CVE-2025-70062

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...

PT-2026-20516

MajorDoMo aka Major Domestic Module is vulnerable to unauthenticated remote code execution through supply chain compromise via update URL poisoning. The saverestore module exposes its admin method through the /objects/?module=saverestore endpoint without authentication because it uses gr'mode'...

Important: nvlink5-580

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

Important: nvidia-modprobe

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a race condition between module unloading and structural scanning, potentially leading to system...

CVE-2025-70063

The 'Medical History' module in PHPGurukul Hospital Management System v4.0 contains an Insecure Direct Object Reference IDOR vulnerability. The application fails to verify that the requested 'viewid' parameter belongs to the currently authenticated patient. This allows a user to access the...

Splunk Enterprise 安全漏洞

Splunk Enterprise is a data collection and analysis software developed by the American company Splunk. There is a security vulnerability in Splunk Enterprise, which stems from issues with the Windows Python module search path. This vulnerability may allow for the execution of malicious code...

Important: nvidia-kmod-common

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

MajorDoMo SQL注入漏洞

MajorDoMo is an open-source DIY smart home automation platform developed by the MajorDoMo community. There is a SQL injection vulnerability in MajorDoMo. This vulnerability stems from the commandssearch.inc.php file, which directly inserts the $GETparent parameter into multiple SQL queries. These...

Amazon Linux 2023 : nvidia-persistenced (ALAS2023NVIDIA-2026-262)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-262 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

Amazon Linux 2023 : nvidia-open (ALAS2023NVIDIA-2026-263)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-263 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

Amazon Linux 2023 : kmod-nvidia-open-dkms (ALAS2023NVIDIA-2026-272)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-272 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

Amazon Linux 2023 : kmod-nvidia-latest-dkms (ALAS2023NVIDIA-2026-273)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-273 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

Amazon Linux 2023 : cuda-drivers (ALAS2023NVIDIA-2026-274)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-274 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

Amazon Linux 2023 : libnvidia (ALAS2023NVIDIA-2026-270)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-270 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

Amazon Linux 2023 : cuda-compat-13-0 (ALAS2023NVIDIA-2026-275)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-275 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

PT-2026-20481

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...

PT-2026-20490

Name of the Vulnerable Software and Affected Versions InvoicePlane versions through 1.6.3 Description InvoicePlane is a self-hosted open source application for managing invoices, clients, and payments. A path traversal issue exists in the get file method of the Guest module's Get controller. This...

CVE-2025-70062

CVE-2025-70062 affects PHPGurukul Hospital Management System v4.0. A CSRF vulnerability exists in the Add Doctor module where the add-doctor.php endpoint does not enforce CSRF token validation. This allows an attacker to cause an authenticated administrator to visit a crafted page, potentially cr...

F5 BIG-IP AFM 代码问题漏洞

F5 BIG-IP AFM is a high-level firewall product developed by F5 Corporation in the United States, designed to protect against DDoS attacks. There is a code vulnerability in F5 BIG-IP AFM, where unacknowledged traffic may lead to TMM termination...