Arbitrary File Upload

Overview typo3/cms-core is a free open source enterprise content management system. Affected versions of this package are vulnerable to Arbitrary File Upload via the file management module that allows to upload of any file type, except for those that are directly executable in a web server contex...

CVE-2025-47939 TYPO3 CMS Vulnerable to Unrestricted File Upload in File Abstraction Layer

TYPO3 is an open source, PHP based web content management system. By design, the file management module in TYPO3’s backend user interface has historically allowed the upload of any file type, with the exception of those that are directly executable in a web server context. This lack of restrictio...

CVE-2025-45819

CVE-2025-45819 affects Slims (Senayan Library Management Systems) version 9 Bulian 9.6.1. The issue is a SQL Injection vulnerability in the file path admin/modules/master_file/author.php, arising from inadequate input handling in that module. Documented impact in the CVE data shows low confidenti...

Exploit for Code Injection in Webkul Krayin_Crm

CVE-2025-3568 Privilege Escalation via Malicious SVG File...

CVE-2024-58113

Vulnerability of improper resource management in the memory management module Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2024-58113

CVE-2024-58113 is associated with Huawei HarmonyOS and is described as a vulnerability in the memory management module due to improper resource management that can affect availability. The connected documents identify HarmonyOS as the affected platform and characterize the issue as a resource mis...

CVE-2025-3250

A vulnerability, which was classified as problematic, has been found in elunez eladmin 2.7. Affected by this issue is some unknown functionality of the file /api/database/testConnect of the component Maintenance Management Module. The manipulation leads to deserialization. The attack may be...

CVE-2025-3250

A vulnerability, which was classified as problematic, has been found in elunez eladmin 2.7. Affected by this issue is some unknown functionality of the file /api/database/testConnect of the component Maintenance Management Module. The manipulation leads to deserialization. The attack may be...

CVE-2025-3250

A vulnerability, which was classified as problematic, has been found in elunez eladmin 2.7. Affected by this issue is some unknown functionality of the file /api/database/testConnect of the component Maintenance Management Module. The manipulation leads to deserialization. The attack may be...

CVE-2025-3250

CVE-2025-3250 affects elunez eladmin 2.7, specifically deserialization in the Maintenance Management Module’s /api/database/testConnect endpoint. Publicly disclosed exploit suggests remote access is possible. Several connected sources corroborate a deserialization flaw in an unknown functionality...

CVE-2025-3250 elunez eladmin Maintenance Management Module testConnect deserialization

A vulnerability, which was classified as problematic, has been found in elunez eladmin 2.7. Affected by this issue is some unknown functionality of the file /api/database/testConnect of the component Maintenance Management Module. The manipulation leads to deserialization. The attack may be...

CVE-2025-25373

The Memory Management Module of NASA cFS Core Flight System Aquila has insecure permissions, which can be exploited to gain an RCE on the platform...

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

CVE-2025-25373

The Memory Management Module of NASA cFS Core Flight System Aquila has insecure permissions, which can be exploited to gain an RCE on the platform...

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

PT-2025-12828

Name of the Vulnerable Software and Affected Versions NASA cFS Core Flight System Aquila affected versions not specified Description The issue concerns a segmentation fault that can occur in the Memory Management Module of NASA cFS Core Flight System Aquila when a malicious telecommand is sent...

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

PT-2025-12829

Name of the Vulnerable Software and Affected Versions NASA cFS Core Flight System Aquila affected versions not specified Description The Memory Management Module of NASA cFS Core Flight System Aquila has insecure permissions, which can be exploited to gain remote code execution RCE on the platfor...

CVE-2025-25372

CVE-2025-25372 affects NASA cFS (Core Flight System) Aquila. A malicious telecommand can trigger a segmentation fault in the Memory Management Module, potentially causing memory corruption and availability impact. The NVD entry lists CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (base 7.5, HIGH)....