CVE-2025-31196

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents...

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in errors related to data type mixing, allowing a hacker to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling is related to errors in data type mixing during the processing of CO files. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of Cobalt Ashlar-Vellum’s software for parametric automated design and 3D modeling lies in its ability to read data beyond the buffer limit in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in the reading of data beyond the buffer limit in memory during the processing of CO files. Exploiting this vulnerability allows an attacker to execute arbitrary code...

CVE-2025-4151

A vulnerability was found in PHPGurukul Curfew e-Pass Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/pass-bwdates-reports-details.php. The manipulation of the argument fromdate leads to sql injection. The attack may be initiated...

Apple MacOS Denial of Service Vulnerability (CNVD-2025-25573)

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file resulting in a denial of service or disclosure of memory contents. An attacker could exploit...

Apple MacOS Denial of Service Vulnerability (CNVD-2025-25572)

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file to cause a denial of service or disclose the contents of memory. An attacker could exploit t...

Apple MacOS Denial of Service Vulnerability

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file to cause a denial of service or disclose the contents of memory. An attacker could exploit t...

CVE-2025-3828

A vulnerability was found in PHPGurukul Men Salon Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/view-appointment.php?viewid=11. The manipulation of the argument remark leads to sql injection. The attack may be initiated remotely. T...

CVE-2023-42981

Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks...

CVE-2023-42983

Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks...

CVE-2023-42982

Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks...

Apple macOS 缓冲区错误漏洞

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file to cause a denial of service or disclose the contents of memory. An attacker could exploit t...

Apple macOS 输入验证错误漏洞

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file resulting in a denial of service or disclosure of memory contents. An attacker could exploit...

Adobe Bridge 安全漏洞

Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a buffer overflow vulnerability, which arises from a failure to properly handle memory allocation during file processing, resulting in a buffer overflow that can be exploited by an attacker to execute...

CVE-2025-32370

Kentico Xperience before 13.0.178 has a specific set of allowed ContentUploader file extensions for unauthenticated uploads; however, because .zip is processed through TryZipProviderSafe, there is additional functionality to create files with other extensions. NOTE: this is a separate issue not...

CVE-2025-3253

A vulnerability was found in xujiangfei admintwo 1.0 and classified as problematic. This issue affects some unknown processing of the file /ztree/insertTree. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed t...

CVE-2025-3243

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dentalform.php. The manipulation of the argument itrno/dentalno leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-3237 Tenda FH1202 wrlwpsset access control

A vulnerability was found in Tenda FH1202 1.2.0.14408. It has been rated as critical. This issue affects some unknown processing of the file /goform/wrlwpsset. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed to the public an...

CVE-2025-3038

A vulnerability was found in code-projects Payroll Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /viewaccount.php. The manipulation of the argument salaryrate leads to sql injection. The attack may be initiated remotely. The exploit has...

CVE-2025-3038

The CVE-2025-3038 entry applies to code-projects Payroll Management System 1.0. The vulnerability resides in the /view_account.php handling of the salary_rate parameter, enabling SQL injection. It is described as exploitable remotely and publicly disclosed. Affected component appears to be the pa...