Advantive Veracore vulnerabilities
2 known vulnerabilities affecting advantive/veracore.
Total CVEs
2
CISA KEV
2
actively exploited
Public exploits
0
Exploited in wild
2
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-57968P1HIGHCVSS 8.8KEVfixed in 2024.4.2.12025-02-03
CVE-2024-57968 [HIGH] CWE-434 CVE-2024-57968: Advantive VeraCore before 2024.4.2.1 allows remote authenticated users to upload files to unintended
Advantive VeraCore before 2024.4.2.1 allows remote authenticated users to upload files to unintended folders (e.g., ones that are accessible during web browsing by other users). upload.aspx can be used for this.
nvd
CVE-2025-25181P1HIGHCVSS 7.5KEVfixed in 2025.1.1.3≤ 2025.1.02025-02-03
CVE-2025-25181 [HIGH] CWE-89 CVE-2025-25181: A SQL injection vulnerability in timeoutWarning.asp in Advantive VeraCore through 2025.1.0 allows re
A SQL injection vulnerability in timeoutWarning.asp in Advantive VeraCore through 2025.1.0 allows remote attackers to execute arbitrary SQL commands via the PmSess1 parameter.
nvd