1495 matches found
BELL-CVE-2025-38403
Bulletin has no description...
BELL-CVE-2025-38458
Bulletin has no description...
CVE-2025-8101
Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' vulnerability in Linkify linkifyjs allows XSS Targeting HTML Attributes and Manipulating User-Controlled Variables.This issue affects Linkify: from 4.3.1 before 4.3.2...
WordPress Supreme Addons for Beaver Builder plugin <= 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via auto_qrcodesabb Shortcode vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via autoqrcodesabb Shortcode vulnerability discovered by Peter Thaleikis in WordPress Plugin Supreme Addons for Beaver Builder versions = 1.0.9...
PT-2025-30467
Name of the Vulnerable Software and Affected Versions: Ashlar-Vellum Graphite VC6 affected versions not specified Description: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. User interaction is required to exploit this...
WordPress Vchasno Kasa plugin <= 1.0.3 - Unauthenticated Log File Clearing vulnerability
Unauthenticated Log File Clearing vulnerability discovered by Poli in WordPress Plugin Vchasno Kasa versions = 1.0.3...
PT-2025-30144 · Phpgurukul · Phpgurukul Complaint Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Complaint Management System version 2.0 Description: A problematic issue exists in PHPGurukul Complaint Management System 2.0. The issue involves cross-site request forgery due to manipulation of an unknown function. This allows fo...
PYSEC-2025-69
In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker templates devel and responsive...
MINI-397Q-4GM9-85J6
Bulletin has no description...
PT-2025-29364 · Jinher Oa · Jinher Oa
Name of the Vulnerable Software and Affected Versions: Jinher OA version 1.0 Description: A problematic issue exists in Jinher OA version 1.0 related to an unknown functionality within the file /c6/Jhsoft.Web.message/ToolBar/DelTemp.aspx. This issue allows for XML External Entity XXE reference...
BELL-CVE-2025-38279
Bulletin has no description...
PT-2025-29298 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The reported issue has been rejected as not used. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...
PT-2025-29304 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The reported issue has been rejected as not used. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...
CVE-2025-7370
Rejected reason: Upon investigtion upstream maintainers discovered this was not a real issue. See the references for more details. See: https://gitlab.gnome.org/GNOME/libsoup/-/issues/430note2494090...
PT-2025-29108 · Zoom Video Communications · Zoom Clients For Windows
Name of the Vulnerable Software and Affected Versions: Zoom Clients for Windows affected versions not specified Description: A buffer overflow issue exists in certain Zoom Clients for Windows. This issue may allow an authorized user to cause a denial of service through network access...
PT-2025-28305 · Jhenggao · Ipublish System
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined, as the descriptions do not specify the software name and version. Description: The issue allows unauthenticated remote attackers to read arbitrary system files. Recommendations: At the moment, there is n...
BELL-CVE-2025-38200
Bulletin has no description...
BELL-CVE-2025-38124
Bulletin has no description...
BELL-CVE-2025-1220
Bulletin has no description...
CVE-2025-6926
Improper Authentication vulnerability in Wikimedia Foundation Mediawiki - CentralAuth Extension allows : Bypass Authentication.This issue affects Mediawiki - CentralAuth Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2...