EUVD-2026-15793

Deserialization of Untrusted Data vulnerability in ThemeREX Work & Travel Company work-travel-company allows Object Injection.This issue affects Work & Travel Company: from n/a through = 1.2...

PT-2025-53752

Name of the Vulnerable Software and Affected Versions Mohammad I. Okfie IF AS Shortcode versions through 1.2 Description A code injection issue exists in Mohammad I. Okfie IF AS Shortcode. The flaw allows for code injection, potentially enabling attackers to execute malicious code. The affected...

CVE-2025-60144

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Lenix scss compiler lenix-scss-compiler allows Stored XSS.This issue affects Lenix scss compiler: from n/a through = 1.2...

PT-2025-14432 · Wisdomlogix Solutions Pvt. · Fonts Manager | Custom Fonts

Name of the Vulnerable Software and Affected Versions: Wisdomlogix Solutions Pvt. Ltd. Fonts Manager | Custom Fonts versions 1.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for...

Korenix JetPort 5601 操作系统命令注入漏洞

The Korenix JetPort 5601 is an intelligent serial device server from Korenix. A security vulnerability exists in Korenix JetPort 5601 version 1.2 and earlier, which stems from the lack of encryption of sensitive data in the resulting eavesdropping...

activemq:activemq (=1.1), activemq:activemq-optional (=3.2) +325 more potentially affected by CVE-2023-40743 via axis:axis (>=1.2 <=1.4)

axis:axis MAVEN version =1.2, =1.2.5, =1.1.0, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.6.4 and more Source cves: CVE-2023-40743 Source advisory: OSV:GHSA-RMQP-9W4C-GC7W...

PT-2022-22345 · Jenkins · Jenkins Recipe Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Recipe Plugin versions 1.2 and earlier Description: The issue is related to the configuration of the XML parser, which does not prevent XML external entity XXE attacks. This allows for potential exploitation. Recommendations: For...

PT-2020-19567 · Gog · Gog Galaxy

Name of the Vulnerable Software and Affected Versions: GOG Galaxy versions 1.2.x through 1.2.64 GOG Galaxy versions 2.0.x through 2.0.12 Description: The GalaxyClientService component of GOG Galaxy runs with elevated SYSTEM privileges in a Windows environment. Due to the software shipping with an...

PT-2007-3208 · Apache +1 · Apache Tomcat Jk Web Server Connector +1

Name of the Vulnerable Software and Affected Versions: Apache Tomcat JK Web Server Connector versions 1.2.x through 1.2.22 Description: The issue allows remote attackers to access protected pages via a crafted prefix JkMount, possibly involving double-encoded .. dot dot sequences and directory...