1321 matches found
CVE-2026-26378
Cross Site Scripting vulnerability in Koha 25.11 and before allows a remote attacker to execute arbitrary code via file upload function in Invoice features...
ROOT-OS-UBUNTU-2404-CVE-2025-38239 CVE-2025-38239 in rootio-linux - Patched by Root
Root has patched CVE-2025-38239 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2404-CVE-2026-43187 CVE-2026-43187 in rootio-linux - Patched by Root
Root has patched CVE-2026-43187 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2404-CVE-2025-71079 CVE-2025-71079 in rootio-linux - Patched by Root
Root has patched CVE-2025-71079 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2404-CVE-2025-38153 CVE-2025-38153 in rootio-linux - Patched by Root
Root has patched CVE-2025-38153 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
CVE-2025-60485
A segmentation violation in the gfisomapplesettagex function /isomedia/isomwrite.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...
CVE-2026-10154 Dolibarr ERP CRM messaging.php authorization
A vulnerability has been found in Dolibarr ERP CRM 23.0.0/23.0.1/23.0.2. The affected element is an unknown function of the file htdocs/user/messaging.php. Such manipulation of the argument ID leads to authorization bypass. The attack can be executed remotely. Upgrading to version 23.0.3 is...
CVE-2026-47694
WWBN AVideo is an open source video platform. In 29.0 and earlier, AVideo stores category descriptions from user input and later renders categorydescription as raw HTML in the Gallery view. A user who can create or edit categories can store JavaScript in a category description, which executes whe...
CVE-2026-37713
An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/class/commonobject.class.php...
Dolibarr ERP/CRM 安全漏洞
Dolibarr ERP/CRM is a web-based enterprise resource planning ERP and customer relationship management CRM system developed by the Dolibarr Foundation in France. This system can be used to manage products, inventory, invoices, orders, etc. Versions of Dolibarr ERP/CRM from 22.0.0 to 22.0.4, as wel...
Dolibarr ERP/CRM 安全漏洞
Dolibarr ERP/CRM is a web-based enterprise resource planning ERP and customer relationship management CRM system developed by the Dolibarr Foundation in France. This system can be used to manage products, inventory, invoices, orders, etc. Versions of Dolibarr ERP/CRM from 22.0.0 to 22.0.4, as wel...
ROOT-OS-UBUNTU-2204-CVE-2024-26740 CVE-2024-26740 in rootio-linux - Patched by Root
Root has patched CVE-2024-26740 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2025-37852 CVE-2025-37852 in rootio-linux - Patched by Root
Root has patched CVE-2025-37852 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2025-39823 CVE-2025-39823 in rootio-linux - Patched by Root
Root has patched CVE-2025-39823 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2025-23151 CVE-2025-23151 in rootio-linux - Patched by Root
Root has patched CVE-2025-23151 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2025-38340 CVE-2025-38340 in rootio-linux - Patched by Root
Root has patched CVE-2025-38340 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2026-43213 CVE-2026-43213 in rootio-linux - Patched by Root
Root has patched CVE-2026-43213 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2025-38705 CVE-2025-38705 in rootio-linux - Patched by Root
Root has patched CVE-2025-38705 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
CVE-2025-45145
Directory traversal in Follett Software's Destiny Library Manager 2202rc1 and fixed in v.22.5 AU1 allows remote attackers to read arbitrary system and application files via the image parameter...
MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability
Summary A heap-based buffer overflow vulnerability exists in the LXF element parsing functionality of MediaInfoLib versions: 26.01. A specially crafted .lxf file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability. Confirmed Vulnerable...