PT-2025-47181

Name of the Vulnerable Software and Affected Versions affected versions not specified Description The software is susceptible to Cross-Site Request Forgery CSRF attacks. CSRF allows an attacker to induce a user to execute unwanted actions on a web application in which they’re currently...

PT-2025-45392

Name of the Vulnerable Software and Affected Versions Splunk Enterprise affected versions not specified Description A lack of proper input validation in the dashboard label or path can enable an attacker to cause a device error, potentially leading to information disclosure or data manipulation...

PT-2025-44193

Name of the Vulnerable Software and Affected Versions blog-vue-springboot affected versions not specified Description An issue exists that allows for the unauthorized modification of articles. Recommendations At the moment, there is no information about a newer version that contains a fix for thi...

PT-2025-45463

Name of the Vulnerable Software and Affected Versions Google Chrome affected versions not specified Description A flaw exists in the Google Chrome Omnibox component related to improper control flow management. Successful exploitation could allow a remote attacker to disclose protected information...

PT-2025-38183

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition exists in the Distributed Lock Manager DLM lowcomms functionality within the Linux kernel. Specifically, a race can occur between queue work in the dlm lowcomms commit...

PT-2025-32797 · Unknown +1 · Graphics Kernel +1

Name of the Vulnerable Software and Affected Versions: Graphics Kernel affected versions not specified Description: An issue exists in the Graphics Kernel where access of a resource using an incompatible type 'type confusion' can allow an authorized attacker to execute code locally...

PT-2025-29983 · Code Projects · Online Appointment Booking System

Name of the Vulnerable Software and Affected Versions: code-projects Online Appointment Booking System version 1.0 Description: A critical vulnerability exists in an unknown functionality of the file /admin/addmanagerclinic.php. Manipulation of the clinic argument leads to SQL injection. The atta...

PT-2025-27736 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue is related to the af packet module, where calling PACKET ADD MEMBERSHIP on an ops-locked device can trigger the NETDEV...

PT-2025-25460 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The issue concerns a Cross-Site Request Forgery in the Apache HTTP Server. No information is provided about the estimated number of potentially affected devices worldwide or...

PT-2025-25189 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is being actively exploited. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

PT-2025-20936 · Microsoft · Visual Studio Code

Name of the Vulnerable Software and Affected Versions: Visual Studio Code affected versions not specified Description: The issue allows an unauthorized attacker to bypass a security feature locally in Visual Studio Code when files or directories are accessible to external parties. Recommendations...

PT-2025-27758

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns handling zero-length skcipher requests in the Linux kernel's crypto module, specifically the marvell/cesa component. The problem arises when the kernel attempts to...

PT-2025-20006 · Apache · Apache Struts

Name of the Vulnerable Software and Affected Versions: Apache Struts affected versions not specified Description: The issue concerns a command injection problem. No specific details about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was...

PT-2025-18748 · Flowring Technology · Agentflow

Name of the Vulnerable Software and Affected Versions: Agentflow from Flowring Technology affected versions not specified Description: The issue allows unauthenticated remote attackers to perform password brute force attacks by bypassing account lockout protection. Recommendations: At the moment,...

PT-2025-17217 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A use after free bug has been identified in the Linux kernel. The issue occurs after calling netif rx niskb, where dereferencing skb becomes unsafe. Specifically, the can frame cf whic...

PT-2025-15216 · Eavb · Eavb

Name of the Vulnerable Software and Affected Versions: eAVB affected versions not specified Description: The issue is related to memory corruption that occurs while processing message content in eAVB. Recommendations: At the moment, there is no information about a newer version that contains a fi...

PT-2025-18454

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability has been identified in the Linux kernel related to virtiofs, where in certain scenarios, such as during fuzz testing, the source name may be NULL. This could lead to a...

Linux Distros Unpatched Vulnerability : CVE-2024-57989

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix NULL deref check in mt7925changeviflinks In mt7925changeviflinks...

Linux Distros Unpatched Vulnerability : CVE-2024-56592

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: Call freehtabelem after htabunlockbucket For htab of maps, when the map is removed from the htab, it may hold the last reference of the map. bpfmapfdputptr...

Linux Distros Unpatched Vulnerability : CVE-2023-43375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Hoteldruid v3.0.5 was discovered to contain multiple SQL injection vulnerabilities at /hoteldruid/clienti.php via the annonascita, annoscaddoc, giornonascita,...