Product
sparxsystems pro cloud server
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-42100
CVE-2026-42099
CVE-2026-42097
CVE-2026-42096
CVE-2025-15625
CVE-2025-15624
CVE-2025-15623
<= 6.1.167
Improper Handling of Syntactically Invalid Structure in Sparx Pro Cloud Server allows Denial of Service (DoS) attack to be execute
<= 6.1.167
Sparx Pro Cloud Server is vulnerable to a Race Condition in the /data_api/dl_internal_artifact.php endpoint. The application downl
<= 6.1.167
Sparx Pro Cloud Server requires authentication based on requested URL. An attacker can omit the "model" query parameter and send
<= 6.1.167
Sparx Pro Cloud Server is vulnerable to Broken Access Control within communication with the database. Due to lack of permission ch
all versions
Unauthenticated user is able to execute arbitrary SQL commands in Sparx Pro Cloud Server database in certain cases.
all versions
Plaintext Storage of a Password vulnerability in Sparx Systems Pty Ltd. Sparx Pro Cloud Server. In a setup where OpenID is used
all versions
Exposure of Private Personal Information to an Unauthorized Actor, : Exposure of Sensitive System Information to an Unauthorized C