CVE-2026-25900

Lack of output escaping leads to a XSS vector in the feed modules...

CVE-2026-25900

Lack of output escaping leads to a XSS vector in the feed modules...

EUVD-2023-25900

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-25900

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

CVE-2025-25900

A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the username and password parameters at /userRpm/PPPoEv6CfgRpm.htm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted packet...

CVE-2023-25900

CVE-2023-25900: Adobe Dimension versions 3.4.7 and earlier are affected by an out-of-bounds read when parsing a crafted file, which could allow code execution in the context of the current user. Exploitation requires the user to open a malicious file (user interaction). The vulnerability is docum...

Adobe Dimension < 3.4.8 Multiple Vulnerabilities (APSB23-20) (macOS)

The version of Adobe Dimension installed on the remote macOS host is prior to 3.4.8. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-20 advisory. - Adobe Dimension versions 3.4.7 and earlier is affected by a Stack-based Buffer Overflow vulnerability that could...

CVE-2022-25900

creationtimestamp| type| source ---|---|--- 2022-07-02 00:39:50+00:00| seen| https://t.me/cibsecurity/45525 2025-09-24 09:00:39+00:00| seen| https://bsky.app/profile/lirantal.com/post/3lzl36o4jvm2q...

-llscw-react-cli (>=1.0.0 <=1.1.0-beta2), 002-node-cli (=1.0.0) +13402 more potentially affected by CVE-2022-25900 via git-clone (>=0.0.2 <=0.2.0)

git-clone NPM version =0.0.2, =1.0.0, =0.0.1, =1.0.0, =1.0.11 and more Source cves: CVE-2022-25900 Source advisory: OSV:GHSA-8JMW-WJR8-2X66...

CVE-2022-25900

All versions of package git-clone are vulnerable to Command Injection due to insecure usage of the --upload-pack feature of git...

CVE-2022-25900 Command Injection

All versions of package git-clone are vulnerable to Command Injection due to insecure usage of the --upload-pack feature of git...

CVE-2022-25900

CVE-2022-25900 affects the npm package git-clone. All versions are vulnerable to Command Injection due to insecure usage of git’s --upload-pack feature, as stated in the CVE description and corroborated by multiple connected sources. The root cause is improper handling/neutralization of arguments...

ABC_Game_Engine (>=0.1.0 <=0.1.2), AitSar (=0.1.1) +39145 more potentially affected by CVE-2021-25900 via smallvec (>=1.0.0 <=1.2.0)

smallvec CARGO version =1.0.0, =0.1.0, =0.1.0, =0.1.0, =0.11.0, =0.1.0-beta.1, =1.0.2, =0.1.0, =0.1.0, =0.1.1 - GuiNistRs =0.1.0 and more Source cves: CVE-2021-25900 Source advisory: OSV:GHSA-43W2-9J62-HQ99...

-llscw-react-cli (>=1.0.0 <=1.1.0-beta2), 002-node-cli (=1.0.0) +13402 more potentially affected by CVE-2022-25900 via git-clone (>=0.0.2 <=0.2.0)

git-clone NPM version =0.0.2, =1.0.0, =0.0.1, =1.0.0, =1.0.11 and more Source cves: CVE-2022-25900 Source advisory: SNYK:JS-GITCLONE-2434308...

Mageia: Security Advisory (MGASA-2021-0234)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:1408-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated librsvg packages fix a security vulnerability

This update patches the vendored smallvec Rust crate in librsvg to fix a security vulnerability: The Iterator implementation mishandles destructors, leading to a double free CVE-2021-25900...

openSUSE Security Update : librsvg (openSUSE-2021-634)

This update for librsvg fixes the following issues : - librsvg was updated to 2.46.5 : - Update dependent crates that had security vulnerabilities: smallvec to 0.6.14 - RUSTSEC-2018-0003 - CVE-2021-25900 bsc1183403 This update was imported from the SUSE:SLE-15-SP2:Update update project...

openSUSE: Security Advisory for librsvg (openSUSE-SU-2021:0634-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for librsvg (important)

openSUSE Security Update: Security update for librsvg Announcement ID: openSUSE-SU-2021:0634-1 Rating: important References: 1183403 Cross-References: CVE-2021-25900 CVSS scores: CVE-2021-25900 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 An update...