CLSA-2025-1757663410 git: Fix of CVE-2024-50349

CVE-2024-50349: fix ANSI escape sequence vulnerability that occurs when asking for credentials interactively...

CVE-2025-9018

creationtimestamp| type| source ---|---|--- 2025-09-11 13:49:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lykvbis35s2c...

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2025-2019)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2017-0428

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the...

Linux Distros Unpatched Vulnerability : CVE-2025-37932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - schhtb: make htbqlennotify idempotent htbqlennotify always deactivates the HTB class and in fact could trigger a warning if it is already deactivated. Therefore...

Linux Distros Unpatched Vulnerability : CVE-2014-0022

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows...

CVE-2024-30025

creationtimestamp| type| source ---|---|--- 2025-08-27 21:18:34+00:00| seen| Telegram/EiVxjCGnvrRc6rTaTbzwJVaOkf7748jk4EeUkPydePD5k...

GHSA-PF6X-CJMP-QQQQ

creationtimestamp| type| source ---|---|--- 2025-08-27 17:26:00+00:00| seen| https://infosec.exchange/users/DarkWebInformer/statuses/115101896527557647...

CVE-2025-9502 Campcodes Online Loan Management System ajax.php sql injection

A weakness has been identified in Campcodes Online Loan Management System 1.0. This impacts an unknown function of the file /ajax.php?action=savepayment. Executing manipulation of the argument loanid can lead to sql injection. The attack may be launched remotely. The exploit has been made availab...

CVE-2025-6737

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions...

CVE-2025-9131

creationtimestamp| type| source ---|---|--- 2025-08-23 12:46:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lx2yuqonaq2t...

CVE-2022-45134

creationtimestamp| type| source ---|---|--- 2025-08-22 20:40:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwzcvzpnpz2u...

CVE-2025-21802

creationtimestamp| type| source ---|---|--- 2025-08-22 14:52:22+00:00| seen| MISP/24306fae-b16b-4478-9297-d2973cdb583c 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

WordPress Accessibility Checker by Equalize Digital Plugin <= 1.30.0 - Insecure Direct Object References (IDOR) Vulnerability

Insecure Direct Object References IDOR Vulnerability discovered by n0arafatn0 in WordPress Plugin Accessibility Checker by Equalize Digital versions = 1.30.0...

Delta Electronics DIAEnergie Cross-Site Scripting Vulnerability (CNVD-2025-22956)

Delta Electronics DIAEnergie is an industrial energy management system from Delta Electronics China for monitoring and analyzing energy consumption in real time, calculating energy consumption and load characteristics, optimizing equipment performance, improving production processes and maximizin...

WordPress Spacious Theme <= 1.9.11 is vulnerable to Broken Access Control

Software Spacious Type Theme Vulnerable versions = 1.9.11 Fixed in 1.9.12 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2025-9331 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID bca30fd3c674 Credits Dmitrii Ignatyev Required privilege...

CVE-2025-57754

creationtimestamp| type| source ---|---|--- 2025-08-21 18:18:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwwkjgkgq227 2025-08-22 06:03:49+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lwxrw3cuim24...

Hostel Management System hostel_manage.exe file improper authentication vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from an improper authentication vulnerability that originates from a misbehavior of the file hostelmanage.exe that results in improper authentication, no details of the vulnerability are available at this tim...

CVE-2025-38554

In the Linux kernel, the following vulnerability has been resolved: mm: fix a UAF when vma-mm is freed after vma-vmrefcnt got dropped By inducing delays in the right places, Jann Horn created a reproducer for a hard to hit UAF issue that became possible after VMAs were allowed to be recycled by...

Linux Distros Unpatched Vulnerability : CVE-2022-32792

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, watchOS 8.7, tvOS 15.6, macOS Monter...