11465 matches found
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989622)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989622 advisory. In the Linux kernel, the following vulnerability has been resolved: nfp: Fix memory leak in nfpcppareacacheadd In line 800 1, nfpcppareaalloc allocates and...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989424)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989424 advisory. In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Bounds check struct nfctarget arrays While running under CONFIGFORTIFYSOURCE=y, syzkall...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989475)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989475 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: hisisas: Free irq vectors in order for v3 HW If the driver probe fails to request the chann...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990305)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990305 advisory. In the Linux kernel, the following vulnerability has been resolved: Revert wifi: mac80211: fix memory leak in ieee80211ifadd This reverts commit...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989152)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989152 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/via: Avoid potential array out-of-bound in addsecretdacpath sndhdagetconnections can...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989810)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989810 advisory. In the Linux kernel, the following vulnerability has been resolved: leds: class: Protect brightnessshow with ledcdev-ledaccess mutex There is NULL pointer issue...
CVE-2025-63447
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addcustomer.php...
CVE-2025-63446
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addvendor.php...
WordPress plugin Top Bar Notification 跨站请求伪造漏洞
WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in...
EUVD-2025-37494
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addvendor.php...
EUVD-2025-37496
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addcustomer.php...
CVE-2025-63446
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addvendor.php...
CVE-2025-63447
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addcustomer.php...
CVE-2025-63446
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addvendor.php...
CVE-2025-12594
A security flaw has been discovered in code-projects Simple Online Hotel Reservation System 2.0. This affects an unknown function of the file /admin/addaccount.php. The manipulation of the argument Name results in sql injection. The attack may be performed from remote. The exploit has been releas...
PT-2025-44774
Name of the Vulnerable Software and Affected Versions Water Management System version 1.0 Description Water Management System version 1.0 is susceptible to Cross Site Scripting XSS attacks. The issue is located in the /add customer.php endpoint. The vulnerability allows attackers to inject...
Water-Management-System 安全漏洞
Water-Management-System is an inventory management system by the individual developer Dikshant Naik. A security vulnerability exists in Water-Management-System version 1.0, which originates from cross-site scripting in the file /addvendor.php...
CVE-2025-63446
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addvendor.php...
CVE-2025-63446
Water Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /add_vendor.php. Root cause details are not fully disclosed beyond the endpoint name; CVSS v3.1 base score 6.1 (AV:N, AC:L, PR:N, UI:R, S:C, C:L, I:L, A:N). Exploitation is mentioned as PoC in one source, but exploitable ...
CVE-2025-63447
Water Management System v1.0 is affected by a Cross Site Scripting (XSS) vulnerability in the /add_customer.php endpoint. The issue is documented across multiple sources (NVD, Red Hat, EUVD, CIRCL, CVE list, CNNVD) and is generally described as an XSS in that endpoint. The root cause is not expli...