CVE-2026-22017 affecting package mysql for versions less than 8.0.46-1

CVE-2026-22017 affecting package mysql for versions less than 8.0.46-1. An upgraded version of the package is available that resolves this issue...

PT-2026-20335

Name of the Vulnerable Software and Affected Versions Beetel 777VR1 versions up to 01.00.09 Description A security issue exists in Beetel 777VR1 up to version 01.00.09, related to the Telnet Service/SSH Service component. The issue involves insecure default initialization of a resource and can be...

PT-2026-6711

Name of the Vulnerable Software and Affected Versions AMS module affected versions not specified Description A permission control issue exists within the AMS module. Successful exploitation of this issue may impact system availability. Recommendations At the moment, there is no information about ...

PT-2026-1676

Name of the Vulnerable Software and Affected Versions FaceSentry Access Control System version 6.4.8 Description The FaceSentry Access Control System is susceptible to a cleartext transmission issue. This allows remote attackers to intercept authentication credentials through man-in-the-middle...

PT-2026-1539

Name of the Vulnerable Software and Affected Versions affected versions not specified Description A memory corruption issue occurs when multiple threads concurrently access and modify shared resources. This can lead to unpredictable behavior and potentially allow for malicious code execution...

PT-2025-53896

Name of the Vulnerable Software and Affected Versions Crowdsignal Forms versions through 1.7.2 Description A missing authorization issue exists in Automattic Crowdsignal Forms. The issue involves incorrectly configured access control security levels, potentially allowing unauthorized access...

PT-2025-53274

Name of the Vulnerable Software and Affected Versions Gora Tech Cooked versions through 1.11.2 Description An authorization issue exists in Gora Tech Cooked, allowing exploitation due to incorrectly configured access control security levels. Recommendations Update Gora Tech Cooked to a version...

PT-2025-44626

Name of the Vulnerable Software and Affected Versions Afterlogic Aurora webmail versions 9.8.3 and below Description A cross-site scripting XSS issue exists in Afterlogic Aurora webmail. An attacker can send a specially crafted HTML email message containing JavaScript within an img HTML tag. This...

PT-2025-44253

Name of the Vulnerable Software and Affected Versions ThemeSphere SmartMag versions through 10.3.0 Description The software contains a flaw related to improper control of filename handling for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion...

PT-2025-43702

Name of the Vulnerable Software and Affected Versions Genesis Framework theme for WordPress versions up to and including 3.6.0 Description The Open Source Genesis Framework theme for WordPress is susceptible to Stored Cross-Site Scripting through its shortcodes. Insufficient input sanitization an...

PT-2025-39461

Name of the Vulnerable Software and Affected Versions JeecgBoot versions up to 3.8.2 Description A flaw exists in JeecgBoot that allows for improper authorization. This is due to the manipulation of the ids argument within an unknown function of the /sys/tenant/deleteBatch file. The attack can be...

Vaadin Flow Components possible file bypass via upload validation on the server-side

Description When the Vaadin Upload's start listener is used to validate metadata about an incoming upload, it is possible to bypass the upload validation. Users of affected versions should apply the upgrade to a more recent Vaadin version...

PT-2025-33656 · Ibm · Ibm Concert

Name of the Vulnerable Software and Affected Versions: IBM Concert Software versions 1.0.0 through 1.1.0 Description: The software contains hard-coded credentials, such as a password or cryptographic key, used for inbound authentication, outbound communication to external components, or encryptio...

PT-2025-33376 · Woocommerce · Primer Mydata For Woocommerce

Name of the Vulnerable Software and Affected Versions: Primer MyData for Woocommerce versions through 4.2.5 Description: The software contains a Reflected Cross-Site Scripting XSS issue due to improper neutralization of input during web page generation. Recommendations: Update Primer MyData for...

PT-2025-32568

Name of the Vulnerable Software and Affected Versions: ABB Aspect affected versions not specified Description: A missing authentication issue exists for a critical function in ABB Aspect. This allows unauthorized access to sensitive functionality. Recommendations: At the moment, there is no...

PT-2025-14092 · WordPress · Wp Realestate

Name of the Vulnerable Software and Affected Versions: WP RealEstate plugin versions up to, and including, 1.6.26 Description: The issue is related to insufficient role restrictions in the process register function, allowing unauthenticated attackers to register an account with the Administrator...

Citrix Workspace App fails to install when a later version is present on the system

The customer had upgraded Citrix Workspace App for Windows to the latest release. Afterwards it was decided to install an older LTSR release of Citrix Workspace App for Windows. Attempting to install the older version of Citrix Workspace App over the latest release of Citrix Workspace App failed...

PT-2025-8927 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

PT-2025-10140 · Crates.Io · Resolve

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The software's GitHub repository has been archived with no commits for seven years, and the latest release on crates.io is also seven years old. Recommendations: At the moment, there is no...

PT-2025-6222 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: A vulnerability has been reported, but details are scarce. There is a mention of not waiting for vulnerability scanning results, implying...