CVE-2025-64513 Milvus Proxy has Critical Authentication Bypass Vulnerability

Milvus is an open-source vector database built for generative AI applications. An unauthenticated attacker can exploit a vulnerability in versions prior to 2.4.24, 2.5.21, and 2.6.5 to bypass all authentication mechanisms in the Milvus Proxy component, gaining full administrative access to the...

CVE-2025-64513 Milvus Proxy has Critical Authentication Bypass Vulnerability

Milvus is an open-source vector database built for generative AI applications. An unauthenticated attacker can exploit a vulnerability in versions prior to 2.4.24, 2.5.21, and 2.6.5 to bypass all authentication mechanisms in the Milvus Proxy component, gaining full administrative access to the...

EUVD-2025-19065

Malicious code in bioql PyPI...

EUVD-2024-29014

Malicious code in bioql PyPI...

CVE-2025-61597 Emlog Pro is vulnerable to stored XSS attack through HTML template injection

Emlog is an open source website building system. In versions 2.5.21 and below, an HTML template injection allows stored cross‑site scripting XSS via the mail template settings. Once a malicious payload is saved, any subsequent visit to the settings page in an authenticated admin context will...

CVE-2024-31103

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kanban for WordPress Kanban Boards for WordPress allows Reflected XSS.This issue affects Kanban Boards for WordPress: from n/a through 2.5.21...

PT-2024-27395 · WordPress · Kanban Boards For Wordpress

Name of the Vulnerable Software and Affected Versions: Kanban Boards for WordPress versions through 2.5.21 Description: The issue affects Kanban Boards for WordPress due to a Missing Authorization vulnerability, allowing exploitation of incorrectly configured access control security levels...

CVE-2024-47617 Reflected XSS Vulnerability in Sulu Media Bundle

Sulu is a PHP content management system. This vulnerability allows an attacker to inject arbitrary HTML/JavaScript code through the media download URL in Sulu CMS. It affects the SuluMediaBundle component. The vulnerability is a Reflected Cross-Site Scripting XSS issue, which could potentially...

WordPress Kanban Boards for WordPress plugin <= 2.5.21 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Kanban Boards for WordPress versions = 2.5.21...

PT-2024-23772 · WordPress · Kanban Boards

Name of the Vulnerable Software and Affected Versions: Kanban Boards for WordPress versions 2.5.21 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS attacks...

PT-2023-16577 · WordPress · Kanban Boards

Name of the Vulnerable Software and Affected Versions: Kanban Boards for WordPress versions prior to 2.5.21 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed, for example in...

PT-2023-24842 · WordPress · Kanban For Wordpress

Name of the Vulnerable Software and Affected Versions: Kanban for WordPress Kanban Boards for WordPress plugin versions prior to 2.5.21 Description: A Stored Cross-Site Scripting XSS vulnerability exists, allowing authentication bypass for admin+ users. Recommendations: For versions prior to...