CVE-2026-25601

creationtimestamp| type| source ---|---|--- 2026-04-01 15:43:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3migzt6t6dh2d...

CVE-2019-25601

creationtimestamp| type| source ---|---|--- 2026-03-22 14:54:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhnsfrr5x62n 2026-03-23 03:00:09+00:00| seen| https://www.vulncheck.com/advisories/ultravnc-viewer-denial-of-service-via-buffer-overflow...

EUVD-2022-25601

Malicious code in bioql PyPI...

CVE-2025-1049 Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability

Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

CVE-2024-25601

Stored cross-site scripting XSS vulnerability in Expando module's geolocation custom fields in Liferay Portal 7.2.0 through 7.4.2, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 17, and older unsupported versions allows remote authenticated users to...

CVE-2024-25601

creationtimestamp| type| source ---|---|--- 2024-02-21 03:21:22+00:00| seen| https://t.me/ctinow/189143 2024-02-21 03:31:49+00:00| seen| https://t.me/ctinow/189151 2024-02-22 03:48:33+00:00| seen| https://t.me/arpsyndicate/3901...

CVE-2024-25601

CVE-2024-25601 affects the Expando module geolocation custom fields in Liferay Portal 7.2.0–7.4.2 and older unsupported versions, and Liferay DXP 7.3 before SP3, 7.2 before FP17. It is a stored XSS vulnerability allowing remote authenticated users to inject arbitrary web script or HTML via the na...

CVE-2023-25601

creationtimestamp| type| source ---|---|--- 2023-04-20 20:30:45+00:00| seen| https://t.me/cibsecurity/62533...

org.apache.dolphinscheduler:dolphinscheduler-standalone-server (>=3.0.0 <=3.0.6) potentially affected by CVE-2023-25601 via org.apache.dolphinscheduler:dolphinscheduler-api (>=3.0.0 <=3.0.6)

org.apache.dolphinscheduler:dolphinscheduler-api MAVEN version =3.0.0, =3.0.0, =3.0.6 Source cves: CVE-2023-25601 Source advisory: OSV:GHSA-3JXW-CV35-2MMV...

CVE-2023-25601

On version 3.0.0 through 3.1.1, Apache DolphinScheduler's python gateway suffered from improper authentication: an attacker could use a socket bytes attack without authentication. This issue has been fixed from version 3.1.2 onwards. For users who use version 3.0.0 to 3.1.1, you can turn off the...

CVE-2023-25601 Apache DolphinScheduler 3.0.0 to 3.1.1 python gateway has improper authentication

On version 3.0.0 through 3.1.1, Apache DolphinScheduler's python gateway suffered from improper authentication: an attacker could use a socket bytes attack without authentication. This issue has been fixed from version 3.1.2 onwards. For users who use version 3.0.0 to 3.1.1, you can turn off the...

CVE-2023-25601

CVE-2023-25601 describes an improper authentication flaw in Apache DolphinScheduler’s python gateway affecting versions 3.0.0–3.1.1. The issue could permit a socket-based attack without authentication. The vulnerability is fixed in version 3.1.2 and later. Remediation options from the documented ...

CVE-2023-25601 Apache DolphinScheduler 3.0.0 to 3.1.1 python gateway has improper authentication

On version 3.0.0 through 3.1.1, Apache DolphinScheduler's python gateway suffered from improper authentication: an attacker could use a socket bytes attack without authentication. This issue has been fixed from version 3.1.2 onwards. For users who use version 3.0.0 to 3.1.1, you can turn off the...

Fedora: Security Advisory for wordpress (FEDORA-2022-956b6078fb)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2022-25601

creationtimestamp| type| source ---|---|--- 2022-03-11 20:15:20+00:00| seen| https://t.me/cibsecurity/38813...

CVE-2022-25601

Reflected Cross-Site Scripting XSS vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin versions = 2.4...

CVE-2022-25601

The CVE-2022-25601 issue affects the WordPress plugin Contact Form X, specifically versions

CVE-2022-25601 WordPress Contact Form X plugin <= 2.4 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin versions = 2.4...

SUSE: Security Advisory (SUSE-SU-2020:2790-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:2791-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...