GetPDB (>=0.1.0 <=1.0.1), IMAPServer (=0.1.0) +3184 more potentially affected by unknown CVE via tokio-sync (>=0.1.8 <=0.2.0-alpha.6)

tokio-sync CARGO version =0.1.8, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.5.3, =0.2.1, =0.1.0, =0.1.0, =0.1.0, =0.9.1 - acme-lib-load-order =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0052...

ROS-20251113-01

A vulnerability in the Omnibox component of the Google Chrome and Microsoft Edge browsers is related to writing outside the boundaries of the buffer. Exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges A vulnerability in the Safe Browsing compone...

WordPress KiotViet Sync plugin <= 1.8.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin KiotViet Sync versions = 1.8.5...

Microsoft Edge (Chromium) < 141.0.3537.71 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 141.0.3537.71. It is, therefore, affected by multiple vulnerabilities as referenced in the October 9, 2025 advisory. - Use after free in Storage. CVE-2025-11460 - Heap buffer overflow in Sync. CVE-2025-11458 Note that...

GHSA-VG2R-RMGP-CGQJ Deno's --deny-write check does not prevent permission bypass

Summary Deno.FsFile.prototype.utime and Deno.FsFile.prototype.utimeSync are not limited by the permission model check --deny-write=./. It's possible to change to change the access atime and modification mtime times on the file stream resource even when the file is opened with read only permission...

EUVD-2001-0963

Malware in sbrugna...

EUVD-2020-0446

Malware in sbrugna...

EUVD-2015-2934

Malware in sbrugna...

CVE-2022-37125

D-link DIR-816 A2v1.10CNB04.img is vulnerable to Command injection via /goform/NTPSyncWithHost...

CVE-2025-28892

CVE-2025-28892 concerns the WordPress plugin FTP Sync (themes/plugins: FTP Sync – Theme, Media & Plugin Files) with a CSRF to Stored XSS vulnerability in versions up to 1.1.6. The entry states the flaw enables a stored cross‑site scripting via CSRF, affecting the plugin, and lists a CVSSv3.1 base...

CVE-2024-31851

A path traversal vulnerability exists in the Java version of CData Sync 23.4.8843 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions...

CVE-2022-46807 WordPress Stock Sync for WooCommerce plugin <= 2.3.2 - Broken Access Control

Missing Authorization vulnerability in Lauri Karisola / WP Trio Stock Sync for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stock Sync for WooCommerce: from n/a through 2.3.2...

CVE-2009-5035

Technical details about CVE-2009-5035 are not publicly provided in the supplied documents. The available records only reiterate the vulnerability description; monitor for updates for affected products and fixes.