NPM: Next.js has a Middleware / Proxy bypass in App Router applications via segment-prefetch routes - Incomplete Fix Follow-Up

Incomplete Fix Follow-Up vulnerability discovered by ? in WordPress Npm next versions = 15.2.0, 15.5.18...

NPM: Next.js vulnerable to cache poisoning via collisions in React Server Component cache-busting

NPM: Next.js vulnerable to cache poisoning via collisions in React Server Component cache-busting vulnerability discovered by ? in WordPress Npm next versions = 13.4.6, 15.5.16...

NPM: Next.js has cross-site scripting in beforeInteractive scripts with untrusted input

NPM: Next.js has cross-site scripting in beforeInteractive scripts with untrusted input vulnerability discovered by ? in WordPress Npm next versions = 13.0.0, 15.5.16...

NPM: Next.js has a Denial of Service in the Image Optimization API

NPM: Next.js has a Denial of Service in the Image Optimization API vulnerability discovered by ? in WordPress Npm next versions = 10.0.0, 15.5.16...

NPM: Next.js vulnerable to server-side request forgery in applications using WebSocket upgrades

NPM: Next.js vulnerable to server-side request forgery in applications using WebSocket upgrades vulnerability discovered by ? in WordPress Npm next versions = 13.4.13, 15.5.16...

NPM: Next.js has a Middleware / Proxy bypass in App Router applications via segment-prefetch routes

NPM: Next.js has a Middleware / Proxy bypass in App Router applications via segment-prefetch routes vulnerability discovered by ? in WordPress Npm next versions = 15.2.0, 15.5.16...

NPM: Next.js has a Middleware / Proxy bypass through dynamic route parameter injection

NPM: Next.js has a Middleware / Proxy bypass through dynamic route parameter injection vulnerability discovered by ? in WordPress Npm next versions = 15.4.0, 15.5.16...

CVE-2026-27471

ERP is a free and open source Enterprise Resource Planning tool. In versions up to 15.98.0 and 16.0.0-rc.1 and through 16.6.0, certain endpoints lacked access validation which allowed for unauthorized document access. This issue has been fixed in versions 15.98.1 and 16.6.1...

ERPNext 安全漏洞

ERPNext is a set of open-source enterprise resource planning solutions developed by the Indian company ERPNext. Versions of ERPNext prior to 15.98.0, as well as versions 16.0.0-rc.1 to 16.6.0, contain security vulnerabilities. These vulnerabilities stem from the lack of access validation for...

CVE-2025-7007

NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the antivirus process to crash.This issue affects Antivirus: 16.0.0; Anitvirus: 3.0.3...

CVE-2025-7007

NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the antivirus process to crash.This issue affects Antivirus: 16.0.0; Anitvirus: 3.0.3...

CVE-2025-7007

CVE-2025-7007 describes a NULL pointer dereference in Avast Antivirus running on macOS (version 16.0.0) and Linux (version 3.0.3). The issue occurs when scanning malformed Windows PE files, causing the antivirus process to crash. Multiple connected sources confirm the affected versions and the ro...

EUVD-2025-200065

NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the antivirus process to crash.This issue affects Antivirus: 16.0.0; Anitvirus: 3.0.3...

CVE-2025-7007 Null pointer dereference in Avast Antivirus on macOS (16.0.0) or Linux (3.0.3)

NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the antivirus process to crash.This issue affects Antivirus: 16.0.0; Anitvirus: 3.0.3...

CVE-2025-7007 Null pointer dereference in Avast Antivirus on macOS (16.0.0) or Linux (3.0.3)

NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the antivirus process to crash.This issue affects Antivirus: 16.0.0; Anitvirus: 3.0.3...

Avast Antivirus 安全漏洞

Avast Antivirus is a suite of antivirus software from the Czech company Avast. A security vulnerability exists in Avast Antivirus version 16.0.0 MAC and 3.0.3 Linux, which originates from a null pointer dereference caused by scanning malformed Windows PE files, which may result in a process crash...

CVE-2025-58072

CVE-2025-58072 affects SS1 (DOS Co., Ltd.) SS1 Ver.16.0.0.10 and earlier and SS1 Media 16.0.0a and earlier. The vulnerability is a path traversal flaw caused by an improperly restricted pathname, allowing a remote unauthenticated attacker to view arbitrary files. Multiple connected sources (Red H...

PT-2025-34979

Name of the Vulnerable Software and Affected Versions: SS1 versions 16.0.0.10 and earlier SS1 Media versions 16.0.0.a and earlier Description: The use of a hard-coded password in SS1 allows a remote, unauthenticated attacker to view arbitrary files with root privileges. Recommendations: Versions...

Exploit for Code Injection in Xwiki

CVE-2025-24893 Bash POC script for RCE vulnerability in XWiki...

2adif (=0.1.0), 3robotics (=0.0.1) +1563 more potentially affected by CVE-2025-50688 via twisted (>=16.0.0 <=26.4.0rc2)

twisted PYPI version =16.0.0, =0.0.12, =3.0.9, =3.0.0, =0.1.0, =23.12.0rc1, =0.10.0, =0.0.1, =0.4.0, =3.0.0, =0.1.4, =1.0.0, =1.0.2 - aha-scrapyd =1.3.0 and more Source cves: CVE-2025-50688 Source advisory: SNYK:PYTHON-TWISTED-12671201...