Author: Angelo Barbosa

CVE-2024-22347 | IBM UrbanCode Velocity/DevOps Velocity up to 4.0.25 risky encryption

A vulnerability was found in IBM UrbanCode Velocity and DevOps Velocity up to 4.0.25. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to risky cryptographic algorithm. This vulnerability is handled as CVE-2024-22347. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2024-22348 | IBM UrbanCode Velocity/DevOps Velocity Trusted Domain cross-domain policy

A vulnerability was found in IBM UrbanCode Velocity and DevOps Velocity. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Trusted Domain Handler. The manipulation leads to permissive cross-domain policy with untrusted domains. This vulnerability is known as CVE-2024-22348. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2025-24013 | CodeIgniter up to 4.5.7 Header Validation interpretation conflict (GHSA-x5mq-jjr3-vmx6)

A vulnerability was found in CodeIgniter up to 4.5.7. It has been classified as problematic. Affected is an unknown function of the component Header Validation Handler. The manipulation leads to interpretation conflict. This vulnerability is traded as CVE-2025-24013. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2025-23219 | LabRedesCefetRJ WeGIA up to 3.2.9 adicionar_cor.php sql injection

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.2.9 and classified as critical. This issue affects some unknown processing of the file adicionar_cor.php. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-23219. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2025-23219 | LabRedesCefetRJ WeGIA up to 3.2.9 adicionar_cor.php sql injection

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.2.9 and classified as critical. This issue affects some unknown processing of the file adicionar_cor.php. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-23219. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More