CVE Alert: CVE-2025-50367
Vulnerability Summary: CVE-2025-50367 A stored blind XSS vulnerability exists in the Contact Page of the Phpgurukul Medical Card Generation System...
Vulnerabilities
CVE Alert: CVE-2024-12143
Vulnerability Summary: CVE-2024-12143 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mobilteg Mobile Informatics...
CVE Alert: CVE-2025-50369
Vulnerability Summary: CVE-2025-50369 A Cross-Site Request Forgery (CSRF) vulnerability exists in the Manage Card functionality (/mcgs/admin/manage-card.php) of PHPGurukul Medical Card...
CVE Alert: CVE-2025-53093
Vulnerability Summary: CVE-2025-53093 TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Starting in version 3.0.0 and...
CVE Alert: CVE-2025-5310
Vulnerability Summary: CVE-2025-5310 Dover Fueling Solutions ProGauge MagLink LX Consoles expose an undocumented and unauthenticated target communication framework (TCF) interface...
CVE Alert: CVE-2025-6521
Vulnerability Summary: CVE-2025-6521 During the initial setup of the device the user connects to an access point broadcast by the...
CVE Alert: CVE-2025-52207
Vulnerability Summary: CVE-2025-52207 PBXCoreREST/Controllers/Files/PostController.php in MikoPBX through 2024.1.114 allows uploading a PHP script to an arbitrary directory. Affected Endpoints: No...
CVE Alert: CVE-2025-6522
Vulnerability Summary: CVE-2025-6522 Unauthenticated users on an adjacent network with the Sight Bulb Pro can run shell commands as root...
CVE Alert: CVE-2025-6776
Vulnerability Summary: CVE-2025-6776 A vulnerability classified as critical was found in xiaoyunjie openvpn-cms-flask up to 1.2.7. This vulnerability affects the...
CVE Alert: CVE-2025-6774
Vulnerability Summary: CVE-2025-6774 A vulnerability was found in gooaclok819 sublinkX up to 1.8. It has been rated as critical. Affected...
CVE Alert: CVE-2025-6775
Vulnerability Summary: CVE-2025-6775 A vulnerability classified as critical has been found in xiaoyunjie openvpn-cms-flask up to 1.2.7. This affects the...
CVE Alert: CVE-2025-6773
Vulnerability Summary: CVE-2025-6773 A vulnerability was found in HKUDS LightRAG up to 1.3.8. It has been declared as critical. Affected...
CVE Alert: CVE-2025-6772
Vulnerability Summary: CVE-2025-6772 A vulnerability was found in eosphoros-ai db-gpt up to 0.7.2. It has been classified as critical. Affected...
CVE Alert: CVE-2025-53098
Vulnerability Summary: CVE-2025-53098 Roo Code is an AI-powered autonomous coding agent. The project-specific MCP configuration for the Roo Code agent...
CVE Alert: CVE-2024-36347
Vulnerability Summary: CVE-2024-36347 Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator...
CVE Alert: CVE-2025-6777
Vulnerability Summary: CVE-2025-6777 A vulnerability, which was classified as critical, has been found in code-projects Food Distributor Site 1.0. This...
CVE Alert: CVE-2025-6778
Vulnerability Summary: CVE-2025-6778 A vulnerability, which was classified as problematic, was found in code-projects Food Distributor Site 1.0. Affected is...
CVE Alert: CVE-2025-53097
Vulnerability Summary: CVE-2025-53097 Roo Code is an AI-powered autonomous coding agent. Prior to version 3.20.3, there was an issue where...
CVE Alert: CVE-2025-48922
Vulnerability Summary: CVE-2025-48922 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal GLightbox allows Cross-Site Scripting...
CVE Alert: CVE-2025-48921
Vulnerability Summary: CVE-2025-48921 Cross-Site Request Forgery (CSRF) vulnerability in Drupal Open Social allows Cross Site Request Forgery.This issue affects Open...
CVE Alert: CVE-2025-52573
Vulnerability Summary: CVE-2025-52573 iOS Simulator MCP Server (ios-simulator-mcp) is a Model Context Protocol (MCP) server for interacting with iOS simulators....
CVE Alert: CVE-2025-5966
Vulnerability Summary: CVE-2025-5966 Zohocorp ManageEngine Exchange reporter Plus version 5722 and below are vulnerable to Stored XSS in the Attachments...
CVE Alert: CVE-2025-48923
Vulnerability Summary: CVE-2025-48923 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Toc.Js allows Cross-Site Scripting...
CVE Alert: CVE-2025-6677
Vulnerability Summary: CVE-2025-6677 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Paragraphs table allows Cross-Site...
