EUVD-2026-1209

A stored Cross-Site Scripting XSS vulnerability exists in Perch CMS version 3.2. An authenticated attacker with administrative privileges can inject malicious JavaScript code into the “Help button url” setting within the admin panel. The injected payload is stored and executed when any...

EUVD-2026-0077

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0087

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0113

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0224

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0231

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0250

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0407

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0473

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0462

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0570

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0573

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0606

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0637

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0643

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0671

An out-of-bounds read vulnerability has been reported to affect License Center. If a remote attacker gains a user account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following version: License Center 2.0.36 and later...

EUVD-2026-0720

A vulnerability was detected in Yonyou KSOA 9.0. This vulnerability affects unknown code of the file /worksheet/agentworksadd.jsp of the component HTTP GET Parameter Handler. The manipulation of the argument ID results in sql injection. The attack can be launched remotely. The exploit is now publ...

EUVD-2025-205306

Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/loginbannerw.cgi XSS via a crafted banner...

EUVD-2025-205029

Cross-site Scripting vulnerability in Hitachi Infrastructure Analytics Advisor Data Center Analytics component and Hitachi Ops Center Analyzer Hitachi Ops Center Analyzer detail view component.This issue affects Hitachi Infrastructure Analytics Advisor:; Hitachi Ops Center Analyzer: from 10.0.0-0...

EUVD-2025-204827

Hugging Face Transformers GLM4 Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the...