CVE Alert: CVE-2024-42699
Vulnerability Summary: CVE-2024-42699 Cross Site Scripting vulnerability in Create/Modify article function in Alkacon OpenCMS 17.0 allows remote attacker to inject...
Vulnerabilities
CVE Alert: CVE-2025-28121
Vulnerability Summary: CVE-2025-28121 code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) in feedback.php via the...
CVE Alert: CVE-2025-29659
Vulnerability Summary: CVE-2025-29659 Yi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command Execution via the "cmd_listen" function located in the...
CVE Alert: CVE-2025-29287
Vulnerability Summary: CVE-2025-29287 An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary...
CVE Alert: CVE-2025-29660
Vulnerability Summary: CVE-2025-29660 A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP...
CVE Alert: CVE-2025-28367
Vulnerability Summary: CVE-2025-28367 mojoPortal
CVE Alert: CVE-2025-32793
Vulnerability Summary: CVE-2025-32793 Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.15.0 to 1.15.15, 1.16.0...
CVE Alert: CVE-2025-3857
Vulnerability Summary: CVE-2025-3857 When reading binary Ion data through Amazon.IonDotnet using the RawBinaryReader class, Amazon.IonDotnet does not check the number...
CVE Alert: CVE-2025-28102
Vulnerability Summary: CVE-2025-28102 A cross-site scripting (XSS) vulnerability in flaskBlog v2.6.1 allows attackers to execute arbitrary web scripts or HTML...
CVE Alert: CVE-2025-43922
Vulnerability Summary: CVE-2025-43922 The FileWave Windows client before 16.0.0, in some non-default configurations, allows an unprivileged local user to escalate...
CVE Alert: CVE-2025-32956
Vulnerability Summary: CVE-2025-32956 ManageWiki is a MediaWiki extension allowing users to manage wikis. Versions before commit f504ed8, are vulnerable to...
CVE Alert: CVE-2025-3841
Vulnerability Summary: CVE-2025-3841 A vulnerability, which was classified as problematic, was found in wix-incubator jam up to e87a6fd85cf8fb5ff37b62b2d68f917219d07ae9. This affects...
CVE Alert: CVE-2025-32958
Vulnerability Summary: CVE-2025-32958 Adept is a language for general purpose programming. Prior to commit a1a41b7, the remoteBuild.yml workflow file uses...
CVE Alert: CVE-2025-23174
Vulnerability Summary: CVE-2025-23174 CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Affected Endpoints: No affected endpoints listed. Published Date:...
CVE Alert: CVE-2025-3842
Vulnerability Summary: CVE-2025-3842 A vulnerability was found in panhainan DS-Java 1.0 and classified as critical. This issue affects the function...
CVE Alert: CVE-2025-3846
Vulnerability Summary: CVE-2025-3846 A vulnerability was found in markparticle WebServer up to 1.0. It has been rated as critical. Affected...
CVE Alert: CVE-2025-3843
Vulnerability Summary: CVE-2025-3843 A vulnerability was found in panhainan DS-Java 1.0. It has been classified as problematic. Affected is an...
CVE Alert: CVE-2025-3847
Vulnerability Summary: CVE-2025-3847 A vulnerability classified as critical has been found in markparticle WebServer up to 1.0. This affects an...
CVE Alert: CVE-2025-32955
Vulnerability Summary: CVE-2025-32955 Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. Versions from...
CVE Alert: CVE-2025-3845
Vulnerability Summary: CVE-2025-3845 A vulnerability was found in markparticle WebServer up to 1.0. It has been declared as critical. Affected...
CVE Alert: CVE-2025-43921
Vulnerability Summary: CVE-2025-43921 GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to create lists via the...
CVE Alert: CVE-2025-43920
Vulnerability Summary: CVE-2025-43920 GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to execute arbitrary OS commands...
CVE Alert: CVE-2025-43928
Vulnerability Summary: CVE-2025-43928 In Infodraw Media Relay Service (MRS) 7.1.0.0, the MRS web server (on port 12654) allows reading arbitrary...
CVE Alert: CVE-2025-43919
Vulnerability Summary: CVE-2025-43919 GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to read arbitrary files via...
