PT-2025-29112 · Code Projects · Mobile Shop

Name of the Vulnerable Software and Affected Versions: code-projects Mobile Shop version 1.0 Description: A critical issue exists in code-projects Mobile Shop 1.0 related to the processing of the /LoginAsAdmin.php file. Manipulation of the email argument results in a SQL injection. The attack can...

PT-2025-28968 · Palo Alto Networks · Palo Alto Networks Autonomous Digital Experience Manager

Name of the Vulnerable Software and Affected Versions: Palo Alto Networks Autonomous Digital Experience Manager affected versions not specified Description: An incorrect privilege assignment exists in Palo Alto Networks Autonomous Digital Experience Manager. A locally authenticated low-privileged...

CVE-2022-1038

A potential security vulnerability has been identified in the HP Jumpstart software, which might allow escalation of privilege. HP is recommending that customers uninstall HP Jumpstart and use myHP software...

PT-2025-19754 · Foxcms · Foxcms

Name of the Vulnerable Software and Affected Versions: foxcms version 2.0.6 Description: An issue in the restores method of DataBackup.php allows attackers to execute a directory traversal. Recommendations: For foxcms version 2.0.6, consider restricting access to the restores method in...

PT-2025-15764 · Unknown · Quanganhdo Custom Smilies

Name of the Vulnerable Software and Affected Versions: quanganhdo Custom Smilies versions 1.2 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a we...

PT-2025-15110 · Unknown · Codeprojects Online Restaurant Management System

Name of the Vulnerable Software and Affected Versions: codeprojects Online Restaurant Management System version 1.0 Description: A critical vulnerability has been found in the codeprojects Online Restaurant Management System. The issue affects an unknown functionality of the file /admin/combo...

PT-2025-11215 · Froxlor · Froxlor

Name of the Vulnerable Software and Affected Versions: Froxlor versions prior to 2.2.6 Description: Froxlor is open-source server administration software. A vulnerability allows users, such as resellers or customers, to create accounts with the same email address as an existing account, creating...

PT-2025-15633

Name of the Vulnerable Software and Affected Versions: LemonLDAP::NG versions prior to 2.21.0 Description: The issue is related to an XSS problem. The LemonLDAP::NG community has released a new version, 2.21.0, which includes a fix for this issue. Recommendations: For versions prior to 2.21.0,...

PT-2024-31064 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.1 macOS versions prior to 14.7.1 Description: An out-of-bounds access issue was addressed with improved bounds checking. Processing a maliciously crafted file may lead to unexpected app termination. The issue is d...

PT-2023-21134 · Unknown · Fluenx Deepl Api Translation Plugin

Name of the Vulnerable Software and Affected Versions: Fluenx DeepL API translation plugin versions = 2.1.4 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a w...

PT-2023-28469 · Unknown · Validationtools

Name of the Vulnerable Software and Affected Versions: validationtools affected versions not specified Description: The issue is related to a possible missing permission check in validationtools, which could lead to local information disclosure without requiring additional execution privileges...

PT-2023-28346 · Pow · Pow

Name of the Vulnerable Software and Affected Versions: Pow versions 1.0.14 through 1.0.33 Description: Pow is a authentication and user management solution for Phoenix and Plug-based apps. The use of Pow.Store.Backend.MnesiaCache is susceptible to session hijacking as expired keys are not being...

PT-2023-12365 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version US AC6V4.0RTL V02.03.01.26 cn.bin Description: The issue allows attackers, who have the administrator password, to cause a denial of service device crash via a long string in the wifiPwd 5G parameter to "/goform/setWifi"...

PT-2022-27458 · Unknown · Gpac Mp4Box

Name of the Vulnerable Software and Affected Versions: GPAC MP4box version 2.0.0 Description: A stack overflow issue was found in the smil parse time list parameter at /scenegraph/svg attributes.c. Recommendations: For GPAC MP4box version 2.0.0, consider restricting access to the vulnerable smil...

PT-2022-34655 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.143 Description: The issue is related to a potential left shift overflow in swiotlb. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...

PT-2022-37323 · Skia · Skia

Name of the Vulnerable Software and Affected Versions: Skia affected versions not specified Description: The issue is related to a crash caused by the use of an uninitialized value. The crash occurs in the SkPathStroker::CheckCubicLinear function, which is called by SkPathStroker::cubicTo and...

PT-2022-33912 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: A refcount leak was discovered in the meson-secure-pwrc.c file. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...

PT-2022-23385 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6134 B20201202 Description: A stack overflow issue was discovered in the setLanguageCfg function via the lang parameter. Recommendations: For version 9.1.2u.6134 B20201202, avoid using the lang parameter in the...

PT-2022-15909 · Sonicwall · Sonicwall Switch

Name of the Vulnerable Software and Affected Versions: SonicWall Switch versions 1.1.1.0-2s and earlier Description: The issue allows an authenticated malicious user to perform remote code execution in the host system due to improper neutralization of special elements used in a user input...

What is the Recommended Way of taking a Trace on Citrix ADC.

Recommendation While taking a Trace on Citrix ADC...