CVE-2023-42983

Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks...

CVE-2023-42982

Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks...

Apple macOS 输入验证错误漏洞

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file resulting in a denial of service or disclosure of memory contents. An attacker could exploit...

Apple macOS 缓冲区错误漏洞

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file to cause a denial of service or disclose the contents of memory. An attacker could exploit t...

Adobe Bridge 安全漏洞

Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a buffer overflow vulnerability, which arises from a failure to properly handle memory allocation during file processing, resulting in a buffer overflow that can be exploited by an attacker to execute...

CVE-2025-32370

Kentico Xperience before 13.0.178 has a specific set of allowed ContentUploader file extensions for unauthenticated uploads; however, because .zip is processed through TryZipProviderSafe, there is additional functionality to create files with other extensions. NOTE: this is a separate issue not...

CVE-2025-3253

A vulnerability was found in xujiangfei admintwo 1.0 and classified as problematic. This issue affects some unknown processing of the file /ztree/insertTree. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed t...

CVE-2025-3243

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dentalform.php. The manipulation of the argument itrno/dentalno leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-3237 Tenda FH1202 wrlwpsset access control

A vulnerability was found in Tenda FH1202 1.2.0.14408. It has been rated as critical. This issue affects some unknown processing of the file /goform/wrlwpsset. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed to the public an...

CVE-2025-3038

A vulnerability was found in code-projects Payroll Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /viewaccount.php. The manipulation of the argument salaryrate leads to sql injection. The attack may be initiated remotely. The exploit has...

CVE-2025-3038

The CVE-2025-3038 entry applies to code-projects Payroll Management System 1.0. The vulnerability resides in the /view_account.php handling of the salary_rate parameter, enabling SQL injection. It is described as exploitable remotely and publicly disclosed. Affected component appears to be the pa...

CVE-2025-24211

This issue was addressed with improved memory handling. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. Processing a maliciously crafted video file may lead to unexpected app termination or...

CVE-2025-2920

A vulnerability was found in Netis WF-2404 1.1.124EN. It has been rated as problematic. This issue affects some unknown processing of the file /еtc/passwd. The manipulation leads to use of weak hash. It is possible to launch the attack on the physical device. The complexity of an attack is rather...

CVE-2025-2739 PHPGurukul Old Age Home Management System manage-services.php sql injection

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/manage-services.php. The manipulation of the argument sertitle leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-2450

NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI Vision Builder AI. User interaction is required to exploit this vulnerability in that the target must...

CVE-2025-2450

NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI Vision Builder AI. User interaction is required to exploit this vulnerability in that the target must...

CVE-2025-2450 NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability

NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI Vision Builder AI. User interaction is required to exploit this vulnerability in that the target must...

CVE-2025-2450 NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability

NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI Vision Builder AI. User interaction is required to exploit this vulnerability in that the target must...

CVE-2025-2374

A vulnerability, which was classified as critical, has been found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument aid/adminname/mobilenumber/email leads to sql injection. The...

(0Day) NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI Vision Builder AI. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processin...