CVE Alert: CVE-2025-7096
Vulnerability Summary: CVE-2025-7096 A vulnerability classified as critical was found in Comodo Internet Security Premium 12.3.4.8162. This vulnerability affects unknown...
Vulnerabilities
CVE Alert: CVE-2025-3108
Vulnerability Summary: CVE-2025-3108 A critical deserialization vulnerability exists in the run-llama/llama_index library's JsonPickleSerializer component, affecting versions v0.12.27 through v0.12.40. This...
CVE Alert: CVE-2025-7098
Vulnerability Summary: CVE-2025-7098 A vulnerability, which was classified as critical, was found in Comodo Internet Security Premium 12.3.4.8162. Affected is...
CVE Alert: CVE-2025-43711
Vulnerability Summary: CVE-2025-43711 Tunnelblick 3.5beta06 before 7.0, when incompletely uninstalled, allows attackers to execute arbitrary code as root (upon the...
CVE Alert: CVE-2025-53605
Vulnerability Summary: CVE-2025-53605 The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::coded_input_stream::CodedInputStream::skip_group parsing of unknown fields...
CVE Alert: CVE-2025-26850
Vulnerability Summary: CVE-2025-26850 The agent in Quest KACE Systems Management Appliance (SMA) before 14.0.97 and 14.1.x before 14.1.19 potentially allows...
CVE Alert: CVE-2025-53603
Vulnerability Summary: CVE-2025-53603 In Alinto SOPE SOGo 2.0.2 through 5.12.2, sope-core/NGExtensions/NGHashMap.m allows a NULL pointer dereference and SOGo crash via...
CVE Alert: CVE-2025-47227
Vulnerability Summary: CVE-2025-47227 In the Production Environment extension in Netmake ScriptCase through 9.12.006 (23), the Administrator password reset mechanism is...
CVE Alert: CVE-2025-7074
Vulnerability Summary: CVE-2025-7074 A vulnerability classified as problematic has been found in vercel hyper up to 3.4.1. This affects the...
CVE Alert: CVE-2023-50786
Vulnerability Summary: CVE-2023-50786 Dradis through 4.16.0 allows referencing external images (resources) over HTTPS, instead of forcing the use of embedded...
CVE Alert: CVE-2025-47228
Vulnerability Summary: CVE-2025-47228 In the Production Environment extension in Netmake ScriptCase through 9.12.006 (23), shell injection in the SSH connection...
CVE Alert: CVE-2025-53604
Vulnerability Summary: CVE-2025-53604 The web-push crate before 0.10.3 for Rust allows a denial of service (memory consumption) in the built-in...
CVE Alert: CVE-2025-32311
Vulnerability Summary: CVE-2025-32311 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QuanticaLabs Pressroom - News Magazine...
CVE Alert: CVE-2025-49247
Vulnerability Summary: CVE-2025-49247 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cmoreira Team Showcase allows DOM-Based...
CVE Alert: CVE-2025-47565
Vulnerability Summary: CVE-2025-47565 Missing Authorization vulnerability in ashanjay EventON allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-39487
Vulnerability Summary: CVE-2025-39487 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ValvePress Rankie allows Reflected XSS....
CVE Alert: CVE-2025-47479
Vulnerability Summary: CVE-2025-47479 Weak Authentication vulnerability in AresIT WP Compress allows Authentication Abuse. This issue affects WP Compress: from n/a...
CVE Alert: CVE-2025-49070
Vulnerability Summary: CVE-2025-49070 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in NasaTheme...
CVE Alert: CVE-2025-49414
Vulnerability Summary: CVE-2025-49414 Unrestricted Upload of File with Dangerous Type vulnerability in Fastw3b LLC FW Gallery allows Using Malicious Files....
CVE Alert: CVE-2025-49245
Vulnerability Summary: CVE-2025-49245 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cmoreira Testimonials Showcase allows Reflected...
CVE Alert: CVE-2025-48231
Vulnerability Summary: CVE-2025-48231 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in codepeople Booking Calendar Contact Form...
CVE Alert: CVE-2025-47634
Vulnerability Summary: CVE-2025-47634 Missing Authorization vulnerability in Keylor Mendoza WC Pickup Store allows Exploiting Incorrectly Configured Access Control Security Levels....
CVE Alert: CVE-2025-49302
Vulnerability Summary: CVE-2025-49302 Improper Control of Generation of Code ('Code Injection') vulnerability in Scott Paterson Easy Stripe allows Remote Code...
CVE Alert: CVE-2025-49303
Vulnerability Summary: CVE-2025-49303 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Shabti Kaplan Frontend Admin...
