EUVD-2026-33855

A weakness has been identified in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is an unknown function of the file src/main/java/com/zhiliao/module/web/system/ScheduleJobController.java of the component Task Scheduling Management Module. Executing a manipulation can...

CVE-2026-9453

A vulnerability was detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. This affects the function which of the file /src/application/skills-loader.ts of the component SkillsLoader. Performing a manipulation of the argument requires.bins results in command injection. T...

CVE-2026-25332

Missing Authorization vulnerability in Fahad Mahmood Endless Posts Navigation endless-posts-navigation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Endless Posts Navigation: from n/a through = 2.2.9...

EUVD-2026-4654

A vulnerability was found in iJason-Liu BooksManager up to 298ba736387ca37810466349af13a0fdf828e99c. This vulnerability affects unknown code of the file controllers/bookscenter/uploadbookCover.php. Performing a manipulation of the argument bookcover results in unrestricted upload. The attack may ...

CVE-2026-0574

A weakness has been identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function saveUserRole of the file warehouse\src\main\java\com\yeqifu\sys\controller\UserController.java of the component Request Handler. This manipulation causes improper...

PT-2025-46692

Name of the Vulnerable Software and Affected Versions Lenovo Scanner Pro client affected versions not specified Description An arbitrary file upload issue exists in the Lenovo Scanner Pro client. This could allow for remote code execution or unauthorized control of a system. Recommendations At th...

PT-2025-44193

Name of the Vulnerable Software and Affected Versions blog-vue-springboot affected versions not specified Description An issue exists that allows for the unauthorized modification of articles. Recommendations At the moment, there is no information about a newer version that contains a fix for thi...

PT-2025-32568

Name of the Vulnerable Software and Affected Versions: ABB Aspect affected versions not specified Description: A missing authentication issue exists for a critical function in ABB Aspect. This allows unauthorized access to sensitive functionality. Recommendations: At the moment, there is no...

PT-2025-32316

Name of the Vulnerable Software and Affected Versions: Azure Portal affected versions not specified Description: An elevation of privilege issue exists within the Azure Portal. This allows for unauthorized access and potential compromise of resources. Recommendations: At the moment, there is no...

PT-2025-29301 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The provided descriptions indicate an authentication bypass issue. The reason for rejection is stated as 'Not used'. Recommendations: At the moment, there is no information about a newer...

PT-2025-20329

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A potential NULL pointer dereference in the dev uevent function has been resolved. This issue occurs when userspace reads the "uevent" device attribute at the same time as another thread...

CVE-2024-56247

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AF themes WP Post Author allows SQL Injection.This issue affects WP Post Author: from n/a through 3.8.2...

PT-2024-32897 · Unknown · Smadar Sps

Name of the Vulnerable Software and Affected Versions: Smadar SPS affected versions not specified Description: The issue is related to the use of a broken or risky cryptographic algorithm, as identified by CWE-327. This could potentially lead to security risks due to the weakness in the...

PT-2024-17488 · Horner Automation · Cscape

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue occurs in the parsing of CSP files due to the lack of proper validation of user-supplied data. This could allow reading past the end of...

PT-2024-34908 · Sanjaysolutions · Sanjaysolutions Loginplus

Name of the Vulnerable Software and Affected Versions: Sanjaysolutions Loginplus versions 1.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations:...

PT-2024-16252 · Code Projects · Code-Projects Blood Bank Management

Name of the Vulnerable Software and Affected Versions: code-projects Blood Bank Management version 1.0 Description: A critical issue affects the processing of the file /file/accept.php, where the manipulation of the reqid argument leads to SQL injection. The attack can be initiated remotely...

PT-2024-29524 · Unknown · Siberiancms

Name of the Vulnerable Software and Affected Versions: SiberianCMS affected versions not specified Description: The issue is related to improper neutralization of special elements used in an SQL command, which can lead to SQL injection. This allows an attacker to inject malicious SQL code,...

PT-2024-19704 · Open Xchange Gmbh +1 · Ox App Suite +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: Maliciously crafted E-Mail attachment names could be used to temporarily execute script code in the context of the user's browser session. Common user...

PT-2024-23442 · Unknown · Paid Memberships Pro – Payfast Gateway Add On

Name of the Vulnerable Software and Affected Versions: Paid Memberships Pro – Payfast Gateway Add On versions n/a through 1.4.1 Description: The issue is related to the insertion of sensitive information into log files. This could potentially expose sensitive data. Recommendations: For Paid...

PT-2024-29736 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns a NULL pointer check in the Linux kernel's drm/xe/xe devcoredump module. Specifically, it involves checking if 'coredump' is not NULL before assigning 'xe devcoredum...