CVE-2025-67341

CVE-2025-67341 affects jshERP 3.5 and earlier, with a stored XSS in uploaded PDF files that can be accessed via static URLs by any user. The issue’s root cause is a stored XSS vulnerability in PDF upload handling, leading to potential script execution within users’ contexts. Severity is CVSS v3.1...

EUVD-2005-0988

Malware in sbrugna...

SUSE CVE-2007-5335

Mozilla Firefox 2.0 before 2.0.0.8 allows remote attackers to obtain sensitive system information by using the addMicrosummaryGenerator sidebar method to access file: URIs...

ZOHO ManageEngine ServiceDesk Plus Licensing Issue Vulnerability

ZOHO ManageEngine ServiceDesk Plus SDP is a set of ITIL-based IT service management software from ZOHO. The software integrates incident management, issue management, asset management IT project management, procurement and contract management, etc. An authorization issue vulnerability exists in...

ZOHO ManageEngine ServiceDesk Plus 访问控制错误漏洞

ZOHO ManageEngine ServiceDesk Plus SDP is a set of ITIL-based IT service management software from ZOHO. The software integrates incident management, issue management, asset management IT project management, procurement and contract management, etc. An authorization issue vulnerability exists in...