CVE Alert: CVE-2025-2150
Vulnerability Summary: CVE-2025-2150 The C&Cm@il from HGiga has a Stored Cross-Site Scripting (XSS) vulnerability, allowing remote attackers with regular privileges...
Vulnerabilities
CVE Alert: CVE-2025-27257
Vulnerability Summary: CVE-2025-27257 Insufficient Verification of Data Authenticity vulnerability in GE Vernova UR IED family devices allows an authenticated user...
CVE Alert: CVE-2025-27253
Vulnerability Summary: CVE-2025-27253 An improper input validation in GE Vernova UR IED family devices from version 7.0 up to 8.60...
CVE Alert: CVE-2025-27256
Vulnerability Summary: CVE-2025-27256 Missing Authentication for Critical Function vulnerability in GE Vernova Enervista UR Setup application allows Authentication Bypass due...
CVE Alert: CVE-2025-27255
Vulnerability Summary: CVE-2025-27255 Use of Hard-coded Credentials vulnerability in GE Vernova EnerVista UR Setup allows Privilege Escalation. The local user...
CVE Alert: CVE-2025-24387
Vulnerability Summary: CVE-2025-24387 A vulnerability in OTRS Application Server allows session hijacking due to missing attributes for sensitive cookie settings...
CVE Alert: CVE-2025-27254
Vulnerability Summary: CVE-2025-27254 Improper Authentication vulnerability in GE Vernova EnerVista UR Setup allows Authentication Bypass. The software's startup authentication can...
CVE Alert: CVE-2024-13918
Vulnerability Summary: CVE-2024-13918 The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an...
CVE Alert: CVE-2024-13919
Vulnerability Summary: CVE-2024-13919 The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an...
CVE Alert: CVE-2025-2147
Vulnerability Summary: CVE-2025-2147 A vulnerability was found in Beijing Zhide Intelligent Internet Technology Modern Farm Digital Integrated Management System 1.0....
CVE Alert: CVE-2025-2153
Vulnerability Summary: CVE-2025-2153 A vulnerability, which was classified as critical, was found in HDF5 1.14.6. Affected is the function H5SM_delete...
CVE Alert: CVE-2025-2151
Vulnerability Summary: CVE-2025-2151 A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects...
CVE Alert: CVE-2025-2149
Vulnerability Summary: CVE-2025-2149 A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue...
CVE Alert: CVE-2025-2152
Vulnerability Summary: CVE-2025-2152 A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3....
CVE Alert: CVE-2025-2148
Vulnerability Summary: CVE-2025-2148 A vulnerability was found in PyTorch 2.6.0+cu124. It has been declared as critical. Affected by this vulnerability...
CVE Alert: CVE-2025-26916
Vulnerability Summary: CVE-2025-26916 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in EPC...
CVE Alert: CVE-2025-26910
Vulnerability Summary: CVE-2025-26910 Cross-Site Request Forgery (CSRF) vulnerability in Iqonic Design WPBookit allows Stored XSS. This issue affects WPBookit: from...
CVE Alert: CVE-2025-26933
Vulnerability Summary: CVE-2025-26933 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Nitin...
CVE Alert: CVE-2024-12604
Vulnerability Summary: CVE-2024-12604 Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery Mechanism for Forgotten Password vulnerability...
CVE Alert: CVE-2025-25620
Vulnerability Summary: CVE-2025-25620 Unifiedtransform 2.0 is vulnerable to Cross Site Scripting (XSS) in the Create assignment function. Affected Endpoints: No...
CVE Alert: CVE-2025-25614
Vulnerability Summary: CVE-2025-25614 Incorrect Access Control in Unifiedtransform 2.0 leads to Privilege Escalation, which allows teachers to update the personal...
CVE Alert: CVE-2024-55199
Vulnerability Summary: CVE-2024-55199 A Stored Cross Site Scripting (XSS) vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker...
CVE Alert: CVE-2024-47109
Vulnerability Summary: CVE-2024-47109 IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 UI could disclosure the installation path...
CVE Alert: CVE-2025-26936
Vulnerability Summary: CVE-2025-26936 Improper Control of Generation of Code ('Code Injection') vulnerability in NotFound Fresh Framework allows Code Injection. This...
