2834 matches found
[SECURITY] Fedora 42 Update: zeal-0.7.2-14.fc42
Zeal is a simple offline documentation browser inspired by Dash...
PT-2025-44259
Name of the Vulnerable Software and Affected Versions Evergreen Content Poster versions through 1.4.5 Description An authorization issue exists in Evergreen Content Poster, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Evergreen Content...
PT-2025-43841
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite allows Stored XSS.This issue affects NextMove Lite: from n/a through = 2.21.0...
CVE-2025-54966
An issue was discovered in BAE SOCET GXP before 4.6.0.2. Some endpoints on the SOCET GXP Job Status Service may return sensitive information in certain situations, including local file paths and SOCET GXP version information...
CVE-2025-55096 Inadequate bounds check and potential underflow in _ux_host_class_hid_report_descriptor_get()
In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclasshidreportdescriptorget when parsing a descriptor of an USB HID device...
Siemens SINEC NMS
SUMMARY SINEC NMS is affected by SQL injection vulnerability that could allow an authenticated low privileged attacker to exploit by inserting malicious data and achieve privilege escalation. Siemens has released a new version for SINEC NMS and recommends to update to the latest version. 2...
PT-2025-41587
Name of the Vulnerable Software and Affected Versions JeeWMS version 20250820 Description An arbitrary file upload issue exists due to insufficient file validation within the saveFiles function located at the /jeewms/cgUploadController.do endpoint. An attacker with standard user privileges can...
CVE-2025-60868
The CVE-2025-60868 entry concerns the Alt Redirect 1.6.3 addon for Statamic. The vulnerability arises from incomplete query string parameter cleanup when the Query String Strip option is enabled: case variations, encoded keys, and duplicate parameters are not consistently removed, potentially ena...
PT-2025-41491
Name of the Vulnerable Software and Affected Versions Confidential Containers Trustee versions prior to 0.15.0 Description The Confidential Containers Trustee project, which includes tools for attesting confidential guests and providing secrets, had a flaw in the attestation-policy endpoint. Befo...
CVE-2025-60316
CVE-2025-60316 affects SourceCodester Pet Grooming Management Software 1.0. The vulnerability is an SQL injection in the admin/view_customer.php script via the ID parameter, caused by improper handling of input. Impact includes potential unauthorized data access or modification. Public documents ...
CVE-2025-61524
An issue in the permission verification module and organization/application editing interface in Casdoor v2.26.0 and before, and fixed in v.2.63.0, allows remote authenticated administrators of any organization within the system to bypass the system's permission verification mechanism by directly...
EUVD-2019-14949
Malware in sbrugna...
EUVD-2020-28651
Malware in sbrugna...
EUVD-2018-3209
Malware in sbrugna...
EUVD-1999-0780
Malware in sbrugna...
EUVD-2017-9722
Malware in sbrugna...
EUVD-2021-15612
Malware in sbrugna...
EUVD-2021-10255
Malware in sbrugna...
EUVD-2009-4754
Malware in sbrugna...
EUVD-2021-1244
Malware in sbrugna...