CVE-2025-57768 Stored XSS in “hours” fields when creating or editing an issue, using SQLite database

Phproject is a high performance full-featured project management system. From 1.8.0 to before 1.8.3, a Stored Cross-Site Scripting XSS vulnerability exists in the Planned Hours field when creating a new project. When sending a POST request to /issues/new/, the value provided in the Planned Hours...

CVE-2025-57768 Stored XSS in “hours” fields when creating or editing an issue, using SQLite database

Phproject is a high performance full-featured project management system. From 1.8.0 to before 1.8.3, a Stored Cross-Site Scripting XSS vulnerability exists in the Planned Hours field when creating a new project. When sending a POST request to /issues/new/, the value provided in the Planned Hours...

[Important] [Security] Vulnerability Fix in sqlite (CVE-2025-6965) for VzLinux 7.9

This update resolves the vulnerability in sqlite registered as CVE-2025-6965...

TencentOS Server 4: sqlite (TSSA-2025:0595)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0595 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

TencentOS Server 3: sqlite (TSSA-2025:0687)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0687 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

SUSE-SU-2025:20561-1 Security update for sqlite3

This update for sqlite3 fixes the following issues: - Update to 3.50.2: Fix the concatws SQL function so that it includes empty strings in the concatenation. Avoid writing frames with no checksums into the wal file if a savepoint is rolled back after dirty pages have already been spilled into the...

RHSA-2025:14101 Red Hat Security Advisory: mingw-sqlite security update

Bulletin has no description...

Oracle Linux 8 : mingw-sqlite (ELSA-2025-14101)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-14101 advisory. - Fix CVE-2019-5827 CVE-2019-13750 CVE-2019-13751 - Fix CVE-2019-19603 CVE-2020-13435 CVE-2020-35527 - Fix CVE-2020-35525 CVE-2022-35737 CVE-2020-24736 - Fix...

AlmaLinux 8 : mingw-sqlite (ALSA-2025:14101)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:14101 advisory. sqlite: Integer Truncation in SQLite CVE-2025-6965 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note that...

sqlite: Integer Truncation in SQLite

A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior...

Important: Red Hat Security Advisory: mingw-sqlite security update

An update for mingw-sqlite is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

Medium: sqlite

Issue Overview: There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above. CVE-2025-6965 Affected Packages: sqlite...

mingw-sqlite security update

3.26.0.0-2 - Fix CVE-2019-5827 CVE-2019-13750 CVE-2019-13751 - Fix CVE-2019-19603 CVE-2020-13435 CVE-2020-35527 - Fix CVE-2020-35525 CVE-2022-35737 CVE-2020-24736 - Fix CVE-2023-7104 - Fix CVE-2025-6965 Resolves: RHEL-103830...

Amazon Linux 2 : sqlite (ALAS-2025-2973)

The version of sqlite installed on the remote host is prior to 3.7.17-8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2973 advisory. There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of column...

RHEL 8 : mingw-sqlite (RHSA-2025:14101)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:14101 advisory. SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk...

Linux Distros Unpatched Vulnerability : CVE-2025-7458

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow in the sqlite3KeyInfoFromExprList function in SQLite versions 3.39.2 through 3.41.1 allows an attacker with the ability to execute arbitrary...

ALSA-2025:14101 Important: mingw-sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

Important: mingw-sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

Medium: nodejs22

Issue Overview: There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above. CVE-2025-6965 Affected Packages: nodejs2...

Medium: sqlite

Issue Overview: There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above. CVE-2025-6965 Affected Packages: sqlite...