CVE-2025-58802

Cross-Site Request Forgery CSRF vulnerability in michalzagdan TrustMate.io – WooCommerce integration trustmate-io-integration-for-woocommerce allows Cross Site Request Forgery.This issue affects TrustMate.io – WooCommerce integration: from n/a through = 1.16.0...

SUSE CVE-2025-46342

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to versions 1.13.5 and 1.14.0, it may happen that policy rules using namespace selectors in their match statements are mistakenly not applied during admission review request processing due to a missing error...

PT-2024-12479 · Unknown · Constant Contact Forms

Name of the Vulnerable Software and Affected Versions: Constant Contact Forms versions 1.14.0 through 2.0.3 Constant Contact Forms version prior to the latest version Description: The issue is related to a Missing Authorization vulnerability in Constant Contact Forms, allowing exploitation of...

BIT-CILIUM-2024-47825 CIDR deny policies may not take effect when a more narrow CIDR allow is present

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.14.0 and prior to versions 1.14.16 and 1.15.10, a policy rule denying a prefix that is broader than /32 may be ignored if there is a policy rule referencing a more narrow prefix CIDRSe...

PT-2024-32836 · Cilium +1 · Cilium +1

Name of the Vulnerable Software and Affected Versions: Cilium versions 1.14.0 through 1.14.15 Cilium versions 1.15.0 through 1.15.9 Description: A policy rule denying a prefix that is broader than /32 may be ignored if there is a policy rule referencing a more narrow prefix CIDRSet or toFQDN and...

csaf-walker (=0.1.0), did-webkey (=0.1.1) +17 more potentially affected by CVE-2024-58261 via sequoia-openpgp (>=1.14.0 <=1.17.0)

sequoia-openpgp CARGO version =1.14.0, =0.3.0, =0.25.0, =0.1.0, =0.30.0, =0.1.0, =0.1.0, =0.1.0, =0.26.0, =0.28.0 - sequoia-openpgp-mt =0.1.0 and more Source cves: CVE-2024-58261 Source advisory: OSV:RUSTSEC-2024-0345...

Eclipse Memory Analyzer Code Issue Vulnerability

Eclipse Memory Analyzer is a memory analysis tool from the Eclipse Foundation. A security vulnerability exists in Eclipse Memory Analyzer versions 0.7 through 1.14.0, which stems from not filtering reports on partial XML files...

egdrive (=0.1.3), ersilia (>=0.1.0 <=0.1.1) +5 more potentially affected by CVE-2023-49297 via pydrive2 (>=1.14.0 <=1.15.4)

pydrive2 PYPI version =1.14.0, =0.1.0, =0.0.0, =1.0.0, =1.0.0, =0.0.1, =0.0.3 Source cves: CVE-2023-49297 Source advisory: OSV:PYSEC-2023-291...

org.apache.nifi:nifi-kafka-connector-tests (>=1.14.0 <=1.23.2), org.apache.nifi:nifi-standard-nar (>=1.14.0 <=1.15.3) +4 more potentially affected by CVE-2023-49145 via org.apache.nifi:nifi-jolt-transform-json-ui (>=1.14.0 <=1.23.2)

org.apache.nifi:nifi-jolt-transform-json-ui MAVEN version =1.14.0, =1.14.0, =1.14.0, =1.15.0, =1.14.0, =1.23.2 - org.apache.plc4x:plc4j-nifi-plc4x-nar =0.10.0 - org.apache.plc4x:plc4j-nifi-plc4x-processors =0.10.0 Source cves: CVE-2023-49145 Source advisory: OSV:GHSA-68PR-6FJC-WMGM...

Zephyr Input Validation Error Vulnerability (CNVD-2020-35964)

Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. An input validation error vulnerability exists in the Bluetooth subsystem in Zephyr versions 2.2.0 and later and 1.14.0 and later. An attacker can exploit this vulnerability by sending consecutive...

CVE-2020-10068

In the Zephyr project Bluetooth subsystem, certain duplicate and back-to-back packets can cause incorrect behavior, resulting in a denial of service. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions...

dijit (>=1.14.0 <=1.14.5), dojox (>=1.14.0 <=1.14.5) potentially affected by CVE-2020-5258 via dojo (>=1.14.0 <=1.14.5)

dojo NPM version =1.14.0, =1.14.0, =1.14.0, =1.14.5 Source cves: CVE-2020-5258 Source advisory: SNYK:JS-DOJO-559224...