📦 Supravizio Bpm

Venki Supravizio BPM through version 18.0.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files. This can lead to remote code execution on aff...

This vulnerability allows authenticated attackers with Application Administrator access in Venki Supravizio BPM to leak NTLM hashes, enabling privilege escalation on the underlying host system. It aff...

The login page of Venki Supravizio BPM up to version 18.1.1 contains an open redirect vulnerability that can be exploited to perform reflected cross-site scripting (XSS) attacks. This allows attackers...