CVE-2025-10316

CVE-2025-10316 affects the TYPO3 extension Form to Database (form_to_database). The issue is Cross-Site Scripting due to insufficient handling of form values, allowing injection of malicious scripts when data is rendered. Affected versions are: before 2.2.5; 3.0.0–3.2.1; 4.0.0–4.2.2; 5.0.0–5.0.1....

SUSE CVE-2017-8313

Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process via a crafted subtitles file...

PT-2019-12676 · Atutor · Atutor

Name of the Vulnerable Software and Affected Versions: ATutor versions prior to 2.2.5 Description: The issue allows for arbitrary file uploads via the "mods/ core/backups/upload.php" component, potentially resulting in remote command execution. An attacker can use an instructor account to fully...

Unspecified Vulnerability in CMS Made Simple

CMS Made Simple CMSMS is an open source content management system CMS developed by the CMSMS team. The system supports role-based rights management system , wizard-based installation and update mechanism , intelligent caching mechanism and so on. A security vulnerability exists in CMS Made Simple...