CVE-2025-14731

A weakness has been identified in CTCMS Content Management System up to 2.1.2. This affects an unknown function in the library /ctcms/apps/libraries/CTParser.php of the component Frontend/Template Management Module. This manipulation causes improper neutralization of special elements used in a...

Malicious code in frontend-module-tailwindcss-sails (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b0a42dd3cdb3164f9a7e9e88a05a7fdb8d309d11dc69e5b66054ef4e34eac8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113402

Malicious code in frontend-module-tailwindcss-sails npm...

Liferay Portal Frontend JS module's portlet.js and Liferay DXP vulnerable to Cross-site Scripting

Cross-site scripting XSS vulnerability in the Frontend JS module's portlet.js in Liferay Portal 7.2.0 through 7.4.3.37, and Liferay DXP 7.4 before update 38, 7.3 before update 11, 7.2 before fix pack 20, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML...

SQL Injection Vulnerability in Us***_mo***.asp File of Online Bookkeeping Management System for Environmental Times Enterprises

Eco Times Enterprise Online Bookkeeping Management System is a financial online bookkeeping software. There is a SQL injection vulnerability in the usmo.asp file in the frontend of the EcoTimes Enterprise Online Bookkeeping Management System. An attacker can exploit the vulnerability to obtain...

Bea Weblogic Apache Connector Code Exec / Denial of Service Exploit

Exploit for unknown platform in category remote exploits =================================================================== Bea Weblogic Apache Connector Code Exec / Denial of Service Exploit =================================================================== // Bea Weblogic -- Apache Connector...