firefox: thunderbird: Integer overflow in the SVG component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Integer overflow in the SVG component...

firefox: thunderbird: Integer overflow in the SVG component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Integer overflow in the SVG component...

firefox: thunderbird: Integer overflow in the SVG component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Integer overflow in the SVG component...

firefox: thunderbird: Integer overflow in the SVG component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Integer overflow in the SVG component...

KUNO 代码问题漏洞

KUNO is a blogging application by the individual developer XueMian ICT.RUN. A code issue vulnerability exists in KUNO versions prior to 1.3.15, which stems from the media module allowing the upload of specially crafted SVG files, which could lead to a server-side request forgery attack...

PT-2025-40853

Name of the Vulnerable Software and Affected Versions The Ultimate Addons for Elementor Formerly Elementor Header & Footer Builder versions prior to 2.5.0 Description The software does not properly sanitize SVG file contents when uploaded. This occurs when using the xmlrpc.php endpoint with base6...

PT-2025-40911

Name of the Vulnerable Software and Affected Versions Emlog versions up to and including 2.5.22 Description A cross-site scripting XSS issue exists in Emlog, potentially allowing authenticated remote attackers to inject arbitrary web script or HTML. This is possible through the file upload...

Real-VulLLM: An LLM Based Assessment Framework in the Wild

Artificial Intelligence AI and more specifically Large Language Models LLMs have demonstrated exceptional progress in multiple areas including software engineering, however, their capability for vulnerability detection in the wild scenario and its corresponding reasoning remains underexplored...

Exploit for Incomplete List of Disallowed Inputs in Fasterxml Jackson-Databind

🔥 Jackson RCE Exploiter - Enterprise Bypass Edition !Versi...

glibc security update

An update is available for glibc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The glibc packages provide the standard C libraries libc, POSIX thread librarie...

RockyLinux 10 : glibc (RLSA-2025:11066)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:11066 advisory. glibc: Vector register overwrite bug in glibc CVE-2025-5702 Tenable has extracted the preceding description block directly from the RockyLinux security advisory...

CVE-2025-61681 Kuno is Vulnerable to Stored XSS Attack via SVG File Upload

KUNO CMS is a fully deployable full-stack blog application. Versions 1.3.13 and below contain validation flaws in its file upload functionality that can be exploited for stored XSS. The upload endpoint only validates file types based on Content-Type headers, lacks file content analysis and...

EUVD-2023-2106

Malicious code in bioql PyPI...

EUVD-2025-4873

Malicious code in bioql PyPI...

EUVD-2025-24031

Malicious code in bioql PyPI...

EUVD-2022-0676

Malicious code in bioql PyPI...

EUVD-2024-0823

Malicious code in bioql PyPI...

EUVD-2025-17888

Malicious code in bioql PyPI...

EUVD-2025-17018

Malicious code in bioql PyPI...

EUVD-2025-13250

Malicious code in bioql PyPI...