CVE-2026-10228

A vulnerability was found in raisulislamg4 studentmanagementsystembyphp up to 310d950e09013d5133c6b9210aff9444382d16d1. The impacted element is an unknown function of the file admissionformcheck.php. The manipulation of the argument Message results in cross site scripting. The attack can be...

CVE-2026-10529

A weakness has been identified in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is an unknown function of the file src/main/java/com/zhiliao/module/web/system/ScheduleJobController.java of the component Task Scheduling Management Module. Executing a manipulation can...

[SECURITY] Fedora 43 Update: libpng12-1.2.57-25.fc43

The libpng12 package provides libpng 1.2, an older version of the libpng library for manipulating PNG Portable Network Graphics image format files. This version should be used only if you are unable to use the current version of libpng...

Arbitrary File Upload

Overview Affected versions of this package are vulnerable to Arbitrary File Upload. An attacker can introduce unauthorized files with arbitrary content by providing a specially crafted archive that bypasses pre-extraction inspection mechanisms. Workaround This vulnerability can be mitigated by...

WordPress Pinterest Automatic Pin plugin <= 4.19.0 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Anhchangmutrang in WordPress Plugin Pinterest Automatic Pin versions = 4.19.0...

WordPress AT Internet SmartTag plugin <= 0.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Mika in WordPress Plugin AT Internet SmartTag versions = 0.2...

PT-2025-8935 · Trivision · Camera Nc227Wf

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A security issue exists in the transmission of passwords through query strings, potentially exposing confidential information to third parties. Recommendations: At the moment, there is no...

PT-2025-8927 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

PT-2025-7726 · Unknown · Erima Zarinpal Donate

Name of the Vulnerable Software and Affected Versions: Erima Zarinpal Donate versions 1.0 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability, which allows for Cross Site Request Forgery. Recommendations: For Erima Zarinpal Donate versions 1.0 and...

PT-2025-3018 · Unknown · Ability Module

Name of the Vulnerable Software and Affected Versions: Ability module affected versions not specified Description: The issue is related to a startup control vulnerability in the ability module. Successful exploitation of this vulnerability may cause features to perform abnormally. There is no...

PT-2024-30029 · Unknown · School Management System

Name of the Vulnerable Software and Affected Versions: School Management System affected versions not specified Description: The issue is related to a SQL injection vulnerability. It occurs via the medium parameter at the "paidclass.php" endpoint. There is no information provided about the...

PT-2024-13353 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The issue was initially discovered and potentially associated with a specific identifier, but details about the issue itself, such as its nature...

PT-2024-40959 · Gtk-Rs · Gtk-Rs

Name of the Vulnerable Software and Affected Versions: gtk-rs affected versions not specified Description: The gtk-rs GTK3 bindings are no longer maintained. The maintainers have archived the repository and added a note to the crate description and its README.md that the crates are no longer...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow when the ReadHuffmanCodes function is used. An attacker can craft a special WebP lossless file that triggers the ReadHuffmanCodes function to allocate the HuffmanCode buffer with a size that comes from an arra...

PT-2023-20644 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue is related to the integrated oAuth Authorization Service, where functions with insufficient randomness were used to generate authorization tokens. This made authorization codes...

PT-2023-36146 · Unknown · S390-Tools

Name of the Vulnerable Software and Affected Versions: s390-tools affected versions not specified Description: The issue is related to the secure boot key. The package has been rebuilt with a new secure boot key. Recommendations: At the moment, there is no information about a newer version that...

PT-2020-16636 · Google +1 · Android Kernel +1

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue concerns the Android kernel. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where th...

PT-2020-5224 · Microsoft · Exchange Server

Name of the Vulnerable Software and Affected Versions: Microsoft Exchange affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft Exchange Server. It allows a remote attacker to execute arbitrary code. Recommendations: At the moment,...

PT-2017-11665 · Ibm · Ibm Jazz Foundation

Name of the Vulnerable Software and Affected Versions: IBM Jazz Foundation affected versions not specified Description: The issue could expose potentially sensitive information to authenticated users through stack trace error conditions. Recommendations: At the moment, there is no information abo...

PT-2016-5858 · Red Hat · Red Hat

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The issue is related to a security problem, but details are not provided. Recommendations: At the moment, there is no information about a newer...