PT-2025-3065 · Flatnotes · Flatnotes

Name of the Vulnerable Software and Affected Versions: Flatnotes versions prior to 5.3.1 Description: The issue is related to a denial of service through the upload image function. There is no information provided about the estimated number of potentially affected devices worldwide or real-world...

PT-2024-3946 · Unknown +1 · Djangorestframework-Simplejwt +1

Name of the Vulnerable Software and Affected Versions: djangorestframework-simplejwt versions 5.3.1 and before Description: The issue is related to information disclosure due to missing user validation checks via the for user method. This allows a user to access web application resources even aft...

CVE-2023-36344

An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...

CVE-2023-2782

Sensitive information disclosure due to improper authorization. The following products are affected: Acronis Cyber Infrastructure ACI before build 5.3.1-38...

GHSA-PX4H-XG32-Q955 ReDoS in normalize-url

The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS regular expression denial of service issue because it has exponential performance for data: URLs...

WordPress Cross-Site Scripting Vulnerability (CNVD-2020-01157)

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the module editor in WordPress versions prior to 5.3.1. The...