CVE Alert: CVE-2025-3636
Vulnerability Summary: CVE-2025-3636 A flaw was found in Moodle. This vulnerability allows unauthorized users to access and view RSS feeds...
CVE
CVE Alert: CVE-2025-3628
Vulnerability Summary: CVE-2025-3628 A flaw has was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing...
CVE Alert: CVE-2025-3647
Vulnerability Summary: CVE-2025-3647 A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access...
CVE Alert: CVE-2025-3644
Vulnerability Summary: CVE-2025-3644 A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections...
CVE Alert: CVE-2025-3645
Vulnerability Summary: CVE-2025-3645 A flaw was found in Moodle. Insufficient capability checks in a messaging web service allowed users to...
CVE Alert: CVE-2025-3643
Vulnerability Summary: CVE-2025-3643 A flaw was found in Moodle. The return URL in the policy tool required additional sanitizing to...
CVE Alert: CVE-2025-3642
Vulnerability Summary: CVE-2025-3642 A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS...
CVE Alert: CVE-2025-46433
Vulnerability Summary: CVE-2025-46433 In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible Affected Endpoints: No affected...
CVE Alert: CVE-2025-43016
Vulnerability Summary: CVE-2025-43016 In JetBrains Rider before 2025.1.2 custom archive unpacker allowed arbitrary file overwrite during remote debug session Affected...
CVE Alert: CVE-2025-46618
Vulnerability Summary: CVE-2025-46618 In JetBrains TeamCity before 2025.03.1 stored XSS was possible on Data Directory tab Affected Endpoints: No affected...
CVE Alert: CVE-2025-43862
Vulnerability Summary: CVE-2025-43862 Dify is an open-source LLM app development platform. Prior to version 0.6.12, a normal user is able...
CVE Alert: CVE-2025-46432
Vulnerability Summary: CVE-2025-46432 In JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logs Affected Endpoints: No affected...
CVE Alert: CVE-2025-2069
Vulnerability Summary: CVE-2025-2069 A cross-site scripting vulnerability was reported in the FileZ client that could allow execution of code if...
CVE Alert: CVE-2025-25775
Vulnerability Summary: CVE-2025-25775 Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket parameter in /BusTicket-CI/tiket/cekorder....
CVE Alert: CVE-2025-2068
Vulnerability Summary: CVE-2025-2068 An open redirect vulnerability was reported in the FileZ client that could allow information disclosure if a...
CVE Alert: CVE-2025-2070
Vulnerability Summary: CVE-2025-2070 An improper XML parsing vulnerability was reported in the FileZ client that could allow arbitrary file reads...
CVE Alert: CVE-2025-3928
Vulnerability Summary: CVE-2025-3928 Commvault Web Server has an unspecified vulnerability that can be exploited by a remote, authenticated attacker. According...
CVE Alert: CVE-2025-32983
Vulnerability Summary: CVE-2025-32983 NETSCOUT nGeniusONE before 6.4.0 b2350 allows Technical Information Disclosure via a Stack Trace. Affected Endpoints: No affected...
CVE Alert: CVE-2025-28128
Vulnerability Summary: CVE-2025-28128 An issue in Mytel Telecom Online Account System v1.0 allows attackers to bypass the OTP verification process...
CVE Alert: CVE-2024-30152
Vulnerability Summary: CVE-2024-30152 HCL SX v21 is affected by usage of a weak cryptographic algorithm. An attacker could exploit this...
CVE Alert: CVE-2025-3935
Vulnerability Summary: CVE-2025-3935 ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code injection attack. ASP.NET Web...
CVE Alert: CVE-2025-32984
Vulnerability Summary: CVE-2025-32984 NETSCOUT nGeniusONE before 6.4.0 b2350 allows Stored Cross-Site Scripting (XSS) via a certain POST parameter. Affected Endpoints:...
CVE Alert: CVE-2025-46516
Vulnerability Summary: CVE-2025-46516 Cross-Site Request Forgery (CSRF) vulnerability in silencecm Twitter Card Generator allows Stored XSS. This issue affects Twitter...
CVE Alert: CVE-2025-46513
Vulnerability Summary: CVE-2025-46513 Cross-Site Request Forgery (CSRF) vulnerability in Codebangers All in One Time Clock Lite allows Cross Site Request...
