GHSA-373J-MHPF-84WG Janssen Config API returns results without scope verification

Impact What kind of vulnerability is it? Who is impacted? The configAPI is an internal service and hence should never be exposed to the internet. With that said, this is a serious vulnerability that has a large internal surface attack area that exposes all sorts of information from the IDP...

PT-2025-26988 · Unknown · Labredescefetrj Wegia

Name of the Vulnerable Software and Affected Versions: LabRedesCefetRJ WeGIA version 3.4.0 Description: A problematic vulnerability has been found in the Cadastro de Funcionário component, specifically affecting the /html/funcionario/cadastro funcionario.php file. The issue is related to the...

PT-2025-24425 · Redash · Redash

Name of the Vulnerable Software and Affected Versions: Redash versions up to 10.1.0/25.1.0 Description: A critical issue affects the run query function of the /query runner/python.py file in the getattr Handler component, leading to a sandbox issue. The exploit has been disclosed publicly and may...

CVE-2023-26471

XWiki Platform is a generic wiki platform. Starting in version 11.6-rc-1, comments are supposed to be executed with the right of superadmin but in restricted mode anything dangerous is disabled, but the async macro does not take into account the restricted mode. This means that any user with...

PT-2025-7097 · Dcmtk +2 · Dcmtk +2

Name of the Vulnerable Software and Affected Versions: DCMTK versions 3.6.9 and later Description: A NULL pointer dereference in the component /libsrc/dcrleccd.cc allows attackers to cause a Denial of Service DoS via a crafted DICOM file. Recommendations: For DCMTK versions 3.6.9 and later, as a...

PT-2025-4110 · Unknown · Itsourcecode Tailoring Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Tailoring Management System version 1.0 Description: A critical issue was found in the itsourcecode Tailoring Management System. This issue affects an unknown part of the file incview.php. The manipulation of the incid argument...

PT-2024-36741 · Amarjeet Amar · Gap-Hub-User-Role

Name of the Vulnerable Software and Affected Versions: Amarjeet Amar gap-hub-user-role versions 3.4.1 and earlier Description: A Cross-Site Request Forgery CSRF issue exists in Amarjeet Amar, allowing Authentication Bypass. Recommendations: For versions 3.4.1 and earlier, as a temporary workaroun...

PT-2024-8152 · Microsoft · Windows 11 +4

Name of the Vulnerable Software and Affected Versions: Windows Registry versions prior to the fixed version Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Registry, which can be exploited to gain elevated privileges on the system. This vulnerability is...

PT-2024-27177 · Libmodbus +3 · Libmodbus +3

Name of the Vulnerable Software and Affected Versions: libmodbus version 3.1.6 Description: A heap overflow issue was discovered via the modbus mapping free function. This issue affects libmodbus and can be exploited, but specific details about the number of potentially affected devices or...

PT-2023-29930 · Pypi · Pypdf

Name of the Vulnerable Software and Affected Versions: pypdf versions 3.7.0 through 3.16.4 Description: The issue allows an attacker to craft a PDF that leads to an infinite loop, blocking the current process and utilizing a single core of the CPU by 100%. This does not affect memory usage and ca...

PT-2023-15135 · Glibc +4 · Glibc +4

Name of the Vulnerable Software and Affected Versions: open-mpi hwloc version 2.1.0 Description: An issue was discovered in open-mpi hwloc that allows attackers to cause a denial of service or other unspecified impacts via glibc-cpuset in topology-linux.c. Recommendations: For open-mpi hwloc...

PT-2023-12211 · Dpic +1 · Dpic +1

Name of the Vulnerable Software and Affected Versions: dpic version 2021.04.10 Description: The issue is related to a use-after-free in the deleteStringBox function in dpic.y. Recommendations: For dpic version 2021.04.10, consider disabling the deleteStringBox function as a temporary workaround...

UBUNTU-CVE-2023-36464

pypdf is an open source, pure-python PDF library. In affected versions an attacker may craft a PDF which leads to an infinite loop if parsecontentstream is executed. That is, for example, the case if the user extracted text from such a PDF. This issue was introduced in pull request 969 and resolv...

CVE-2023-31129 Contiki-NG missing NULL pointer check in IPv6 neighbor discovery

The Contiki-NG operating system versions 4.8 and prior can be triggered to dereference a NULL pointer in the message handling code for IPv6 router solicitiations. Contiki-NG contains an implementation of IPv6 Neighbor Discovery ND in the module os/net/ipv6/uip-nd6.c. The ND protocol includes a...

CVE-2023-27585

PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.13 and prior affects applications that use PJSIP DNS resolver. It doesn't affect PJSIP users who do not utilise PJSIP DNS resolver. This vulnerability is related to...

PT-2019-13530 · Nevma · Nevma Adaptive Images

Name of the Vulnerable Software and Affected Versions: Nevma Adaptive Images plugin versions prior to 0.6.67 Description: The issue allows remote attackers to delete arbitrary files via the adaptive-images-settings parameter in adaptive-images-script.php. This is achieved by exploiting the...

PT-2017-16801 · Zziplib +2 · Zziplib +2

Name of the Vulnerable Software and Affected Versions: zziplib version 0.13.62 Description: The issue allows remote attackers to cause a denial of service, resulting in an invalid memory read and crash, via a crafted ZIP file. This is due to a problem in the zzip mem entry extra block function in...

S-plus /tmp usage

INTRODUCTION S-PLUS is a Statistical analysis, graphics and programming tool http://www.statsci.com/ http://www.insightful.com/ PROBLEM As installed on UNIX machines, Splus uses files in /tmp in an unsafe way. DETAILS The main Sqpe binary, and various shell script modules, use files in /tmp:...