CVE-2026-23757

GFI HelpDesk before 4.99.10 contains a stored cross-site scripting vulnerability in the Reports module where the title parameter is passed directly to SWIFTReport::Create without HTML sanitization. Attackers can inject arbitrary JavaScript into the report title field when creating or editing a...

PT-2026-33822

GFI HelpDesk before 4.99.10 contains a stored cross-site scripting vulnerability in the Reports module where the title parameter is passed directly to SWIFT Report::Create without HTML sanitization. Attackers can inject arbitrary JavaScript into the report title field when creating or editing a...

SuiteCRM SQL注入漏洞

SuiteCRM is a customer relationship management system developed by the SuiteCRM team. Versions of SuiteCRM prior to 7.15.1 and 8.9.3 contained an SQL injection vulnerability. This vulnerability occurred when creating or editing reports, where the fieldfunction parameter in the POST data was saved...

CVE-2025-34311

IPFire

EUVD-2024-21265

Malicious code in bioql PyPI...

EUVD-2025-22033

Malicious code in bioql PyPI...

EUVD-2024-16111

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-2015

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.8 before 15.10.8, all versions starting from 15.11 before 15.11.7, all...

CVE-2025-54316

An issue was discovered in Logpoint before 7.6.0. When creating reports, attackers can create custom Jinja templates that chained built-in filter functions to generate XSS payloads. These payloads can be rendered by the Logpoint Report Template engine, making it vulnerable to cross-site scripting...

CVE-2025-54316

CVE-2025-54316 affects Logpoint prior to 7.6.0. A vulnerability in the Report Template engine allows an attacker to craft custom Jinja templates that chain built-in filter functions to generate XSS payloads , which can be rendered when creating reports. The CVE entry has a CVSS v3.1 base score of...

GHSA-562R-VG33-8X8H

creationtimestamp| type| source ---|---|--- 2025-07-16 16:29:40+00:00| seen| https://gist.github.com/safer-bot/06ba3e736cb2a22693a2da2a15674353...

CVE-2025-53617

creationtimestamp| type| source ---|---|--- 2025-07-08 07:12:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltgqs3qgnw2t...

CVE-2025-6943

Secret Server version 11.7 and earlier is vulnerable to a SQL report creation vulnerability that allows an administrator to gain access to restricted tables...

CVE-2022-31491

creationtimestamp| type| source ---|---|--- 2025-07-01 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-182-05 2025-07-01 16:03:01+00:00| seen| https://bsky.app/profile/pigondrugs.bsky.social/post/3lsw35ott6i2r 2025-07-03 09:00:05+00:00| published-proof-of-concept|...

CVE-2025-5910

creationtimestamp| type| source ---|---|--- 2025-06-10 02:29:09+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17819 2025-06-10 03:30:46+00:00| published-proof-of-concept| Telegram/LWiaQrtRcmEjRnITcZVpief9QBuDEpRdvOvzcK9f48drFg 2025-06-10 05:44:07+00:00| seen|...

CVE-2025-37922

creationtimestamp| type| source ---|---|--- 2025-05-20 16:40:17+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lpmjno7sdf2m...

CVE-2025-47809

creationtimestamp| type| source ---|---|--- 2025-05-16 01:34:22+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16595 2025-05-16 02:37:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpaypftjsr2o 2025-08-14 10:00:00+00:00| seen|...

CVE-2025-44022

creationtimestamp| type| source ---|---|--- 2025-05-12 21:08:11+00:00| seen| https://t.me/cvedetector/25105 2025-05-12 22:29:10+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16060 2025-05-13 00:47:09+00:00| seen|...

CVE-2025-46826

creationtimestamp| type| source ---|---|--- 2025-05-07 22:23:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15456 2025-05-08 00:27:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lomnontey72p 2025-05-08 00:52:38+00:00| seen| https://t.me/cvedetector/24765...

CVE-2025-46398

creationtimestamp| type| source ---|---|--- 2025-04-23 21:05:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13153 2025-04-24 00:02:03+00:00| published-proof-of-concept| Telegram/nLLiU9XeUeMIp5jrXJDhah4Wv5btJb4tJwgKYZU-gIMEuU0 2025-04-24 00:31:14+00:00| seen| https://t.me/cvedetector/23621...