CVE Alert: CVE-2024-10253
Vulnerability Summary: CVE-2024-10253 A potential TOCTOU vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo App Store that could...
Vulnerabilities
CVE Alert: CVE-2025-21136
Vulnerability Summary: CVE-2025-21136 Substance3D - Designer versions 14.0 and earlier are affected by an out-of-bounds write vulnerability that could result...
CVE Alert: CVE-2025-23019
Vulnerability Summary: CVE-2025-23019 IPv6-in-IPv4 tunneling (RFC 4213) allows an attacker to spoof and route traffic via an exposed network interface....
CVE Alert: CVE-2025-21137
Vulnerability Summary: CVE-2025-21137 Substance3D - Designer versions 14.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could...
CVE Alert: CVE-2024-47605
Vulnerability Summary: CVE-2024-47605 silverstripe-asset-admin is a silverstripe assets gallery for asset management. When using the "insert media" functionality, the linked...
CVE Alert: CVE-2024-45102
Vulnerability Summary: CVE-2024-45102 A privilege escalation vulnerability was discovered that could allow a valid, authenticated LXCA user to escalate their...
CVE Alert: CVE-2024-54142
Vulnerability Summary: CVE-2024-54142 Discourse AI is a Discourse plugin which provides a number of AI features. When sharing Discourse AI...
CVE Alert: CVE-2024-53277
Vulnerability Summary: CVE-2024-53277 Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. In some cases, form messages can...
CVE Alert: CVE-2024-10254
Vulnerability Summary: CVE-2024-10254 A potential buffer overflow vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo App Store that...
CVE Alert: CVE-2024-56065
Vulnerability Summary: CVE-2024-56065 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saleswonder.biz Team WP2LEADS allows Reflected...
CVE Alert: CVE-2024-52938
Vulnerability Summary: CVE-2024-52938 Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware...
CVE Alert: CVE-2025-22499
Vulnerability Summary: CVE-2025-22499 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FAKTOR VIER F4 Post Tree...
CVE Alert: CVE-2024-56301
Vulnerability Summary: CVE-2024-56301 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eniture Technology Distance Based Shipping...
CVE Alert: CVE-2025-22828
Vulnerability Summary: CVE-2025-22828 CloudStack users can add and read comments (annotations) on resources they are authorised to access. Due to...
CVE Alert: CVE-2025-22337
Vulnerability Summary: CVE-2025-22337 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Infosoft Consultant Order Audit Log...
CVE Alert: CVE-2025-22498
Vulnerability Summary: CVE-2025-22498 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in New Normal LLC LucidLMS allows...
CVE Alert: CVE-2025-22570
Vulnerability Summary: CVE-2025-22570 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Miloš Đekić Inline Tweets allows...
CVE Alert: CVE-2025-22314
Vulnerability Summary: CVE-2025-22314 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Scripts Food Store –...
CVE Alert: CVE-2025-22344
Vulnerability Summary: CVE-2025-22344 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Convoy Media Category Library allows...
CVE Alert: CVE-2025-22514
Vulnerability Summary: CVE-2025-22514 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yamna Tatheer KNR Author List...
CVE Alert: CVE-2025-22569
Vulnerability Summary: CVE-2025-22569 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grandslambert Featured Page Widget allows...
CVE Alert: CVE-2025-22506
Vulnerability Summary: CVE-2025-22506 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SmartAgenda Smart Agenda allows Stored...
CVE Alert: CVE-2025-22567
Vulnerability Summary: CVE-2025-22567 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in trustist TRUSTist REVIEWer allows Reflected...
CVE Alert: CVE-2025-22568
Vulnerability Summary: CVE-2025-22568 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Paramveer Singh for Arete IT...
