PT-2025-3799 · Code Projects · Travel Management System

Name of the Vulnerable Software and Affected Versions: code-projects Travel Management System version 1.0 Description: A critical issue has been found in the Travel Management System, affecting some unknown processing of the file /enquiry.php. The manipulation of the argument...

PT-2025-3790 · Trimble · Trimble Sps851

Name of the Vulnerable Software and Affected Versions: Trimble SPS851 version 488.01 Description: A problematic issue was found in the Ethernet Configuration Menu component of the affected software. The manipulation of the Hostname argument leads to cross-site scripting. It is possible to initiat...

PT-2025-3180 · Foliovision · Fv Descriptions

Name of the Vulnerable Software and Affected Versions: Foliovision FV Descriptions versions n/a through 1.4 Description: The issue affects Foliovision FV Descriptions, allowing Reflected XSS due to improper neutralization of input during web page generation. This is a type of Cross-site Scripting...

PT-2025-19378 · Unknown +1 · Request-Tracker5 +1

Name of the Vulnerable Software and Affected Versions: request-tracker5 versions affected versions not specified Description: The issue concerns a Cross Site Scripting vulnerability via JavaScript injection in an RT permalink. Recommendations: At the moment, there is no information about a newer...

PT-2025-30806

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where a warning is triggered on invalid firmware input within the ath6kl module. This warning does not provide useful information and is a frequent...

PT-2025-30793

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A race condition exists in the NFSv4/pNFS implementation that can lead to system hangs during writeback operations. The issue occurs when waiting on the NFS LAYOUT DRAIN bit in pnfs upda...

PT-2024-35799 · Trend Micro · Trend Micro Security

Name of the Vulnerable Software and Affected Versions: Trend Micro ID Security versions 3.0 and below Description: The issue allows an attacker to send an unlimited number of email verification requests without restriction, potentially leading to abuse or denial of service. Recommendations: For...

PT-2024-17864 · Unknown · Phpgurukul Complaint Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Complaint Management System version 1.0 Description: A critical vulnerability has been found in the PHPGurukul Complaint Management System. This issue affects an unknown part of the file /admin/category.php. The manipulation of the...

PT-2024-34397 · Unknown · Smart Agent

Name of the Vulnerable Software and Affected Versions: Smart Agent version 1.1.0 Description: A Server-Side Request Forgery SSRF issue allows a remote attacker to obtain sensitive information via a crafted script to the "/FB/getFbVideoSource.php" component. This enables the attacker to access...

PT-2024-17830 · Unknown · 1000 Projects Portfolio Management System Mca

Name of the Vulnerable Software and Affected Versions: 1000 Projects Portfolio Management System MCA version 1.0 Description: A critical vulnerability was found in the 1000 Projects Portfolio Management System MCA. This issue affects the file /update personal details.php and can be exploited...

PT-2024-17832 · Unknown · 1000 Projects Portfolio Management System Mca

Name of the Vulnerable Software and Affected Versions: 1000 Projects Portfolio Management System MCA version 1.0 Description: A critical issue has been found in the 1000 Projects Portfolio Management System MCA, affecting some unknown processing of the file /update edu details.php. The manipulati...

PT-2024-17784 · Intelbras · Intelbras Vip S4020 G3 +3

Name of the Vulnerable Software and Affected Versions: Intelbras VIP S3020 G2 versions up to 20241222 Intelbras VIP S4020 G2 versions up to 20241222 Intelbras VIP S4020 G3 versions up to 20241222 Intelbras VIP S4320 G2 versions up to 20241222 Description: A critical vulnerability was found in the...

PT-2024-36458 · Quectel · Quectel Bc95-Cnv

Name of the Vulnerable Software and Affected Versions: Quectel BC95-CNV version V100R001C00SPC051 Description: An issue in Quectel BC95-CNV allows attackers to bypass authentication via a crafted NAS message. This enables attackers to elude authentication through a manipulated message...

GHSA-6PFC-W86R-54Q6 Welcome and About GeoServer pages communicate version and revision information

Impact The welcome and about page includes version and revision information about the software in use including library and components used. This information is sensitive from a security point of view because it allows software used by the server to be easily identified. Proof of Concept 1. Welco...

PT-2024-17630 · Classcms · Classcms

Name of the Vulnerable Software and Affected Versions: ClassCMS version 4.8 Description: A problematic vulnerability was found in ClassCMS, affecting an unknown functionality of the file /index.php/admin of the component Model Management Page. The manipulation of the URL argument leads to...

PT-2025-23606 · NetGear · Netgear Wnr614

Name of the Vulnerable Software and Affected Versions: Netgear WNR614 version 1.1.0.28 1.0.1WW Description: A critical vulnerability exists in the Netgear WNR614 router, related to bypassing the authentication procedure. Manipulation of the input %00currentsetting.htm appended to a URL leads to...

PT-2024-9716 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.21 and earlier Description: The issue is related to insufficient protection of the web page structure in Adobe Experience Manager, which can be exploited by a remote attacker to execute arbitrary code...

PT-2024-9356 · Microsoft · Windows Remote Desktop Services +1

Name of the Vulnerable Software and Affected Versions: Windows Remote Desktop Services affected versions not specified Description: The issue is related to the use of memory after it has been freed in Microsoft Windows Remote Desktop Services. This can allow a remote attacker to execute arbitrary...

PT-2024-34457 · Silicon · Z-Wave Series 700/800

Name of the Vulnerable Software and Affected Versions: Silicon Labs SiLabs Z-Wave Series 700 and 800 version 7.21.1 Description: The issue is related to insecure permissions in the affected software, allowing attackers to disrupt communications between the controller and the device by repeatedly...

CVE-2024-12307

A function-level access control vulnerability in Unifiedtransform version 2.0 and potentially earlier versions allows teachers to modify student personal data without proper authorization. The vulnerability exists due to missing access control checks in the student editing functionality. At the...