PT-2025-41273

Name of the Vulnerable Software and Affected Versions Synapse versions prior to 1.138.3 Synapse version 1.139.0 Description Synapse is an open source Matrix homeserver implementation. Insufficient validation of device keys in affected versions allows an attacker registered on the victim homeserve...

EUVD-2023-29057

Malicious code in bioql PyPI...

PT-2025-30488

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 141 Firefox ESR versions prior to 140.1 Thunderbird versions prior to 141 Thunderbird versions prior to 140.1 Description Search terms could persist in the URL bar even after navigating away from the search page...

CVE-2025-3945

Improper Neutralization of Argument Delimiters in a Command 'Argument Injection' vulnerability in Tridium Niagara Framework on QNX, Tridium Niagara Enterprise Security on QNX allows Command Delimiters. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara...

CVE-2025-3937

Use of Password Hash With Insufficient Computational Effort vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Cryptanalysis. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niaga...

PT-2025-20885 · Checkmk · Checkmk

Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.4.0b7 beta Checkmk versions prior to 2.3.0p32 Checkmk versions prior to 2.2.0p42 Checkmk version 2.1.0p49 Description: The issue allows a user with write access to the JAVA HOME/bin directory to escalate privileges...

PT-2025-20761 · Apple · Ipados +8

Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 11.5 macOS Sonoma versions prior to 14.7.6 tvOS versions prior to 18.5 iPadOS versions prior to 17.7.7 iOS versions prior to 18.5 iPadOS versions prior to 18.5 macOS Sequoia versions prior to 15.5 visionOS versions...

PT-2025-13945 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.5 macOS versions prior to 14.7.5 macOS versions prior to 15.4 Description: A buffer overflow issue was addressed with improved bounds checking. This issue may allow an app to cause unexpected system termination...

PT-2025-13837 · Drupal · Drupal

Name of the Vulnerable Software and Affected Versions: Drupal core versions 8.0.0 through 10.3.12 Drupal core versions 10.4.0 through 10.4.2 Drupal core versions 11.0.0 through 11.0.11 Drupal core versions 11.1.0 through 11.1.2 Description: The issue is related to an Incorrect Authorization...

PT-2025-14003 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.5 macOS versions prior to 14.7.5 macOS versions prior to 15.4 Description: A race condition was addressed with additional validation. This issue allows an app to potentially bypass Privacy preferences...

PT-2025-9140 · Syspass · Syspass

Name of the Vulnerable Software and Affected Versions: Syspass versions 3.2.x Description: The account file upload functionality in Syspass fails to properly handle special characters in filenames, leading to the disclosure of the web application's source code and exposing sensitive information...

PT-2025-9034 · Infoblox · Infoblox Nios

Name of the Vulnerable Software and Affected Versions: Infoblox NIOS versions 8.6.4 and earlier, 9.x through 9.0.3 Description: The issue is related to improper input validation. Recommendations: For Infoblox NIOS versions 8.6.4 and earlier, update to a version later than 8.6.4. For Infoblox NIOS...

PT-2025-6504 · Lexmark · Lexmark International Xc

Name of the Vulnerable Software and Affected Versions: Lexmark International CX, XC, CS, et. Al. versions 001.001:0 through 081.231 Lexmark International CX, XC, CS, et. Al. versions ..P001 through ..P233 Lexmark International CX, XC, CS, et. Al. versions ..P001 through ..P759 Lexmark Internation...

PT-2025-2061 · Unknown · Kurniaramadhan E-Commerce-Php

Name of the Vulnerable Software and Affected Versions: kurniaramadhan E-Commerce-PHP version 1.0 Description: A vulnerability was found in the software, classified as problematic. It affects an unknown function, leading to cross-site request forgery. The attack can be launched remotely. The vendo...

PT-2024-1805

Name of the Vulnerable Software and Affected Versions pgjdbc versions prior to 42.7.2 pgjdbc versions prior to 42.6.1 pgjdbc versions prior to 42.5.5 pgjdbc versions prior to 42.4.4 pgjdbc versions prior to 42.3.9 pgjdbc versions prior to 42.2.28 Description The PostgreSQL JDBC Driver has a SQL...

PT-2023-31548 · Unknown · Zedpro For Windows +4

Name of the Vulnerable Software and Affected Versions: ZED! for Windows versions before Q.2020.3 through Q.2021.2 ZONECENTRAL for Windows versions before Q.2021.2 through 2023.5 ZEDMAIL for Windows version 2023.5 and earlier ZED! for Windows, Mac, Linux version 2023.5 and earlier ZEDFREE for...

PT-2023-28965 · Unknown · Wrc-X3000Gs2A-B +1

Name of the Vulnerable Software and Affected Versions: WRC-X3000GS2-W versions 1.05 and earlier WRC-X3000GS2-B versions 1.05 and earlier WRC-X3000GS2A-B versions 1.05 and earlier Description: The issue allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a...

PT-2023-6136 · Unknown +1 · Open Babel +1

Name of the Vulnerable Software and Affected Versions: Open Babel versions 3.1.1 and prior Description: The issue is related to the nAtoms functionality in the ORCA format of Open Babel, which is associated with an out-of-bounds write operation in memory. This can be exploited by a remote attacke...

PT-2023-16945 · Amazon +1 · Amazon Fire Tv Stick +1

Name of the Vulnerable Software and Affected Versions: Amazon Fire TV Stick 3rd gen versions prior to 6.2.9.5 Insignia TV with FireOS versions prior to 7.6.3.3 Description: An issue with the exchangeDeviceServices function on the amzn.dmgr service allowed an attacker to register services that are...

PT-2023-6697 · Ibm · Ibm Db2

Name of the Vulnerable Software and Affected Versions: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 10.5, 11.1, and 11.5 Description: The issue is related to insufficient access control in the database management system, which may allow a remote attacker to execute...