544 matches found
PT-2025-19339 · Unknown · Phpgurukul Emergency Ambulance Hiring Portal
Name of the Vulnerable Software and Affected Versions: PHPGurukul Emergency Ambulance Hiring Portal version 1.0 Description: A critical issue has been discovered, affecting an unknown function of the file /admin/edit-ambulance.php. The manipulation of the dconnum argument leads to SQL injection...
PT-2025-18647 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A NULL pointer problem in the free mr init function has been resolved. The issue occurs in a concurrent scenario, resulting in a NULL pointer dereference at virtual address...
PT-2025-18310 · Anc · Anc
Name of the Vulnerable Software and Affected Versions: ANC software versions 1.1.4 and earlier Description: The issue allows an authenticated attacker to bypass the old password check in the password change form via a web HMI. Recommendations: For ANC software versions 1.1.4 and earlier, update t...
PT-2025-18255 · Unknown · Phpgurukul Curfew E-Pass Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Curfew e-Pass Management System version 1.0 Description: A critical issue affects the processing of the file /admin/edit-pass-detail.php. The manipulation of the editid argument leads to SQL injection. The attack may be initiated...
PT-2025-18227 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A rejected reason is mentioned, but no specific details about the issue are provided. No information is available about potentially affected devices or real-world incidents. Recommendations:...
PT-2025-17692 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A cross-site request forgery issue has been identified. No further details are available regarding the estimated number of potentially affected devices or real-world incidents...
PT-2025-17693 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not explicitly mentioned. There is no information about the estimated number of potentially affected devices worldwide or details about real-world...
PT-2025-17697 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A denial of service issue is reported. No further details are available. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...
PT-2025-17624 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. There is no mention of the estimated number of potentially affected devices worldwide or details about real-world incidents where this...
PT-2025-17916
Name of the Vulnerable Software and Affected Versions Moodle affected versions not specified Description A flaw was found in Moodle, specifically a remote code execution risk in the Moodle LMS Dropbox repository. This risk is only available to teachers and managers on sites with the Dropbox...
PT-2025-17329 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue has been disputed by the developer as a vulnerability. No further details are available due to the rejection of the candidate number. Recommendations: At the moment, there is no...
PT-2025-16518 · Unknown · Gurmehub Kargo Entegratör
Name of the Vulnerable Software and Affected Versions: Gurmehub Kargo Entegratör versions 1.1.14 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...
Security Advisory 0115
Security Advisory 0115 . CSAF PDF Date: April 15, 2025 Revision | Date | Changes ---|---|--- 1.0 | April 15, 2025 | Initial release The CVE-ID tracking this issue: CVE-2025-0505 CVSSv3.1 Base Score: 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N Common Weakness Enumeration:CWE- CWE-269: Improp...
CVE-2025-32568
Deserialization of Untrusted Data vulnerability in empik EmpikPlace for Woocommerce empik-for-woocommerce allows Object Injection.This issue affects EmpikPlace for Woocommerce: from n/a through = 1.4.3...
PT-2025-16029 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. No details are provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue wa...
Microsoft OneNote Security Feature Bypass Vulnerability (KB5002622)
This host is missing an important security update according to Microsoft KB5002622. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Microsoft Excel 2016 Multiple Vulnerabilities (KB5002704)
This host is missing an important security update according to Microsoft KB5002704 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
CVE-2025-3409
A vulnerability classified as critical has been found in Nothings stb up to f056911. This affects the function stbincludestring. The manipulation of the argument pathtoincludes leads to stack-based buffer overflow. It is possible to initiate the attack remotely. This product does not use...
CVE-2025-3029
A crafted URL containing specific Unicode characters could have hidden the true origin of the page, resulting in a potential spoofing attack. This vulnerability was fixed in Firefox 137, Firefox ESR 128.9, Thunderbird 137, and Thunderbird 128.9...
CVE-2025-31438
Cross-Site Request Forgery CSRF vulnerability in Benoit De Boeck WP Supersized wp-supersized allows Cross Site Request Forgery.This issue affects WP Supersized: from n/a through = 3.1.6...