CVE-2026-3265

A vulnerability was identified in go2ismail Free-CRM up to b83c40a90726d5e58f0cc680ffdcaa28a03fb5d1. This affects an unknown part of the file /api/Security/ of the component Security API. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The...

PT-2025-34748

Name of the Vulnerable Software and Affected Versions: Delta Electronics COMMGR affected versions not specified Description: Delta Electronics COMMGR is susceptible to a stack-based buffer overflow. This issue poses a remote code execution RCE risk on Operational Technology OT systems. The...

PT-2025-6231 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about the issue. There is a mention of a rejected reason, but no further explanation is given...

PT-2025-4997 · Quotemedia · Quotemedia Tools

Name of the Vulnerable Software and Affected Versions: QuoteMedia Tools versions n/a through 1.0 Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This is a type of Cross-site Scripting attack. Recommendations: For...

PT-2024-12775 · Unknown · Averta Phlox Shop

Name of the Vulnerable Software and Affected Versions: Averta Phlox Shop versions n/a through 2.0.0 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion in Averta Phlox Shop...