EUVD-2025-3243

Malicious code in bioql PyPI...

DEBIAN-CVE-2025-39696

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: tas2781: Fix wrong reference of tasdevicepriv During the conversion to unify the calibration data management, the reference to tasdevicepriv was wrongly set to h-hdapriv instead of h-priv. This resulted in memory...

CVE-2025-23548

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bilal TAS Responsivity responsivity allows Reflected XSS.This issue affects Responsivity: from n/a through = 0.0.6...

CVE-2025-23548

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bilal TAS Responsivity responsivity allows Reflected XSS.This issue affects Responsivity: from n/a through = 0.0.6...

CVE-2025-23548 WordPress Responsivity plugin <= 0.0.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bilal TAS Responsivity responsivity allows Reflected XSS.This issue affects Responsivity: from n/a through = 0.0.6...

CVE-2025-23548 WordPress Responsivity plugin <= 0.0.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bilal TAS Responsivity responsivity allows Reflected XSS.This issue affects Responsivity: from n/a through = 0.0.6...

PT-2025-4935 · Unknown · Bilal Tas Responsivity

Name of the Vulnerable Software and Affected Versions: Bilal TAS Responsivity versions 0.0.0 through 0.0.6 Description: The issue is related to improper neutralization of input during web page generation, which allows Reflected XSS. This means that an attacker can inject malicious scripts into th...

Open5GS 安全漏洞

Open5GS is Open5GS open source an open source implementation of 5G Core and Epc in C, the core network of the Lte/Nr network. A denial of service vulnerability exists in Open5GS, which can be exploited to cause a denial of service by an attacker who sends an "S1SETUP request" message missing the...

tasgaming.net Cross Site Scripting vulnerability OBB-2705819

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Weak Password Vulnerability in TAS Management Console of Beijing Huayu Information Technology Co.

Ltd. is an intelligent information service company with software and information service as its main business. A weak password vulnerability exists in the TAS management console of Beijing Huayu Information Technology Co. Ltd, which can be exploited by attackers to obtain sensitive information...

VMware Response to Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

IMPORTANT See the Notes section if prior to April 6, 3 PM PST you have updated TAS or Ops Manager or you have applied workarounds to TAS, Ops Manager or TKGi. 1. Impacted Products VMware Tanzu Application Service for VMs TAS VMware Tanzu Operations Manager Ops Manager VMware Tanzu Kubernetes Grid...

VMware Response to Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

IMPORTANT See the Notes section if prior to April 6, 3 PM PST you have updated TAS or Ops Manager or you have applied workarounds to TAS, Ops Manager or TKGi. 1. Impacted Products VMware Tanzu Application Service for VMs TAS VMware Tanzu Operations Manager Ops Manager VMware Tanzu Kubernetes Grid...

tas-japan.net Improper Access Control vulnerability OBB-2207712

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2021-34375

Trusty contains a vulnerability in all trusted applications TAs where the stack cookie was not randomized, which might result in stack-based buffer overflow, leading to denial of service, escalation of privileges, and information disclosure...

CVE-2020-5426

Scheduler for TAS prior to version 1.4.0 was permitting plaintext transmission of UAA client token by sending it over a non-TLS connection. This also depended on the configuration of the MySQL server which is used to cache a UAA client token used by the service. If intercepted the token can give ...

Default configuration

Scheduler for TAS prior to version 1.4.0 was permitting plaintext transmission of UAA client token by sending it over a non-TLS connection. This also depended on the configuration of the MySQL server which is used to cache a UAA client token used by the service. If intercepted the token can give ...

CVE-2020-5426

CVE-2020-5426 affects the TAS Scheduler prior to version 1.4.0, which could transmit the UAA client token in plaintext over non-TLS connections. The risk is influenced by MySQL server configuration used to cache the token; interception could grant an attacker admin-level access in the cloud contr...

CVE-2020-5426 Scheduler for TAS can transmit privileged UAA token in plaintext

Scheduler for TAS prior to version 1.4.0 was permitting plaintext transmission of UAA client token by sending it over a non-TLS connection. This also depended on the configuration of the MySQL server which is used to cache a UAA client token used by the service. If intercepted the token can give ...

tas-helat.com Cross Site Scripting vulnerability OBB-1456455

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Memory Corruption Vulnerability in TAS AP-PCLINK setup V1.5

The AP series is a new generation of programmable controllers PLCs newly developed by TSMC. A memory corruption vulnerability exists in AP-PCLINK setup V1.5 of TAS. The vulnerability is caused due to AP-PCLINK failing to validate the availability of a pointer to a function when reading a malforme...