Blesta <= 5.13.1 - Cross-Site Scripting

Blesta 3.x through 5.x before 5.13.3 contains an input validation vulnerability caused by mishandling input, letting attackers potentially exploit the system, exploit requires unspecified conditions. id: CVE-2026-25616 info: name: Blesta = 5.13.1 - Cross-Site Scripting author: 0xAkoko severity:...

Astra Linux - уязвимость в linux

A vulnerability was discovered in the Linux kernel before version 5.13.3. The file lib/seqbuf.c contains a buffer overflow issue related to seqbufputmemhex...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013276)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013276 advisory. drivers/net/ethernet/xilinx/xilinxemaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints...

Mattermost Desktop App 安全漏洞

The Mattermost Desktop App is a desktop application for messaging services provided by the American company Mattermost. The Mattermost Desktop App versions 5.13.3 and earlier contain security vulnerabilities. These vulnerabilities stem from the absence of restrictions on listeners that navigate t...

CVE-2026-25614

Blesta 3.x through 5.x before 5.13.3 allows object injection, aka CORE-5680...

CVE-2026-25616

Blesta 3.x through 5.x before 5.13.3 mishandles input validation, aka CORE-5665...

CVE-2026-25616

Blesta 3.x through 5.x before 5.13.3 mishandles input validation, aka CORE-5665...

CVE-2026-25615

Blesta 3.x through 5.x before 5.13.3 allows object injection, aka CORE-5668...

Blesta 代码问题漏洞

Blesta is a customer relationship management system developed by Blesta Inc. Versions of Blesta prior to 5.13.3 contained a code vulnerability caused by object injection...

Blesta 跨站脚本漏洞

Blesta is a customer relationship management system developed by Blesta Inc. Versions of Blesta prior to 5.13.3 contained a cross-site scripting vulnerability, which was caused by improper input validation handling...

CVE-2025-14311

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JMRI.This issue affects JMRI: before 5.13.3...

EUVD-2025-201903

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JMRI.This issue affects JMRI: before 5.13.3...

CVE-2025-14311

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JMRI.This issue affects JMRI: before 5.13.3...

CVE-2025-14311

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JMRI.This issue affects JMRI: before 5.13.3...

JMRI 安全漏洞

JMRI is a model railroad digital command and control software from JMRI open source. A security vulnerability exists in JMRI versions prior to 5.13.3 that stems from vulnerability to path traversal attacks...

weblate-5.13.3-1.1 on GA media (moderate)

weblate-5.13.3-1.1 on GA media Announcement ID: openSUSE-SU-2025:15615-1 Rating: moderate Cross-References: CVE-2025-61587 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the weblate-5.13.3-1....

OPENSUSE-SU-2025:15615-1 weblate-5.13.3-1.1 on GA media

These are all security issues fixed in the weblate-5.13.3-1.1 package on the GA media of openSUSE Tumbleweed...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414316)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414316 advisory. An issue was discovered in the Linux kernel before 5.13.3. lib/seqbuf.c has a seqbufputmemhex buffer overflow. Tenable has extracted the preceding description block...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414516)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414516 advisory. In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/outputcore.c has an information leak because of certain use of a hash table which, although bi...

EUVD-2021-32251

Malicious code in bioql PyPI...