Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7660 matches found

RedhatCVE
RedhatCVEadded 2025/12/08 1:11 p.m.2 views

CVE-2025-14190

A flaw has been found in Chanjet TPlus up to 20251121. Affected by this vulnerability is an unknown functionality of the file /tplus/ajaxpro/Ufida.T.SM.UIP.MultiCompanySettingController,Ufida.T.SM.UIP.ashx?method=Load. This manipulation of the argument currentAccId causes sql injection. It is...

7.5CVSS6.7AI score0.0003EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/08 3:31 a.m.2 views

EUVD-2025-201633

In the Linux kernel, the following vulnerability has been resolved: jfs: Verify inode mode when loading from disk The inode mode loaded from corrupted disk can be invalid. Do like what commit 0a9e74051313 "isofs: Verify inode mode when loading from disk" does...

6AI score0.00084EPSS
Exploits0References9
NVD
NVDadded 2025/12/08 2:15 a.m.4 views

CVE-2022-50628

In the Linux kernel, the following vulnerability has been resolved: drm/gud: Fix UBSAN warning UBSAN complains about invalid value for bool: 101.165172 drm Initialized gud 1.0.0 20200422 for 2-3.2:1.0 on minor 1 101.213360 gud 2-3.2:1.0: drm fb1: guddrmfb frame buffer device 101.213426 usbcore:...

0.00024EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/12/08 1:16 a.m.27 views

CVE-2022-50628 drm/gud: Fix UBSAN warning

In the Linux kernel, the following vulnerability has been resolved: drm/gud: Fix UBSAN warning UBSAN complains about invalid value for bool: 101.165172 drm Initialized gud 1.0.0 20200422 for 2-3.2:1.0 on minor 1 101.213360 gud 2-3.2:1.0: drm fb1: guddrmfb frame buffer device 101.213426 usbcore:...

0.00024EPSS
Exploits0References3
CVE
CVEadded 2025/12/08 1:16 a.m.7 views

CVE-2022-50628

CVE-2022-50628: The issue is a UBSAN warning in the gud driver of the Linux kernel caused by uninitialized iosys_map usage which can load an invalid _Bool value. The fix is to zero the iosys_map variables (in iosys_map_clear called from dma_buf_vmap). Connected sources corroborate that the bug ar...

6.3AI score0.00024EPSS
Exploits0References3
OSV
OSVadded 2025/12/08 1:16 a.m.0 views

UBUNTU-CVE-2025-40312

In the Linux kernel, the following vulnerability has been resolved: jfs: Verify inode mode when loading from disk The inode mode loaded from corrupted disk can be invalid. Do like what commit 0a9e74051313 "isofs: Verify inode mode when loading from disk" does...

5.7AI score0.00084EPSS
Exploits0References36
Cvelist
Cvelistadded 2025/12/08 12:46 a.m.26 views

CVE-2025-40312 jfs: Verify inode mode when loading from disk

In the Linux kernel, the following vulnerability has been resolved: jfs: Verify inode mode when loading from disk The inode mode loaded from corrupted disk can be invalid. Do like what commit 0a9e74051313 "isofs: Verify inode mode when loading from disk" does...

0.00084EPSS
Exploits0References8
Debian CVE
Debian CVEadded 2025/12/08 12:46 a.m.4 views

CVE-2025-40312

In the Linux kernel, the following vulnerability has been resolved: jfs: Verify inode mode when loading from disk The inode mode loaded from corrupted disk can be invalid. Do like what commit 0a9e74051313 "isofs: Verify inode mode when loading from disk" does...

5.1AI score0.00084EPSS
Exploits0
OSV
OSVadded 2025/12/08 12:46 a.m.2 views

CVE-2025-40312 jfs: Verify inode mode when loading from disk

In the Linux kernel, the following vulnerability has been resolved: jfs: Verify inode mode when loading from disk The inode mode loaded from corrupted disk can be invalid. Do like what commit 0a9e74051313 "isofs: Verify inode mode when loading from disk" does...

6.4AI score0.00084EPSS
Exploits0References11
Positive Technologies
Positive Technologiesadded 2025/12/08 12:0 a.m.3 views

PT-2025-49611

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the kexec functionality related to the fdt Flattened Device Tree buffer. The issue was identified by the kmemleak detector, indicating an...

6.7AI score0.00024EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/12/08 12:0 a.m.3 views

PT-2025-49469

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18-rc5-gud-5.18-rc5 Description The Linux kernel contains a flaw within the DRM/Gud subsystem related to uninitialized memory. Specifically, the iosys map variables are allocated on the stack without...

5.4AI score0.00024EPSS
Exploits0References16
EUVD
EUVDadded 2025/12/07 3:30 p.m.2 views

EUVD-2025-201599

A flaw has been found in Chanjet TPlus up to 20251121. Affected by this vulnerability is an unknown functionality of the file /tplus/ajaxpro/Ufida.T.SM.UIP.MultiCompanySettingController,Ufida.T.SM.UIP.ashx?method=Load. This manipulation of the argument currentAccId causes sql injection. It is...

7.5CVSS6.2AI score0.0003EPSS
Exploits0References6
NVD
NVDadded 2025/12/07 1:15 p.m.1 views

CVE-2025-14190

A flaw has been found in Chanjet TPlus up to 20251121. Affected by this vulnerability is an unknown functionality of the file /tplus/ajaxpro/Ufida.T.SM.UIP.MultiCompanySettingController,Ufida.T.SM.UIP.ashx?method=Load. This manipulation of the argument currentAccId causes sql injection. It is...

7.5CVSS0.0003EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/12/07 12:2 p.m.14 views

CVE-2025-14190 Chanjet TPlus sql injection

A flaw has been found in Chanjet TPlus up to 20251121. Affected by this vulnerability is an unknown functionality of the file /tplus/ajaxpro/Ufida.T.SM.UIP.MultiCompanySettingController,Ufida.T.SM.UIP.ashx?method=Load. This manipulation of the argument currentAccId causes sql injection. It is...

7.5CVSS0.0003EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/12/07 12:2 p.m.1 views

CVE-2025-14190 Chanjet TPlus sql injection

A flaw has been found in Chanjet TPlus up to 20251121. Affected by this vulnerability is an unknown functionality of the file /tplus/ajaxpro/Ufida.T.SM.UIP.MultiCompanySettingController,Ufida.T.SM.UIP.ashx?method=Load. This manipulation of the argument currentAccId causes sql injection. It is...

7.5CVSS6.4AI score0.0003EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/12/07 12:0 a.m.0 views

Chanjet TPlus SQL注入漏洞

Chanjet TPlus is an enterprise cloud platform from China's Changjitong Chanjet Corporation. A SQL injection vulnerability exists in Chanjet TPlus 20251121 and earlier versions, which originates from a change to the parameter currentAccId in the file...

7.5CVSS7.8AI score0.0003EPSS
Exploits0References6
Snyk
Snykadded 2025/12/05 6:19 p.m.2 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the api.ParseJSONRequest or api.getContentType functions. An attacker can cause excessive memory consumption by sending requests with either an excessively long OID containing man...

7.5CVSS6.8AI score0.00019EPSS
Exploits0References2
NVD
NVDadded 2025/12/05 6:15 p.m.4 views

CVE-2025-66554

Contacts app for Nextcloud easily syncs contacts from various devices with your Nextcloud and allows editing. Prior to 5.5.4, 6.0.6, and 7.2.5, a malicious user was able to modify their organisation and title field to load additional CSS files. Javascript and other options were correctly blocked ...

5.4CVSS0.00016EPSS
Exploits0References4
NVD
NVDadded 2025/12/05 3:15 p.m.3 views

CVE-2025-14088

A vulnerability was determined in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is an unknown functionality of the file /je/load. This manipulation of the argument Authorization causes improper authorization. The attack is possible to be carried out remotely. The exploit has been public...

6.5CVSS0.00045EPSS
Exploits0References4
EUVD
EUVDadded 2025/12/05 2:32 p.m.2 views

EUVD-2025-201415

A vulnerability was determined in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is an unknown functionality of the file /je/load. This manipulation of the argument Authorization causes improper authorization. The attack is possible to be carried out remotely. The exploit has been public...

6.5CVSS6.3AI score0.00045EPSS
Exploits0References5
Rows per page
Query Builder