exposure

Highlights

CVE-2025-5106 – Fujian Kelixun Filename Handler Os Command Injection Vulnerability

May 23, 2025

CVE ID : CVE-2025-5106

Published : May 23, 2025, 12:15 p.m. | 24 minutes ago

Description : A vulnerability was found in Fujian Kelixun 1.0. It has been classified as critical. This affects an unknown part of the file /app/fax/fax_view.php of the component Filename Handler. The manipulation of the argument fax_file leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

Parasoft C/C++test 2025.1, Secure Code Warrior AI Security Rules, and more – Daily News Digest

What I Wish Someone Told Me When I Was Getting Into ARIA

SD Times 100

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

This Xbox game emotionally wrecked me in less than four hours… I’m going to go hug my cat now

Top 5 desktop PC case features that I can’t live without — and neither should you

‘No aggressive monetization’ — Nexus Mods’ new ownership responds to worried members

Build AI Agents That Run Your Day – While You Focus on What Matters

Build AI Agents That Run Your Day – While You Focus on What Matters

Faster Builds in Meteor 3.3: Modern Build Stack with SWC and Bundler Optimizations

How to Change Redirect After Login/Register in Laravel Breeze

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

This Xbox game emotionally wrecked me in less than four hours… I’m going to go hug my cat now

Top 5 desktop PC case features that I can’t live without — and neither should you

CVE-2023-37535 – HCL Domino Volt and Domino Leap Unvalidated Request Parameter Vulnerability

The “Infinite Workday” is Here: Microsoft Warns of Never-Ending Work Driven by Hybrid Models & AI

Mastodon Cracks Down: New Terms Ban Unauthorized AI Data Scraping

How to get Apple TV+ for less than $3 a month – even if you already subscribe

CVE-2025-48486 – FreeScout Cross-Site Scripting (XSS) Vulnerability

CVE-2025-34490 – GFI MailEssentials XXE Vulnerability

OpenThoughts: A Scalable Supervised Fine-Tuning SFT Data Curation Pipeline for Reasoning Models

CVE-2025-5106 – Fujian Kelixun Filename Handler Os Command Injection Vulnerability

CVE-2025-4880 – PHPGurukul News Portal SQL Injection Vulnerability

Kong Event Gateway makes it easier to work with Apache Kafka

Nite Riot: Minimalism Gets a Wild Side

CVE-2023-37535 – HCL Domino Volt and Domino Leap Unvalidated Request Parameter Vulnerability

Related Posts