CVE-2025-41106 Multiple vulnerabilities in Fairsketch's RISE CRM Framework

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'firstname' in '/clients/savecontact/'...

Fairsketch RISE CRM Framework 跨站脚本漏洞

FairSketch Fairsketch RISE CRM Framework is a team management and customer relationship management framework from FairSketch, Inc. A cross-site scripting vulnerability exists in Fairsketch RISE CRM Framework version 3.8.1, which stems from insufficient validation of user input for the parameter...

PT-2025-46334

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'first name' in '/clients/save contact/'...

e-Excellence U-Office Force SQL注入漏洞

e-Excellence U-Office Force is an e-Office platform from China-based First Class Technology e-Excellence. An SQL injection vulnerability exists in e-Excellence U-Office Force that originates from unvalidated input and could lead to an SQL injection attack...

libtiff security update

4.0.9-36 - fix CVE-2025-8176: prevent skipping first line in tiffdither and tiffmedian tools RHEL-120230...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990462)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990462 advisory. In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990223)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990223 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix inode number range checks Patch series nilfs2: fix potential issues related to reserv...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990272)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990272 advisory. In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 net: dsa: mv88e6xxx:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990292)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990292 advisory. In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990060)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990060 advisory. In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989742)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989742 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix inode number range checks Patch series nilfs2: fix potential issues related to reserv...

rack: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)

A flaw was found in Rack where the Rack::Multipart::Parser buffers the multipart preamble memory without size limits. A remote attacker can send a crafted multipart/form-data request with a very large preamble before its first boundary, causing excessive memory consumption and denial of service...

EUVD-2025-37527

Malicious code in kb-first-package npm...

MAL-2025-49345 Malicious code in kb-first-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b498b7e91f79ce12116c06991401774397390aa4750938f85f34fa87b1cfccd The package kb-first-package was found to contain malicious code...

Malicious code in kb-first-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b498b7e91f79ce12116c06991401774397390aa4750938f85f34fa87b1cfccd The package kb-first-package was found to contain malicious code...

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_unknown_tlv function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.

...

CVE-2025-62267

Multiple cross-site scripting XSS vulnerabilities in web content template’s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary we...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: smc: Fixed various errors due to confusion between the inetsock type. syzbot reported strange behavior in the cipsov4socksetattr function when freeing the inetsk structure, specifically during the assignment of inetopt. The...

Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Handle the return value of hdrfirstde The hdrfirstde function returns a pointer to a struct NTFSDE. This pointer may be NULL. To effectively handle the NULL error, it is important to implement an error handler. This wil...

An Efficient Anomaly Detection Framework for Wireless Sensor Networks Using Markov Process

Wireless Sensor Networks forms the backbone of modern cyber physical systems used in various applications such as environmental monitoring, healthcare monitoring, industrial automation, and smart infrastructure. Ensuring the reliability of data collected through these networks is essential as the...