MINI-3V58-HR53-MH9G

Bulletin has no description...

EUVD-2026-24278

Frappe HR is an open-source human resources management solution HRMS. Prior to versions 15.58.2 and 16.4.2, authenticated users can access unauthorized files by exploiting certain api endpoint. Versions 15.58.2 and 16.4.2 contain a patch. No known workarounds are available...

CVE-2021-2043

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Portal. Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...

CVE-2022-49758

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

PT-2025-43283

Name of the Vulnerable Software and Affected Versions pco 58 WC Return products versions through 1.5 Description The software contains a flaw related to improper input handling during web page generation, specifically a Reflected Cross-site Scripting XSS issue. This allows for the injection of...

Linux Distros Unpatched Vulnerability : CVE-2021-24115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations base32, base58, base64, and hex. CVE-2021-24115 Not...

Linux Distros Unpatched Vulnerability : CVE-2018-5093

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer overflow vulnerability may occur in WebAssembly during Memory/Table resizing, resulting in a potentially exploitable crash. This vulnerability...

BigBountyRecon

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation...

CVE-2025-49258

creationtimestamp| type| source ---|---|--- 2025-06-17 16:18:20+00:00| seen| Telegram/SCENl0bmebBo-isLeSjNn7zy-WAXbtsdyq9JC-AqVlk7Uo 2025-06-18 15:42:58+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18767...

CVE-2020-1858

Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have a denial of service vulnerability...

WordPress plugin IdeaPush 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2024-33667 · Zitadel +1 · Zitadel +1

Name of the Vulnerable Software and Affected Versions: Zitadel versions prior to 2.64.0 Zitadel versions prior to 2.63.5 Zitadel versions prior to 2.62.7 Zitadel versions prior to 2.61.4 Zitadel versions prior to 2.60.4 Zitadel versions prior to 2.59.5 Zitadel versions prior to 2.58.7 Description...

PT-2024-33893

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A vulnerability in the Linux kernel has been resolved. The issue is related to the usb: typec: tipd module, where an IRQ is freed even if it was not requested before. This causes a warning wh...

PT-2024-7606

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58 Description The issue is related to a use-after-free vulnerability in the async decryption function of the Linux kernel's SMB client. This vulnerability can be exploited to impact the confidentiality,...

PT-2024-32775

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58 Description A vulnerability in the Linux kernel has been resolved, which could lead to memory leaks. The issue is related to the bpf helpers that had ARG PTR TO LONG,INT as input arguments. In case of an...

PT-2024-32788

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58 Description The issue is related to the firmware loader in the Linux kernel, where certain code paths construct firmware file names from string components passed through from devices or semi-privileged...

Reduced entropy due to inadequate character set usage

Description Affected versions of the nano-id crate incorrectly generated IDs using a reduced character set in the nanoid::base62 and nanoid::base58 functions. Specifically, the base62 function used a character set of 32 symbols instead of the intended 62 symbols, and the base58 function used a...

PT-2023-29662 · Unknown · Movable Type Advanced +5

Name of the Vulnerable Software and Affected Versions: Movable Type versions 7 r.5405 and earlier Movable Type Advanced versions 7 r.5405 and earlier Movable Type Premium version 1.58 and earlier Movable Type Premium Advanced version 1.58 and earlier Movable Type Cloud Edition Version 7 versions...

Weaver e-cology SQL注入漏洞

Weaver e-cology is a collaborative management application platform from China's Panmicro Technology Weaver. A SQL injection vulnerability exists in Weaver e-cology versions prior to 10.58.0, which stems from the filelFileDownloadForOutDoc.class parameter fileid that can lead to sql injection...

CVE-2023-21981

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Elastic Search. Supported versions that are affected are 8.58, 8.59 and 8.60. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft...