Pingalert Application Server

pingalert_application_server

Vendor: Desktopalert • 15 CVEs

CVEs (15)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-54563 1Desktopalert 1Pingalert Application Server Dec 5, 2025 Nov 24, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Incorrect Access Control, leading to Remote Information Disclosure.
CVE-2025-54347 1Desktopalert 1Pingalert Application Server Dec 5, 2025 Nov 24, 2025 N/A· v4 9.9 CRITICAL· v3 N/A· v2 A Directory Traversal vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to write arbitrary files under certain conditions.
CVE-2025-54341 1Desktopalert 1Pingalert Application Server Dec 5, 2025 Nov 24, 2025 N/A· v4 5.3 MEDIUM· v3 N/A· v2 A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There are Hard-coded configuration values.
CVE-2025-54338 1Desktopalert 1Pingalert Application Server Dec 5, 2025 Nov 24, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to disclose user hashes.
CVE-2025-54562 1Desktopalert 1Pingalert Application Server Nov 20, 2025 Nov 14, 2025 N/A· v4 4.3 MEDIUM· v3 N/A· v2 A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Technical Information to be Disclosed through stack trace.
CVE-2025-54561 1Desktopalert 1Pingalert Application Server Nov 20, 2025 Nov 14, 2025 N/A· v4 4.3 MEDIUM· v3 N/A· v2 An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote access to content despite lack of the correct permission through a...Show more An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote access to content despite lack of the correct permission through a Broken Authorization Schema.Show less
CVE-2025-54560 1Desktopalert 1Pingalert Application Server Nov 20, 2025 Nov 14, 2025 N/A· v4 3.8 LOW· v3 N/A· v2 A Server-side Request Forgery vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Probing of internal infrastructure.
CVE-2025-54559 1Desktopalert 1Pingalert Application Server Nov 20, 2025 Nov 14, 2025 N/A· v4 3.7 LOW· v3 N/A· v2 An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote Path Traversal for loading arbitrary external content.
CVE-2025-54348 1Desktopalert 1Pingalert Application Server Nov 20, 2025 Nov 14, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive informat...Show more A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information.Show less
CVE-2025-54346 1Desktopalert 1Pingalert Application Server Nov 20, 2025 Nov 14, 2025 N/A· v4 7.6 HIGH· v3 N/A· v2 A Reflected Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive infor...Show more A Reflected Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information.Show less
CVE-2025-54345 1Desktopalert 1Pingalert Application Server Nov 20, 2025 Nov 14, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. Sensitive Information is exposed to an Unauthorized Actor.
CVE-2025-54343 1Desktopalert 1Pingalert Application Server Nov 19, 2025 Nov 14, 2025 N/A· v4 9.6 CRITICAL· v3 N/A· v2 An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges.
CVE-2025-54342 1Desktopalert 1Pingalert Application Server Nov 19, 2025 Nov 14, 2025 N/A· v4 3.3 LOW· v3 N/A· v2 A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is Exposure of Sensitive Information because of Incompatible Policies.
CVE-2025-54340 1Desktopalert 1Pingalert Application Server Nov 19, 2025 Nov 14, 2025 N/A· v4 4.1 MEDIUM· v3 N/A· v2 A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is a Broken or Risky Cryptographic Algorithm.
CVE-2025-54339 1Desktopalert 1Pingalert Application Server Nov 19, 2025 Nov 14, 2025 N/A· v4 10.0 CRITICAL· v3 N/A· v2 An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges.