10 matches found
Astra Linux – Vulnerability in node-loader-utils
A prototype pollution vulnerability exists in the parseQuery function in parseQuery.js, within the webpack-loader-utils module. This vulnerability affects all versions prior to 1.4.1 and 2.0.3...
CVE-2025-69208 free5GC UDR's NEF incorrectly returns 500 for missing PFD data (UDR 404) in Nnef_PfdManagement GET request
free5GC UDR is the user data repository UDR for free5GC, an an open-source project for 5th generation 5G mobile core networks. Versions prior to 1.4.1 contain an Improper Error Handling vulnerability with Information Exposure. All deployments of free5GC using the NnefPfdManagement service may be...
CVE-2025-69330
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jthemes Prestige prestige allows Reflected XSS.This issue affects Prestige: from n/a through 1.4.1...
CVE-2025-69329
Deserialization of Untrusted Data vulnerability in Jthemes Prestige prestige allows Object Injection.This issue affects Prestige: from n/a through 1.4.1...
PT-2026-21145
Name of the Vulnerable Software and Affected Versions Jthemes Prestige versions prior to 1.4.1 Description The software contains a flaw related to improper input handling during web page generation, which allows for Reflected Cross-Site Scripting XSS. This means that malicious code can be injecte...
WordPress Prestige theme < 1.4.1 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by Phat RiO - BlueRock in WordPress Theme Prestige versions 1.4.1...
PT-2023-3201 · Unknown +7 · Protobuf-C +7
Name of the Vulnerable Software and Affected Versions: protobuf-c versions prior to 1.4.1 Description: The issue is related to an unsigned integer overflow in the parse required member function of the protobuf-c protocol serialization data. This can be exploited by a remote attacker to execute...
PT-2022-23200 · Immudb · Immudb
Name of the Vulnerable Software and Affected Versions: immudb versions prior to 1.4.1 Description: immudb is a database with built-in cryptographic proof and verification. A malicious immudb server can provide a falsified proof that will be accepted by the client SDK, signing a falsified...
Wyse Management Suite Cross-Site Scripting Vulnerability (CNVD-2020-17378)
Wyse Management Suite WMS is a scalable solution for managing and optimizing Wyse endpoints from Dell, USA. The product includes centralized management of Wyse endpoints, asset tracking and automated device discovery. A cross-site scripting vulnerability exists in Wyse Management Suite versions...
Remarkable Cross-Site Scripting Vulnerability
markdown is a Markdown parser. A cross-site scripting vulnerability exists in versions prior to remarkable 1.4.1, which stems from the program failing to properly whitelist link protocols. A remote attacker can exploit this vulnerability to inject content...