9454 matches found
PT-2025-6877 · Fastcms · Fastcms
Name of the Vulnerable Software and Affected Versions: FastCMS versions up to 0.1.5 Description: A vulnerability has been found in the Template Menu component of FastCMS, affecting unknown code of the file /fastcms.html/template/menu. The manipulation leads to cross-site scripting. The attack can...
CVE-2025-0998
Rejected reason: Not exploitable...
SUSE CVE-2025-0998
Not exploitable...
firefox: thunderbird: Use-after-free in Custom Highlight
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in Custom Highlight
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in XSLT
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in Custom Highlight
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash...
Dell Networking Switches running Enterprise SONiC OS Log Information Disclosure Vulnerability
Dell Networking Switches running Enterprise SONiC OS is an open-source based network operating system from Dell, designed for data center and cloud computing scenarios, supporting a unified network architecture from edge to core to cloud. A log information disclosure vulnerability exists in Dell...
firefox: thunderbird: Use-after-free in Custom Highlight
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in XSLT
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in Custom Highlight
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in Custom Highlight
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in XSLT
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in Custom Highlight
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in Custom Highlight
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash...
firefox: thunderbird: Use-after-free in XSLT
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash...
CVE-2025-21506
Vulnerability in the Oracle Project Foundation product of Oracle E-Business Suite component: Technology Foundation. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Project...
CVE-2025-21516
Vulnerability in the Oracle Customer Care product of Oracle E-Business Suite component: Service Requests. Supported versions that are affected are 12.2.5-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Customer Care...
CVE-2022-21250
Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: GL Accounts. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Trade Management...
UBUNTU-CVE-2025-1009
An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135...