PT-2025-47310

Name of the Vulnerable Software and Affected Versions Windu CMS version 4.1 Windu CMS affected versions not specified Description Windu CMS is susceptible to a Cross-Site Request Forgery CSRF issue within the user editing functionality. A malicious actor can create a specially crafted website tha...

PT-2025-25919 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to an overflow when configuring a loop. The issue arises from the userspace configuring a loop using an ioctl call, passi...

CMS Made Simple < 2.2.15 Multiple Vulnerabilities

CMS Made Simple is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:cmsmadesimple:cmsmadesimple...

Fedora: Security Advisory (FEDORA-2025-d48f900812)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GHSA-FFVR-GMP3-XX43 Apache EventMesh: raft Hessian Deserialization Vulnerability allowing remote code execution

CWE-502 Deserialization of Untrusted Data at the eventmesh-meta-raft plugin module in Apache EventMesh master branch without release version on windows\linux\mac os e.g. platforms allows attackers to send controlled message and remote code execute via hessian deserialization rpc protocol. Users c...

PT-2025-4689 · Mapbox · Mapbox For Wp Advanced

Name of the Vulnerable Software and Affected Versions: Mapbox for WP Advanced versions n/a through 1.0.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This enables an attacker to...

PT-2024-32513 · Unknown · Fluent Support

Name of the Vulnerable Software and Affected Versions: Fluent Support versions 1.8.0 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions 1.8.0 and...

PT-2023-32456 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The issue was mentioned on Twitter with a rejected reason of Accidental Request. No further details are provided about the issue itself...

PT-2023-18974 · Unknown · Media Cp Media Control Panel

Name of the Vulnerable Software and Affected Versions: Media CP Media Control Panel latest version Description: The issue allows for CSRF, which is possible through an unspecified endpoint. Recommendations: For the latest version of Media CP Media Control Panel, at the moment, there is no...

perlcal.txt

whizkunde security advisory: PerlCal CGI http://www.whizkunde.org | [email protected] ---------------------------------------------------------- Release date: April 27th 2001 Subject: PerlCal CGI security problem Systems affected: NIX not windows systems running PerlCal CGI script Vendor:...