PT-2025-32316

Name of the Vulnerable Software and Affected Versions: Azure Portal affected versions not specified Description: An elevation of privilege issue exists within the Azure Portal. This allows for unauthorized access and potential compromise of resources. Recommendations: At the moment, there is no...

PT-2025-27301 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The issue concerns a Cross-Site Request Forgery in the Apache HTTP Server. No information is provided about the estimated number of potentially affected devices worldwide or...

PT-2025-25854

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue is related to the drm/amd/display component, where it's possible to generate more than 50 steps in hwss build fast...

Report

It is an offensive tool for web application exploitation. The re...

PT-2025-16031 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The issue concerns a Cross-Site Request Forgery in the Apache HTTP Server. No information is provided about the estimated number of potentially affected devices worldwide or...

PT-2025-15319 · Isherlock · Isherlock

Name of the Vulnerable Software and Affected Versions: iSherlock affected versions not specified Description: The iSherlock web service has an issue that allows remote attackers to inject and execute arbitrary system commands on the server. This is possible due to an OS command injection flaw,...

PT-2025-15562 · Microsoft · Windows Kernel +1

Name of the Vulnerable Software and Affected Versions: Windows Kernel affected versions not specified Description: The issue is related to an untrusted pointer dereference in the Windows Kernel, allowing an authorized attacker to elevate privileges locally. Recommendations: At the moment, there i...

PT-2025-15559 · Microsoft · Windows Power Dependency Coordinator +1

Name of the Vulnerable Software and Affected Versions: Windows Power Dependency Coordinator affected versions not specified Description: The issue allows an authorized attacker to disclose sensitive information locally due to the exposure of sensitive information to an unauthorized actor...

PT-2025-14459 · Assetview +1 · Assetview +1

Name of the Vulnerable Software and Affected Versions: AssetView and AssetView CLOUD affected versions not specified Description: The issue concerns acquiring sensitive information from sent data to the developer. If exploited, sensitive information may be obtained by a remote unauthenticated...

PT-2025-12844 · Bdrive · Bdrive Netdrive

Name of the Vulnerable Software and Affected Versions: Bdrive NetDrive affected versions not specified Description: The issue is related to an uncontrolled search path element, which can lead to local privilege escalation. Recommendations: At the moment, there is no information about a newer...

PT-2025-8685

Name of the Vulnerable Software and Affected Versions Essential Addons for Elementor affected versions not specified Description A critical XSS flaw has been identified in the Essential Addons for Elementor WordPress plugin, potentially placing over two million websites in jeopardy. This...

PT-2025-7712 · Gliffy · Gliffy

Name of the Vulnerable Software and Affected Versions: Gliffy affected versions not specified Description: A flaw in the application results in broken authentication through the reset functionality. Recommendations: At the moment, there is no information about a newer version that contains a fix...

PT-2025-5795 · Unknown · Openplc V3

Name of the Vulnerable Software and Affected Versions: OpenPLC V3 affected versions not specified Description: The issue concerns an arbitrary file upload vulnerability. This could be exploited for malvertising or phishing campaigns. Recommendations: At the moment, there is no information about a...

PT-2025-4989 · Unknown · Notfound Content Planner

Name of the Vulnerable Software and Affected Versions: NotFound Content Planner versions n/a through 1.0 Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting, which allows Reflected XSS. Recommendations: For versions...

PT-2025-3993 · Unknown · Routinator

Name of the Vulnerable Software and Affected Versions: Routinator affected versions not specified Description: The issue arises from the initial code parsing the manifest not checking the content of file names, while later code assumes this check has been performed. When encountering illegal...

PT-2025-5165 · Unknown · Amr Personalise

Name of the Vulnerable Software and Affected Versions: amr personalise versions n/a through 2.10 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Cross Site Request Forgery. Recommendations: For versions n/a through 2.10, update to a version that includes a fi...

PT-2025-1224 · Microsoft · Windows Csc Service +1

Name of the Vulnerable Software and Affected Versions: Windows CSC Service affected versions not specified Description: The issue is related to a buffer overflow in memory, which can allow an attacker to disclose protected information. There is no information about the estimated number of...

PT-2025-4205

Name of the Vulnerable Software and Affected Versions Windows Geolocation Service affected versions not specified Description The issue allows attackers to obtain sensitive information and affect the system. It is related to the Windows Geolocation Service. No information is available about the...

PT-2025-4201 · Microsoft · Windows Search Service +1

Name of the Vulnerable Software and Affected Versions: Windows Search Service affected versions not specified Description: An elevation-of-privilege issue affects the system, allowing attackers to elevate their privileges. Recommendations: At the moment, there is no information about a newer...

PT-2025-2913 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE affected versions not specified Description: The issue concerns a system configuration buffer overwrite when the administrative distance is set. No further details are available due to the rejection or withdrawal of the CVE ID by...