CVE-2019-25546

NetAware 1.20 contains a buffer overflow vulnerability in the Share Name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can trigger a denial of service by pasting a 1000-byte buffer into the Share Name parameter when adding a new shar...

CVE-2019-25547 NetAware 1.20 Denial of Service via Add Block Buffer Overflow

NetAware 1.20 contains a buffer overflow vulnerability in the User Blocking feature that allows local attackers to crash the application by supplying oversized input. Attackers can paste a malicious buffer of 512 bytes into the 'Add a website or keyword to be filtered' field and trigger a crash...

Infiltration Systems NetAware 缓冲区错误漏洞

Infiltration Systems NetAware is a network management tool developed by Invasion Systems Corporation, designed to monitor computer network activities and application usage. Version 1.20 of Infiltration Systems NetAware contains a buffer error vulnerability. This vulnerability stems from a buffer...

Infiltration Systems NetAware 缓冲区错误漏洞

Infiltration Systems NetAware is a network management tool developed by Invasion Systems Corporation, designed to monitor computer network activities and application usage. Version 1.20 of Infiltration Systems NetAware contains a buffer error vulnerability. This vulnerability stems from a buffer...

PT-2026-5718

Name of the Vulnerable Software and Affected Versions OpenTelemetry-Go versions 1.20.0 through 1.39.0 Description The OpenTelemetry Go SDK versions 1.20.0 through 1.39.0 are susceptible to a path hijacking issue on macOS/Darwin systems. The resource detection code in sdk/resource/host id.go...

OESA-2026-1008 crun security update

crun is a fast and low-memory footprint OCI Container Runtime fully written in C. Security Fixes: crun is an open source OCI Container Runtime fully written in C. In affected versions A malicious container image could trick the krun handler into escaping the root filesystem, allowing file creatio...

EUVD-2022-2706

Malicious code in bioql PyPI...

EUVD-2025-24736

Malicious code in bioql PyPI...

PT-2025-39924

Name of the Vulnerable Software and Affected Versions Tapo D230S1 versions prior to 1.2.2 Build 20250907 Description An attacker may gain root access by connecting to the UART port. This requires physical access to the device. Recommendations Update to version 1.2.2 Build 20250907 or later...

WordPress Portfolio Manager Lite plugin <= 1.20 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Portfolio Manager Lite versions = 1.20...

CVE-2025-58156

CVE-2025-58156 (Centurion ERP) affects Centurion ERP versions 1.12.0 to before 1.21.0. An authenticated user could view token details in the database, including the actual token in hashed form (no unhashed tokens were viewable). The issue has been patched in version 1.21.0. A workaround that disa...

CVE-2025-29014

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZoomIt FoodMenu allows Reflected XSS. This issue affects FoodMenu: from n/a through 1.20...

CVE-2025-29014

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZoomIt FoodMenu allows Reflected XSS. This issue affects FoodMenu: from n/a through 1.20...

CVE-2025-29014

CVE-2025-29014 corresponds to a Reflected XSS in WordPress plugin FoodMenu (

[SECURITY] [DLA 4238-1] sslh security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4238-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb July 09, 2025 https://wiki.debian.org/LTS -...

Debian dla-4238 : sslh - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4238 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4238-1 [email protected] https://www.debian.org/lts/security/...

CVE-2023-45102

Cross-Site Request Forgery CSRF vulnerability in OTWthemes Blog Manager Light plugin = 1.20 versions...

CVE-2022-25209

Jenkins Chef Sinatra Plugin 1.20 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

PT-2025-20922 · Edimax · Edimax Cv7428Ns

Name of the Vulnerable Software and Affected Versions: EDIMAX CV7428NS version 1.20 Description: A remote code execution issue was discovered, allowing exploitation via the command parameter in the mp function. Recommendations: For EDIMAX CV7428NS version 1.20, consider restricting access to the ...

Edimax CV7428NS 安全漏洞

Edimax CV7428NS is an enterprise-grade network video recorder from China Xunzhou Edimax. A security vulnerability exists in Edimax CV7428NS v1.20, which originates from remote code execution of command parameters in the mp function...