PT-2026-1113

Name of the Vulnerable Software and Affected Versions Emlog version 2.5.23 Description Emlog is a website building system. In version 2.5.23, administrators can configure controls that prevent users from editing or deleting their articles after they are published. No patched versions are currentl...

PT-2026-1055

Name of the Vulnerable Software and Affected Versions Yonyou KSOA version 9.0 Description A flaw exists in Yonyou KSOA 9.0 that allows for remote code execution. The issue stems from a SQL injection point within an unknown function in the /kp/PrintZPYG.jsp file. Specifically, manipulating the...

Linux Distros Unpatched Vulnerability : CVE-2023-54176

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mptcp: stricter state check in mptcpworker As reported by Christoph, the mptcp protocol can run the worker when the relevant msk socket is in an unexpected stat...

Linux Distros Unpatched Vulnerability : CVE-2023-54218

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: Fix load-tearing on sk-skstamp in sockrecvcmsgs. KCSAN found a data race in sockrecvcmsgs where the read access to sk-skstamp needs READONCE. BUG: KCSAN:...

Linux Distros Unpatched Vulnerability : CVE-2023-54300

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: ath9k: avoid referencing uninit memory in ath9kwmictrlrx For the reasons also described in commit b383e8abed41 wifi: ath9k: avoid uninit memory read in...

CVE-2025-69205

Micro Registration Utility µURU is a telephone self registration utility based on asterisk. In versions up to and including commit 88db9a953f38a3026bcd6816d51c7f3b93c55893, an attacker can crafts a special federation name and characters treated special by asterisk can be injected into the Dial...

Linux Distros Unpatched Vulnerability : CVE-2023-54306

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: tls: avoid hanging tasks on the txlock syzbot sent a hung task report and Eric explains that adversarial receiver may keep RWIN at 0 for a long time, so we...

Linux Distros Unpatched Vulnerability : CVE-2023-54216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: TC, Fix using eswitch mapping in nic mode Cited patch is using the eswitch object mapping pool while in nic mode where it isn't initialized. This...

CVE-2025-69205

Micro Registration Utility µURU is a telephone self registration utility based on asterisk. In versions up to and including commit 88db9a953f38a3026bcd6816d51c7f3b93c55893, an attacker can crafts a special federation name and characters treated special by asterisk can be injected into the Dial...

CVE-2025-69205 In µURU, a Specially Crafted Federation Name Allows Dialplan Injection

Micro Registration Utility µURU is a telephone self registration utility based on asterisk. In versions up to and including commit 88db9a953f38a3026bcd6816d51c7f3b93c55893, an attacker can crafts a special federation name and characters treated special by asterisk can be injected into the Dial...

CVE-2025-69205

The CVE-2025-69205 entry affects Micro Registration Utility (µURU), a telephony self-registration tool built on top of Asterisk. The vulnerability occurs in versions up to commit 88db9a953f38a3026bcd6816d51c7f3b93c55893, where an attacker can craft a special federation name containing characters ...

PT-2025-53708

Name of the Vulnerable Software and Affected Versions code-projects Refugee Food Management System version 1.0 Description A security flaw exists in code-projects Refugee Food Management System 1.0. The issue is a SQL injection impacting an unknown function within the /home/pagenateRefugeesList.p...

PT-2025-53793

Name of the Vulnerable Software and Affected Versions code-projects Student File Management System version 1.0 Description A flaw exists in Student File Management System version 1.0 that allows for remote code execution. The issue is related to SQL injection within the /download.php file,...

PT-2025-53742

Name of the Vulnerable Software and Affected Versions code-projects Assessment Management version 1.0 Description A SQL injection issue exists due to manipulation of the linked argument within the /admin/add-module.php file. This manipulation affects some unknown functionality. The attack can be...

Linux Distros Unpatched Vulnerability : CVE-2025-68750

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: potential integer overflow in usbgmaketpg The variable tpgt in usbgmaketpg is defined as unsigned long and is assigned to tpgt-tporttpgt, which is defined ...

PT-2025-53622

Name of the Vulnerable Software and Affected Versions XSpeeder SXZOS through 2025-12-26 Description XSpeeder SXZOS through 2025-12-26 contains a critical flaw allowing unauthenticated attackers to achieve root remote code execution. The issue stems from the unsafe evaluation of base64-decoded inp...

Linux Distros Unpatched Vulnerability : CVE-2025-68737

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm64/pageattr: Propagate return value from changememorycommon The rodata=on security measure requires that any code path which does vmalloc -...

Linux Distros Unpatched Vulnerability : CVE-2022-50726

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5: Fix possible use-after-free in async command interface mlx5cmdcleanupasyncctx should return only after all its callback handlers were completed. Befor...

Linux Distros Unpatched Vulnerability : CVE-2022-50769

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mmc: mxcmmc: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, the memory that allocated in mmcallochost will be...

Linux Distros Unpatched Vulnerability : CVE-2023-54024

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: Destroy target device if coalesced MMIO unregistration fails Destroy and free the target coalesced MMIO device if unregistering said device fails. As clear...