EUVD-2026-32926

Hono: IP Restriction bypasses static deny rules for non-canonical IPv6...

CVE-2026-47674 Hono: IP Restriction bypasses static deny rules for non-canonical IPv6

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the ip-restriction middleware hono/ip-restriction compares incoming IP addresses against configured deny and allow rules using string equality after partial normalization. Non-canonical IPv6...

postgresql:12 security update

12.22-6.0.1 - Add backport of CVE-2025-8714 Orabug: 38667546 12.22-6 - Fix CVE-2026-2004 CVE-2026-2005 CVE-2026-2006 12.22-5 - Fix previous Backport 12.22-4 - Backport CVE-2025-8715 12.22-3 - Fix backport for CVE-2025-1094 12.22-2 - Backport fix for CVE-2025-1094 12.22-1 - Update to 12.22 - Fixes...

CVE-2025-32300

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Digital zoom studio DZS Video Gallery allows Reflected XSS.This issue affects DZS Video Gallery: from n/a through 12.25...

CVE-2025-32300

CVE-2025-32300 : Reflected XSS in WordPress plugin DZS Video Gallery (versions

CVE-2025-32300 WordPress DZS Video Gallery plugin <= 12.25 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Digital zoom studio DZS Video Gallery allows Reflected XSS.This issue affects DZS Video Gallery: from n/a through 12.25...

WordPress和WordPress plugin 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripti...

CVE-2025-47553 WordPress DZS Video Gallery plugin <= 12.25 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery: from n/a through 12.25...

CVE-2025-64052

An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to execute arbitrary system commands...

CVE-2025-50361

Buffer Overflow was found in SmallBASIC community SmallBASIC with SDL Before v1228, and commit sha:298a1d495355959db36451e90a0ac74bcc5593fe in the function main.cpp, which can lead to potential information leakage and crash...

postgresql security update

12.22-5.0.1 - Add backport of CVE-2025-8714 Orabug: 38667546 12.22-5 - Fix previous Backport 12.22-4 - Backport CVE-2025-8715 12.22-3 - Fix backport for CVE-2025-1094 12.22-2 - Backport fix for CVE-2025-1094 12.22-1 - Update to 12.22 - Fixes: CVE-2024-10976 CVE-2024-10978 12.20-1 - Update to 12.2...

CVE-2025-61690

KV STUDIO versions 12.23 and prior contain a buffer underflow vulnerability. If the product uses a specially crafted file, arbitrary code may be executed on the affected product...

Path Traversal (Arbitrary Write) in Jira Software Data Center and Server

This High severity Path Traversal Arbitrary Write vulnerability was introduced in versions: 9.12.0, 10.3.0 and remain present in 11.0.0 of Jira Software Data Center and Server. This Path Traversal Arbitrary Write vulnerability, with a CVSS Score of 8.7, allows an attacker to modify any filesystem...

CVE-2025-25683

creationtimestamp| type| source ---|---|--- 2025-03-12 16:41:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7336 2025-03-12 19:25:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lk7cpuykbf2w 2025-03-12 20:22:56+00:00| seen| https://t.me/cvedetector/20148 2025-08-13...

OpenText Operations Agent 安全漏洞

OpenText Operations Agent is a software from OpenText Canada that is used to manage and monitor OpenText products and solutions. A security vulnerability exists in OpenText Operations Agent, which is caused by improper input neutralization during web page generation and is susceptible to cross-si...

OpenText Operations Agent Security Vulnerability

OpenText Operations Agent is a software from OpenText Canada used to manage and monitor OpenText products and solutions. A security vulnerability exists in OpenText Operations Agent versions 12.15, 12.20 through 12.25. An attacker could exploit the vulnerability to escalate privileges...

NCP Secure Enterprise Client Security Vulnerability

NCP Secure Enterprise Client is a VPN Virtual Private Network client application from NCP Germany. A security vulnerability exists in NCP Secure Enterprise Client versions prior to 12.22, which stems from a vulnerability that allows an attacker to read operating system registry information by...

NCP Secure Enterprise Client Security Vulnerability

NCP Secure Enterprise Client is a VPN Virtual Private Network client application from NCP Germany. A security vulnerability exists in NCP Secure Enterprise Client versions prior to 12.22, which stems from a vulnerability that allows an attacker to read the contents of arbitrary files on the...

PT-2023-22018 · Ncp · Ncp Secure Enterprise Client

Name of the Vulnerable Software and Affected Versions: NCP Secure Enterprise Client versions prior to 12.22 Description: The issue allows attackers to read the contents of arbitrary files on the operating system by creating a symbolic link. This is related to the Support Assistant in the NCP Secu...

PT-2023-22017 · Ncp · Ncp Secure Enterprise Client

Name of the Vulnerable Software and Affected Versions: NCP Secure Enterprise Client versions prior to 12.22 Description: The issue allows attackers to delete arbitrary files on the operating system by creating a symbolic link. This is possible due to a flaw in the Support Assistant component of t...