EUVD-2018-21603

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-25110

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Marked prior to version 0.3.17 is vulnerable to a Regular Expression Denial of Service ReDoS attack due to catastrophic backtracking in several regular...

marked 安全漏洞

marked is a Markdown parser and compiler written in JavaScript by Christopher Jeffrey, an individual developer in the United States. A security vulnerability exists in marked prior to version 0.3.17, which stems from catastrophic backtracking of regular expressions parsing HTML tags and markdown...

CVE-2025-23759

CVE-2025-23759 is a reflected XSS vulnerability in the WordPress plugin Affiliate Tools Việt Nam (Leduchuy89VN) affecting versions up to 0.3.17. The issue stems from improper neutralization of input during web page generation. CVSS 3.1 base score 7.1 (HIGH) with network access, no privileges, and...

PT-2025-5070 · Unknown · Leduchuy89Vn Affiliate Tools Việt Nam

Name of the Vulnerable Software and Affected Versions: leduchuy89vn Affiliate Tools Việt Nam versions 0.3.17 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS, which allows Reflected XSS. This means...

WordPress Affiliate Tools Việt Nam plugin <= 0.3.17 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Affiliate Tools Việt Nam versions = 0.3.17...

Letta 安全漏洞

Letta MemGPT is an open source framework for building stateful LLM applications from Letta Open Source. A security vulnerability exists in Letta version v0.3.17 that stems from incorrect access control. An attacker exploiting the vulnerability could access sensitive data...

PT-2024-28335 · Unknown · Cpacker Memgpt

Name of the Vulnerable Software and Affected Versions: Cpacker MemGPT version 0.3.17 Description: The issue is related to incorrect access control in the "/users" endpoint, allowing attackers to access sensitive data. Recommendations: For version 0.3.17, consider disabling access to the "/users"...

Execution with Unnecessary Privileges

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Execution with Unnecessary Privileges through the API endpoint http://0.0.0.0:3000/api/v1/memories/id/update. An attacker can modify other users' data without proper authorization. Remediation Upgrade...

Information Exposure

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Information Exposure due to the embedding model update feature under admin settings. An attacker can expose sensitive information by observing error messages that vary based on the file's existence and...

PT-2024-30540 · Unknown · Calamares-Nixos-Extensions

Name of the Vulnerable Software and Affected Versions: calamares-nixos-extensions versions prior to 0.3.17 Description: The issue affects users who installed NixOS through the graphical installer using manual disk partitioning, where the system boots via legacy BIOS, some disk partitions are...