Exploit for Code Injection in Apache Commons_Text

ICT287-CVE-202...

EUVD-2026-3376

ipTIME routers A2003NS-MU 10.00.6 to 12.16.2 , N600 10.00.8 to 12.16.2, A604-V3 10.01.6 to 10.07.2, A6ns-M 10.01.6 to 14.19.4 , V508 10.02.2 to 10.06.4, N704QCA 10.02.4 to 12.16.2, A8ns-M 10.03.2 to 14.19.4, A304 10.05.4 to 10.07.4, A3004NS-M,A5004NS-M,A9004M 10.05.4 to 14.19.4, N702R 10.05.8 to...

EUVD-2025-37816

The MelAbu WP Download Counter Button WordPress plugin through 1.8.6.7 does not validate the path of files to be downloaded, which could allow unauthenticated attacker to read/download arbitrary files...

PT-2025-2624 · Hcl · Hcl Myxalytics

Name of the Vulnerable Software and Affected Versions: HCL MyXalytics affected versions not specified Description: The issue allows a malicious user to perform enumeration of application users, compiling a list of valid usernames through a username enumeration vulnerability. Recommendations: At t...

BELL-CVE-2024-44941

Bulletin has no description...

Multiple vulnerabilities fixed in Microsoft Office

Microsoft has fixed vulnerabilities in Office products. The vulnerabilities allow a malicious person to carry out attacks execute attacks that lead to the following categories of damage: Executing arbitrary code User privileges. Impersonating another user Below is a summary of the various...

PT-2021-7950 · Microsoft +3 · Visual Studio +5

Name of the Vulnerable Software and Affected Versions: .NET Core versions 2.1 through 5.0 .NET 5.0 versions prior to 5.0.9 .NET Core 3.1 versions prior to 3.1.18 .NET Core 2.1 versions prior to 2.1.29 Description: The issue is related to an information disclosure vulnerability in .NET Core and...

PT-2020-12449 · Dovecot +7 · Dovecot +7

Name of the Vulnerable Software and Affected Versions: Dovecot versions prior to 2.3.10.1 Description: A crafted SMTP/LMTP message can trigger an unauthenticated use-after-free bug in submission-login, submission, or lmtp, leading to a crash under circumstances involving many newlines after a...