CVE-2022-45389

A missing permission check in Jenkins XP-Dev Plugin 1.0 and earlier allows unauthenticated attackers to trigger builds of jobs corresponding to an attacker-specified repository...

CVE-2022-28999

Insecure permissions in the install directories and binaries of Dev-CPP v4.9.9.2 allows attackers to execute arbitrary code via overwriting the binary devcpp.exe...

CVE-2022-1172

Null Pointer Dereference Caused Segmentation Fault in GitHub repository gpac/gpac prior to 2.1.0-DEV...

CVE-2020-26253

Kirby is a CMS. In Kirby CMS getkirby/cms before version 3.3.6, and Kirby Panel before version 2.5.14 there is a vulnerability in which the admin panel may be accessed if hosted on a .dev domain. In order to protect new installations on public servers that don't have an admin account for the Pane...

CVE-2020-21358

A cross site request forgery CSRF in Wage-CMS 1.5.x-dev allows attackers to arbitrarily add users...

CVE-2016-15007

A vulnerability was found in Centralized-Salesforce-Dev-Framework. It has been declared as problematic. Affected by this vulnerability is the function SObjectService of the file src/classes/SObjectService.cls of the component SOQL Handler. The manipulation of the argument orderDirection leads to...

CVE-2004-2684

Unspecified vulnerability in the %template package in InterSystems Cache' 5.0 allows attackers to access certain files on a server, including 1 cache.key and 2 cache.dat, related to .csp files under a Dev\studio\templates and b Devuser\studio\templates...

CVE-2008-5923

SQL injection vulnerability in default.asp in ASP-DEv XM Events Diary allows remote attackers to execute arbitrary SQL commands the cat parameter...

CVE-2005-1008

Cross-site scripting XSS vulnerability in posts.asp for ASP-DEv XM Forum RC3 allows remote attackers to inject arbitrary web script or HTML via a "javascript:" URL in an IMG tag...

CVE-2005-4256

Cross-site scripting XSS vulnerability in forum.asp in ASP-DEV XM Forum RC3 allows remote attackers to inject arbitrary web script or HTML via the forumtitle parameter. NOTE: the provenance of this issue is unknown; the details are obtained solely from the BID. In addition, its accuracy is in...

CVE-2008-5925

ASP-DEv XM Events Diary stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for diary.mdb...

Important: Red Hat Security Advisory: Updated Red Hat OpenShift Dev Spaces 3 container images

Updated Red Hat OpenShift Dev Spaces 3.20 container images are now available The Red Hat OpenShift Dev Spaces 3 container images have been updated to address the following security advisory: RHSA-2025:3713 see References Users of Red Hat OpenShift Dev Spaces 3 container images are advised to...

WordPress Hustle plugin < 7.8.5 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Hustle versions 7.8.5...

MAL-2025-4036 Malicious code in vue-dev-serverr (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a206a0d6714ab34f1c8c8d7893e516f6babb7bb3bb786fa679bde0c300e4815f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in vue-dev-serverr (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a206a0d6714ab34f1c8c8d7893e516f6babb7bb3bb786fa679bde0c300e4815f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

aaiopay (>=0.2.1 <=0.2.2), aaz-dev (>=3.0.0 <=4.5.3) +4022 more potentially affected by CVE-2025-47273 via setuptools (>=15.2.0 <=78.1.0)

setuptools PYPI version =15.2.0, =0.2.1, =3.0.0, =1.0.0, =0.0.1, =0.1.18, =0.0.1, =0.1.0, =0.1.0, =0.2.6, =0.0.1, =0.0.6 and more Source cves: CVE-2025-47273 Source advisory: OSV:PYSEC-2025-49...

DEBIAN-CVE-2025-46836

net-tools is a collection of programs that form the base set of the NET-3 networking distribution for the Linux operating system. Inn versions up to and including 2.10, the Linux network utilities like ifconfig from the net-tools package do not properly validate the structure of /proc files when...

AZL-61883 CVE-2025-46836 affecting package net-tools for versions less than 2.10-4

net-tools is a collection of programs that form the base set of the NET-3 networking distribution for the Linux operating system. Inn versions up to and including 2.10, the Linux network utilities like ifconfig from the net-tools package do not properly validate the structure of /proc files when...

AZL-61888 CVE-2025-46836 affecting package net-tools for versions less than 2.10-4

net-tools is a collection of programs that form the base set of the NET-3 networking distribution for the Linux operating system. Inn versions up to and including 2.10, the Linux network utilities like ifconfig from the net-tools package do not properly validate the structure of /proc files when...

CVE-2025-4546

A vulnerability was found in 1Panel-dev MaxKB up to 1.10.7. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Knowledge Base Module. The manipulation leads to csv injection. The attack can be launched remotely. The exploit has been...