Publicly disclosed vulnerabilities discovered by or reported to Fluid Attacks

Buscar por término

Search filters

Discovered by

All

Severity

All

Our pentesters

OpenSupports 4.11.0 — SSRF via test imap and smtp endpoints

6.9

Medium

CVE-2025-10695

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

MacForge 1.2.0 Beta 1 - Local Privilege Escalation

8.5

High

CVE-2025-10751

Published date:

3 oct 2025

Discovered by

Oscar Uribe

Our pentesters

OpenSupports 4.11.0 — Insecure Direct Object Reference in supervised list

7.1

High

CVE-2025-10696

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

OpenSupports 4.11.0 — SQL Injection

7.1

High

CVE-2025-10692

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

is-localhost-ip 2.0.0 - SSRF via Restrictions bypass

6.9

Medium

CVE-2025-9960

Published date:

22 sept 2025

Discovered by

Cristian Vargas

Our pentesters

Ghost 6.0.6 - SSRF via oEmbed Bookmark

6.1

Medium

CVE-2025-9862

Published date:

17 sept 2025

Discovered by

Cristian Vargas

External pentesters

Calix Gigacenter ONT - Command Injection

8.5

High

CVE-2025-54084

Published date:

9 sept 2025

Discovered by

Danilo Erazo

External pentesters

Calix GigaCenter ONT firmware - Sensitive Information Disclosure

5.1

Medium

CVE-2025-54083

Published date:

9 sept 2025

Discovered by

Danilo Erazo

Cargar más

Buscar por término

Search filters

Discovered by

All

Severity

All

Our pentesters

OpenSupports 4.11.0 — SSRF via test imap and smtp endpoints

6.9

Medium

CVE-2025-10695

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

MacForge 1.2.0 Beta 1 - Local Privilege Escalation

8.5

High

CVE-2025-10751

Published date:

3 oct 2025

Discovered by

Oscar Uribe

Our pentesters

OpenSupports 4.11.0 — Insecure Direct Object Reference in supervised list

7.1

High

CVE-2025-10696

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

OpenSupports 4.11.0 — SQL Injection

7.1

High

CVE-2025-10692

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

is-localhost-ip 2.0.0 - SSRF via Restrictions bypass

6.9

Medium

CVE-2025-9960

Published date:

22 sept 2025

Discovered by

Cristian Vargas

Our pentesters

Ghost 6.0.6 - SSRF via oEmbed Bookmark

6.1

Medium

CVE-2025-9862

Published date:

17 sept 2025

Discovered by

Cristian Vargas

External pentesters

Calix Gigacenter ONT - Command Injection

8.5

High

CVE-2025-54084

Published date:

9 sept 2025

Discovered by

Danilo Erazo

External pentesters

Calix GigaCenter ONT firmware - Sensitive Information Disclosure

5.1

Medium

CVE-2025-54083

Published date:

9 sept 2025

Discovered by

Danilo Erazo

Cargar más

Buscar por término

Search filters

Discovered by

All

Severity

All

Our pentesters

OpenSupports 4.11.0 — SSRF via test imap and smtp endpoints

6.9

Medium

CVE-2025-10695

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

MacForge 1.2.0 Beta 1 - Local Privilege Escalation

8.5

High

CVE-2025-10751

Published date:

3 oct 2025

Discovered by

Oscar Uribe

Our pentesters

OpenSupports 4.11.0 — Insecure Direct Object Reference in supervised list

7.1

High

CVE-2025-10696

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

OpenSupports 4.11.0 — SQL Injection

7.1

High

CVE-2025-10692

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

is-localhost-ip 2.0.0 - SSRF via Restrictions bypass

6.9

Medium

CVE-2025-9960

Published date:

22 sept 2025

Discovered by

Cristian Vargas

Our pentesters

Ghost 6.0.6 - SSRF via oEmbed Bookmark

6.1

Medium

CVE-2025-9862

Published date:

17 sept 2025

Discovered by

Cristian Vargas

External pentesters

Calix Gigacenter ONT - Command Injection

8.5

High

CVE-2025-54084

Published date:

9 sept 2025

Discovered by

Danilo Erazo

External pentesters

Calix GigaCenter ONT firmware - Sensitive Information Disclosure

5.1

Medium

CVE-2025-54083

Published date:

9 sept 2025

Discovered by

Danilo Erazo

Cargar más

Buscar por término

Search filters

Discovered by

All

Severity

All

Our pentesters

OpenSupports 4.11.0 — SSRF via test imap and smtp endpoints

6.9

Medium

CVE-2025-10695

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

MacForge 1.2.0 Beta 1 - Local Privilege Escalation

8.5

High

CVE-2025-10751

Published date:

3 oct 2025

Discovered by

Oscar Uribe

Our pentesters

OpenSupports 4.11.0 — Insecure Direct Object Reference in supervised list

7.1

High

CVE-2025-10696

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

OpenSupports 4.11.0 — SQL Injection

7.1

High

CVE-2025-10692

Published date:

3 oct 2025

Discovered by

Cristian Vargas

Our pentesters

is-localhost-ip 2.0.0 - SSRF via Restrictions bypass

6.9

Medium

CVE-2025-9960

Published date:

22 sept 2025

Discovered by

Cristian Vargas

Our pentesters

Ghost 6.0.6 - SSRF via oEmbed Bookmark

6.1

Medium

CVE-2025-9862

Published date:

17 sept 2025

Discovered by

Cristian Vargas

External pentesters

Calix Gigacenter ONT - Command Injection

8.5

High

CVE-2025-54084

Published date:

9 sept 2025

Discovered by

Danilo Erazo

External pentesters

Calix GigaCenter ONT firmware - Sensitive Information Disclosure

5.1

Medium

CVE-2025-54083

Published date:

9 sept 2025

Discovered by

Danilo Erazo

Cargar más

Learn about our policy for disclosing advisories of vulnerabilities in third-party, open-source products.

Inicia tu prueba gratuita de 21 días

Descubre los beneficios de nuestra solución Hacking Continuo, de la que ya disfrutan empresas de todos los tamaños.

Inicia tu prueba gratuita de 21 días

Descubre los beneficios de nuestra solución Hacking Continuo, de la que ya disfrutan empresas de todos los tamaños.

Inicia tu prueba gratuita de 21 días

Descubre los beneficios de nuestra solución Hacking Continuo, de la que ya disfrutan empresas de todos los tamaños.

Las soluciones de Fluid Attacks permiten a las organizaciones identificar, priorizar y remediar vulnerabilidades en su software a lo largo del SDLC. Con el apoyo de la IA, herramientas automatizadas y pentesters, Fluid Attacks acelera la mitigación de la exposición al riesgo de las empresas y fortalece su postura de ciberseguridad.

SOC 2 Type II

SOC 3

Suscríbete a nuestro boletín

Mantente al día sobre nuestros próximos eventos y los últimos blog posts, advisories y otros recursos interesantes.

Las soluciones de Fluid Attacks permiten a las organizaciones identificar, priorizar y remediar vulnerabilidades en su software a lo largo del SDLC. Con el apoyo de la IA, herramientas automatizadas y pentesters, Fluid Attacks acelera la mitigación de la exposición al riesgo de las empresas y fortalece su postura de ciberseguridad.

SOC 2 Type II

SOC 3

Suscríbete a nuestro boletín

Mantente al día sobre nuestros próximos eventos y los últimos blog posts, advisories y otros recursos interesantes.

Las soluciones de Fluid Attacks permiten a las organizaciones identificar, priorizar y remediar vulnerabilidades en su software a lo largo del SDLC. Con el apoyo de la IA, herramientas automatizadas y pentesters, Fluid Attacks acelera la mitigación de la exposición al riesgo de las empresas y fortalece su postura de ciberseguridad.

SOC 2 Type II

SOC 3

Suscríbete a nuestro boletín

Mantente al día sobre nuestros próximos eventos y los últimos blog posts, advisories y otros recursos interesantes.