EUVD-2025-13307

Malicious code in bioql PyPI...

EUVD-2025-16125

Malicious code in bioql PyPI...

OESA-2025-2336 python-xmltodict security update

Python module that makes working with XML feel like you are working with JSON Security Fixes: XML Injection vulnerability in xmltodict allows Input Data Manipulation.This issue affects xmltodict: 0.14.2.CVE-2025-9375...

CVE-2025-27036

Information disclosure when Video engine escape input data is less than expected minimum size...

CVE-2025-27036

Information disclosure when Video engine escape input data is less than expected minimum size...

CVE-2025-27036

CVE-2025-27036 concerns Qualcomm chipsets with a vulnerability in the Video engine’s handling of input data smaller than the expected minimum size. Root cause: a buffer/processing mismatch in the video engine leads to information disclosure. Affected: Qualcomm chipsets (Video engine component); e...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm, Inc. A security vulnerability exists in Qualcomm Chipsets that stems from the video engine escaping input data smaller than the expected minimum size, which could lead to information disclosure...

PT-2025-39274

Name of the Vulnerable Software and Affected Versions versions prior to 2025 Description An information disclosure issue exists when the video engine processes input data that is smaller than the expected minimum size. This can lead to the disclosure of sensitive information. Approximately 1000...

CVE-2025-8276

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting', Improper Encoding or Escaping of Output, Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Patika Global Technologies HumanSuite allows...

CVE-2025-8276 HTML Injection in Patika Global Technologies' HumanSuite

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting', Improper Encoding or Escaping of Output, Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Patika Global Technologies HumanSuite allows...

PT-2025-37992

Name of the Vulnerable Software and Affected Versions HumanSuite versions prior to 53.21.0 Description HumanSuite is susceptible to multiple issues including improper encoding or escaping of output, improper neutralization of special elements in output used by a downstream component injection,...

Debian dla-4302 : node-sha.js - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4302 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4302-1 [email protected] https://www.debian.org/lts/security/...

CVE-2024-13065

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding.This issue affects MyRezzta: from s2.02.02 before v2.05.01...

CVE-2024-13065

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

CVE-2024-13065

CVE-2024-13065 concerns Akinsoft MyRezzta, where improper enforcement of behavioral workflow leads to uncontrolled resource consumption and input data manipulation. Affected software: MyRezzta versions s2.02.02 through before v2.05.01. Documented impact is described as CAPEC-125 Flooding. Remedia...

CVE-2024-13065

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

CVE-2024-13065 Business Logic Error in Akinsoft's MyRezzta

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

CVE-2024-13065 Business Logic Error in Akinsoft's MyRezzta

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

SUSE CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of us...