PT-2026-36931

Name of the Vulnerable Software and Affected Versions CodeCanyon Perfex CRM versions prior to 3.4.2 Description An authorization bypass exists in the Tenant Handler component within the Clients::project function of the application/controllers/Clients.php file. A remote attacker can exploit this b...

PT-2026-2040

Name of the Vulnerable Software and Affected Versions Intern Membership Management System version 1.0 Description A SQL injection issue exists in the Intern Membership Management System. The issue is located in the /admin/delete activity.php file, within an unknown function. Manipulating the...

PT-2025-43913

Name of the Vulnerable Software and Affected Versions code-projects Online Event Judging System version 1.0 Description A flaw exists in code-projects Online Event Judging System that allows for SQL injection. This issue is related to the /add judge.php file and manipulation of the fullname...

PT-2025-30409 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The provided information indicates a rejected reason associated with an identifier. No further details about the issue are available. Recommendations: At the...

PT-2025-29410 · Phpgurukul · Phpgurukul Online Fire Reporting System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Online Fire Reporting System version 1.2 Description: A critical vulnerability exists in PHPGurukul Online Fire Reporting System 1.2. The vulnerability is a SQL injection that can be exploited remotely through the manipulation of t...

Security Bulletin: IBM WebSphere Application Server, which is bundled with IBM Enterprise Application Runtimes, is affected by arbitrary code execution (CVE-2025-36038)

Summary IBM WebSphere Application Server, which is bundled with IBM Enterprise Application Runtimes, is affected by arbitrary code execution. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products and Versions...

Security Bulletin: IBM WebSphere Application Server, which is bundled with IBM WebSphere Hybrid Edition, is affected by arbitrary code execution (CVE-2025-36038)

Summary IBM WebSphere Application Server, which is bundled with IBM WebSphere Hybrid Edition, is affected by arbitrary code execution. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products and Versions|...

PT-2025-27805 · WordPress · Wpvivid Backup/Migration

Name of the Vulnerable Software and Affected Versions: Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress versions up to, and including, 0.9.116 Description: The issue is related to arbitrary file uploads due to missing file type validation in the wpvivid upload import...

PT-2025-25935 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0-rc6-next-20220715 Description: A null pointer dereference issue was found in the f2fs get dnode of data function. This issue occurs when testing f2fs atomic write, resulting in errors such as "Can't find...

PT-2025-25937 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 5.19.0-rc8-next-20220728 Description: A warning in the OPP during probe has been resolved in the Linux kernel. The issue was triggered during the Venus driver probe and resulted in a WARN message. The fix involves...

Security Bulletin: IBM Tivoli Application Dependency Discovery Manager is vulnerable to server-side request forgery attack.

Summary IBM Tivoli Application Dependency Discovery Manager is vulnerable to server-side request forgery. This vulnerability allows authenticated users can send specially crafted request CVE-2023-51441. Vulnerability Details CVEID:CVE-2023-51441 DESCRIPTION: Apache Axis is vulnerable to server-si...

PT-2025-22237 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the wifi component, specifically the ath12k driver. In the ath12k dp mon srng process function, an incorrect function, ath12k hal srng src get next entry, is us...

PT-2025-20350 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, which was caused by a code path in dequeue entities that could set the slice of a sched entity to U64 MAX, resulting in a crash...

PT-2025-16625 · Unknown · Mirweiye Seven Bears Library Cms

Name of the Vulnerable Software and Affected Versions: mirweiye Seven Bears Library CMS version 2023 Description: A vulnerability was found in the Add Link Handler component, which can lead to server-side request forgery. The manipulation can be launched remotely. Recommendations: For mirweiye...

PT-2025-16447 · Oracle · Peoplesoft Enterprise Hcm Talent Acquisition Manager

Name of the Vulnerable Software and Affected Versions: PeopleSoft Enterprise HCM Talent Acquisition Manager version 9.2 Description: The issue allows a low-privileged attacker with network access via HTTP to compromise the system. Successful attacks require human interaction from a person other...

PT-2025-14486 · Amd +4 · Amdgpu +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.11 and later Description: A NULL pointer dereference issue has been identified in the Linux kernel, specifically affecting the AMDGPU driver when loaded with amdgpu.dc=1 on PCs with older GPUs, such as the R9 280X. Thi...

Security Bulletin: Multiple security vulnerabilities in systemd may affect IBM Storage Scale System

Summary Multiple security vulnerabilities has been identified in IBM Storage Scale System where systemd is vulnerable to denial of service. A fix for these vulnerabilities is available. Vulnerability Details CVEID:CVE-2022-4415 DESCRIPTION: systemd could allow a local authenticated attacker to...

PT-2022-25133 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about a specific vulnerability. It appears to be a notification about a rejected candidate...

PT-2022-25123 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about a specific vulnerability. It appears to be a notification about a rejected candidate...

PT-2022-8810 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about a specific vulnerability. It appears to be a notification about a rejected candidate...