UBUNTU-CVE-2025-6196

A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file size calculations when opening specially crafted EPUB files, leading to incorrect memory allocations. This issue causes the application to crash. Known affected usage includes desktop services like...

CVE-2025-6006

A vulnerability, which was classified as critical, has been found in kiCode111 like-girl 5.2.0. This issue affects some unknown processing of the file /admin/ImgUpdaPost.php. The manipulation of the argument id/imgText/imgDatd/imgUrl leads to sql injection. The attack may be initiated remotely. T...

CVE-2025-5511

A vulnerability, which was classified as critical, has been found in quequnlong shiyi-blog up to 1.2.1. This issue affects some unknown processing of the file /dev api/app/album/photos/. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been...

CVE-2025-0880

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dashboard/admin/updateplan.php. The manipulation of the argument planid leads to sql injection. The attack may be initiated remotely. The exploit has...

CVE-2024-6941

A vulnerability, which was classified as problematic, has been found in ThinkSAAS 3.7.0. This issue affects some unknown processing of the file app/system/action/do.php. The manipulation of the argument sitetitle/sitesubtitle/sitekey/sitedesc/siteurl/siteemail/siteicp leads to cross site scriptin...

CVE-2023-5683

A vulnerability was found in Byzoro Smart S85F Management Platform up to 20231010 and classified as critical. This issue affects some unknown processing of the file /sysmanage/importconf.php. The manipulation of the argument btnfilerenew leads to os command injection. The attack may be initiated...

CVE-2022-32802

A logic issue was addressed with improved checks. This issue is fixed in iOS 15.6 and iPadOS 15.6, tvOS 15.6, macOS Monterey 12.5. Processing a maliciously crafted file may lead to arbitrary code execution...

CVE-2025-4940

A vulnerability, which was classified as critical, has been found in 1000 Projects Daily College Class Work Report Book 1.0. This issue affects some unknown processing of the file /admininfo.php. The manipulation of the argument batch leads to sql injection. The attack may be initiated remotely...

CVE-2025-4884

A vulnerability was found in itsourcecode Restaurant Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/assignsave.php. The manipulation of the argument team leads to sql injection. The attack may be initiated remotely. The exploit...

Apple MacOS Denial of Service Vulnerability

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file to cause a denial of service or disclose the contents of memory. An attacker could exploit t...

Apple MacOS Denial of Service Vulnerability (CNVD-2025-25573)

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file resulting in a denial of service or disclosure of memory contents. An attacker could exploit...

CVE-2025-3828

A vulnerability was found in PHPGurukul Men Salon Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/view-appointment.php?viewid=11. The manipulation of the argument remark leads to sql injection. The attack may be initiated remotely. T...

CVE-2023-42981

Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks...

Apple macOS 缓冲区错误漏洞

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file to cause a denial of service or disclose the contents of memory. An attacker could exploit t...

Apple macOS 输入验证错误漏洞

Apple MacOS is a graphical operating system developed by Apple Inc. for the Macintosh series of computers. Apple MacOS suffers from a denial of service vulnerability that originates from processing a file resulting in a denial of service or disclosure of memory contents. An attacker could exploit...

Adobe Bridge 安全漏洞

Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a buffer overflow vulnerability, which arises from a failure to properly handle memory allocation during file processing, resulting in a buffer overflow that can be exploited by an attacker to execute...

CVE-2025-3243

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dentalform.php. The manipulation of the argument itrno/dentalno leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-3038

A vulnerability was found in code-projects Payroll Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /viewaccount.php. The manipulation of the argument salaryrate leads to sql injection. The attack may be initiated remotely. The exploit has...

CVE-2025-3038

The CVE-2025-3038 entry applies to code-projects Payroll Management System 1.0. The vulnerability resides in the /view_account.php handling of the salary_rate parameter, enabling SQL injection. It is described as exploitable remotely and publicly disclosed. Affected component appears to be the pa...

CVE-2025-2739 PHPGurukul Old Age Home Management System manage-services.php sql injection

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/manage-services.php. The manipulation of the argument sertitle leads to sql injection. The attack may be initiated remotely. The...