Advantive Veracore
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Advantive Veracore.
Known Exploited Advantive Veracore Vulnerabilities
The following Advantive Veracore vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.
| Title | Description | Added |
|---|---|---|
| Advantive VeraCore Unrestricted File Upload Vulnerability |
Advantive VeraCore contains an unrestricted file upload vulnerability that allows a remote unauthenticated attacker to upload files to unintended folders via upload.apsx. CVE-2024-57968 Exploit Probability: 43.7% |
March 10, 2025 |
| Advantive VeraCore SQL Injection Vulnerability |
Advantive VeraCore contains a SQL injection vulnerability in timeoutWarning.asp that allows a remote attacker to execute arbitrary SQL commands via the PmSess1 parameter. CVE-2025-25181 Exploit Probability: 72.1% |
March 10, 2025 |
2 known exploited Advantive Veracore vulnerabilities are in the top 5% (95th percentile or greater) of the EPSS exploit probability rankings.
By the Year
In 2026 there have been 0 vulnerabilities in Advantive Veracore. Last year, in 2025 Veracore had 2 security vulnerabilities published. Right now, Veracore is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 2 | 7.85 |
It may take a day or so for new Veracore vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Advantive Veracore Security Vulnerabilities
SQL injection via PmSess1 in Advantive VeraCore <=2025.1.0 timeoutWarning.asp
CVE-2025-25181
5.8 - Medium
- February 03, 2025
A SQL injection vulnerability in timeoutWarning.asp in Advantive VeraCore through 2025.1.0 allows remote attackers to execute arbitrary SQL commands via the PmSess1 parameter.
SQL Injection
VeraCore Auth Upload to Unauth Folder via upload.aspx
CVE-2024-57968
9.9 - Critical
- February 03, 2025
Advantive VeraCore before 2024.4.2.1 allows remote authenticated users to upload files to unintended folders (e.g., ones that are accessible during web browsing by other users). upload.aspx can be used for this.
Unrestricted File Upload
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Advantive Veracore or by Advantive? Click the Watch button to subscribe.
