EUVD-2025-12038

Malicious code in bioql PyPI...

EUVD-2025-2814

Malicious code in bioql PyPI...

CVE-2025-54132 Cursor's Mermaid Diagram Tool is Vulnerable to an Arbitrary Image Fetch

Cursor is a code editor built for programming with AI. In versions below 1.3, Mermaid which is used to render diagrams allows embedding images which then get rendered by Cursor in the chat box. An attacker can use this to exfiltrate sensitive information to a third-party attacker controlled serve...

CVE-2025-31049

Deserialization of Untrusted Data vulnerability in themeton Dash allows Object Injection. This issue affects Dash: from n/a through 1.3...

CVE-2024-22291

Cross-Site Request Forgery CSRF vulnerability in Marco Milesi Browser Theme Color.This issue affects Browser Theme Color: from n/a through 1.3...

CVE-2023-25467

Cross-Site Request Forgery CSRF vulnerability in Daniel Mores, A. Huizinga Resize at Upload Plus plugin = 1.3 versions...

CVE-2025-27267

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in srcoley Random Quotes random-quotes allows Reflected XSS.This issue affects Random Quotes: from n/a through = 1.3...

Fez 1.32.0 RC1 - list.php SQL Injection

Fez 1.32.0 RC1 - list.php SQL Injection ------------------------------------------------------------------------------ Fez software Version 1.3 AND 2.0 RC1 list.php - SQL Injection Vulnerability http://sourceforge.net/projects/fez About:- Fez is an open source project to produce and maintain a...