CVE Alert: CVE-2025-8019
Vulnerability Summary: CVE-2025-8019 A vulnerability was found in Shenzhen Libituo Technology LBT-T300-T310 2.2.3.6. It has been rated as critical. Affected...
Vulnerabilities
CVE Alert: CVE-2025-48964
Vulnerability Summary: CVE-2025-48964 ping in iputils through 20240905 allows a denial of service (application error in adaptive ping mode or...
CVE Alert: CVE-2025-51464
Vulnerability Summary: CVE-2025-51464 Cross-site Scripting (XSS) in aimhubio Aim 3.28.0 allows remote attackers to execute arbitrary JavaScript in victims browsers...
CVE Alert: CVE-2025-51481
Vulnerability Summary: CVE-2025-51481 Local File Inclusion in dagster._grpc.impl.get_notebook_data in Dagster 1.10.14 allows attackers with access to the gRPC server to...
CVE Alert: CVE-2024-38335
Vulnerability Summary: CVE-2024-38335 IBM Security QRadar Network Threat Analytics 1.0.0 through 1.3.1 could allow a privileged user to cause a...
CVE Alert: CVE-2025-6741
Vulnerability Summary: CVE-2025-6741 Improper access control in secure message component in Devolutions Server allows an authenticated user to steal unauthorized...
CVE Alert: CVE-2025-51479
Vulnerability Summary: CVE-2025-51479 Authorization bypass in update_user_group in onyx-dot-app Onyx Enterprise Edition 0.27.0 allows remote authenticated attackers to modify arbitrary...
CVE Alert: CVE-2025-51471
Vulnerability Summary: CVE-2025-51471 Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ollama 0.6.7 allows remote attackers to steal authentication tokens and bypass...
CVE Alert: CVE-2025-51459
Vulnerability Summary: CVE-2025-51459 File Upload vulnerability in agent.hub.controller.refresh_plugins in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary code via...
CVE Alert: CVE-2025-31511
Vulnerability Summary: CVE-2025-31511 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval by changing the user...
CVE Alert: CVE-2025-31512
Vulnerability Summary: CVE-2025-31512 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval via isAddedByApprover in a...
CVE Alert: CVE-2025-31513
Vulnerability Summary: CVE-2025-31513 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can elevate to administrator privileges via the IsAdminApprover...
CVE Alert: CVE-2025-51472
Vulnerability Summary: CVE-2025-51472 Code Injection in AgentTemplate.eval_agent_config in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to execute arbitrary Python code via...
CVE Alert: CVE-2025-51458
Vulnerability Summary: CVE-2025-51458 SQL Injection in editor_sql_run and query_ex in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary SQL...
CVE Alert: CVE-2025-51462
Vulnerability Summary: CVE-2025-51462 Stored Cross-site Scripting (XSS) vulnerability in api.apps.dialog_app.set_dialog in RAGFlow 0.17.2 allows remote attackers to execute arbitrary JavaScript...
CVE Alert: CVE-2025-51475
Vulnerability Summary: CVE-2025-51475 Arbitrary File Overwrite (AFO) in superagi.controllers.resources.upload in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to overwrite arbitrary files...
CVE Alert: CVE-2025-48733
Vulnerability Summary: CVE-2025-48733 DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user authentication. This could allow...
CVE Alert: CVE-2025-54072
Vulnerability Summary: CVE-2025-54072 yt-dlp is a feature-rich command-line audio/video downloader. In versions 2025.06.25 and below, when the --exec option is...
CVE Alert: CVE-2025-53703
Vulnerability Summary: CVE-2025-53703 DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without encryption over a channel that could be intercepted by attackers....
CVE Alert: CVE-2025-41425
Vulnerability Summary: CVE-2025-41425 DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could allow an attacker to prevent...
CVE Alert: CVE-2025-53538
Vulnerability Summary: CVE-2025-53538 Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation)...
CVE Alert: CVE-2025-54138
Vulnerability Summary: CVE-2025-54138 LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network...
CVE Alert: CVE-2025-54141
Vulnerability Summary: CVE-2025-54141 ViewVC is a browser interface for CVS and Subversion version control repositories. In versions 1.1.0 through 1.1.31...
CVE Alert: CVE-2025-7766
Vulnerability Summary: CVE-2025-7766 Lantronix Provisioning Manager is vulnerable to XML external entity attacks in configuration files supplied by network devices,...
