PT-2025-25847

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between the set blocksize and read paths in the Linux kernel, which can cause a kernel crash. This issue arises when the set blocksize function changes i blksize...

Infinite loop

Overview Affected versions of this package are vulnerable to Infinite loop via the RawBinaryReader class. This is due to a missing check of the number of bytes read from the underlying stream while deserializing the binary format when reading binary Ion data. Remediation Upgrade Amazon.IonDotnet ...

ion-dotnet 安全漏洞

ion-dotnet is an A.NET implementation of Amazon Ion by amazon-ion open source. A security vulnerability exists in ion-dotnet versions prior to 1.3.1 that stems from the RawBinaryReader class not checking the number of bytes read, which could lead to an infinite loop and denial of service...

CVE-2025-22651

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wppluginboxdev Stylish Google Sheet Reader stylish-google-sheet-reader allows Reflected XSS.This issue affects Stylish Google Sheet Reader: from n/a through = 4.0...

CVE-2025-22651 WordPress Stylish Google Sheet Reader plugin <= 4.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wppluginboxdev Stylish Google Sheet Reader stylish-google-sheet-reader allows Reflected XSS.This issue affects Stylish Google Sheet Reader: from n/a through = 4.0...

CVE-2025-22651

CVE-2025-22651 is a Reflected XSS vulnerability in the WordPress plugin Stylish Google Sheet Reader (versions ≤ 4.0). The issue arises from improper input neutralization during web page generation, allowing attacker-supplied input to be reflected and executed in a victim’s browser. Public sources...

PT-2025-16969 · Unknown · Stylish Google Sheet Reader

Name of the Vulnerable Software and Affected Versions: Stylish Google Sheet Reader versions n/a through 4.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This enables potential attacker...

PYSEC-2025-229

A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the function BinaryReaderInterp::BeginFunctionBody of the file src/interp/binary-reader-interp.cc. The manipulation leads to null pointer dereference. The attack can be launched...

PYSEC-2025-229

A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the function BinaryReaderInterp::BeginFunctionBody of the file src/interp/binary-reader-interp.cc. The manipulation leads to null pointer dereference. The attack can be launched...

UBUNTU-CVE-2025-3122

A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the function BinaryReaderInterp::BeginFunctionBody of the file src/interp/binary-reader-interp.cc. The manipulation leads to null pointer dereference. The attack can be launched...

CVE-2025-3122 WebAssembly wabt binary-reader-interp.cc BeginFunctionBody null pointer dereference

A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the function BinaryReaderInterp::BeginFunctionBody of the file src/interp/binary-reader-interp.cc. The manipulation leads to null pointer dereference. The attack can be launched...

CVE-2025-3122

CVE-2025-3122 affects WebAssembly wabt 1.0.36. The vulnerability targets BinaryReaderInterp::BeginFunctionBody in src/interp/binary-reader-interp.cc, causing a null pointer dereference. Exploitation can be performed remotely with high attack complexity and a revealed public exploit. The available...

CVE-2025-2098

Fast CAD Reader application on MacOS was found to be installed with incorrect file permissions rwxrwxrwx. This is inconsistent with standard macOS security practices, where applications should have drwxr-xr-x permissions. Incorrect permissions allow for Dylib Hijacking. Guest account, other users...

PT-2025-34316

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this, as the target must...

CVE-2024-13863

The Stylish Google Sheet Reader 4.0 WordPress plugin before 4.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2025-2098

Fast CAD Reader application on MacOS was found to be installed with incorrect file permissions rwxrwxrwx. This is inconsistent with standard macOS security practices, where applications should have drwxr-xr-x permissions. Incorrect permissions allow for Dylib Hijacking. Guest account, other users...

CVE-2025-2098

CVE-2025-2098 affects Fast CAD Reader on macOS. The issue is improper file permissions (rwxrwxrwx) for the application, diverging from macOS practice of drwxr-xr-x, enabling potential Dylib Hijacking and privilege escalation. Impact is described as local: guest/other users and applications could ...

CVE-2025-2098 Dylib Hijacking in Fast CAD Reader

Fast CAD Reader application on MacOS was found to be installed with incorrect file permissions rwxrwxrwx. This is inconsistent with standard macOS security practices, where applications should have drwxr-xr-x permissions. Incorrect permissions allow for Dylib Hijacking. Guest account, other users...

CVE-2025-2098 Dylib Hijacking in Fast CAD Reader

Fast CAD Reader application on MacOS was found to be installed with incorrect file permissions rwxrwxrwx. This is inconsistent with standard macOS security practices, where applications should have drwxr-xr-x permissions. Incorrect permissions allow for Dylib Hijacking. Guest account, other users...

Honghu Yuntu Fast CAD Reader 安全漏洞

Honghu Yuntu Fast CAD Reader is a CAD reader from the Chinese company Honghu Yuntu. A security vulnerability exists in Honghu Yuntu Fast CAD Reader 4.1.5 and earlier versions, which can lead to Dylib hijacking and elevation of privilege due to improperly set file permissions...