CVE Alert: CVE-2025-55136
Vulnerability Summary: CVE-2025-55136 ERC (aka Emotion Recognition in Conversation) through 0.3 has insecure deserialization via a serialized object because jsonpickle...
threatintel
CVE Alert: CVE-2024-42048
Vulnerability Summary: CVE-2024-42048 OpenOrange Business Framework 1.15.5 provides unprivileged users with write access to the installation directory. Affected Endpoints: No...
CVE Alert: CVE-2025-55135
Vulnerability Summary: CVE-2025-55135 In Agora Foundation Agora fall23-Alpha1 before 690ce56, there is XSS via a profile picture to server/controller/userController.js. Formats...
CVE Alert: CVE-2025-47907
Vulnerability Summary: CVE-2025-47907 Cancelling a query (e.g. by cancelling the context passed to one of the query methods) during a...
CVE Alert: CVE-2025-44779
Vulnerability Summary: CVE-2025-44779 An issue in Ollama v0.1.33 allows attackers to delete arbitrary files via sending a crafted packet to...
CVE Alert: CVE-2025-54394
Vulnerability Summary: CVE-2025-54394 Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 has Insufficiently Protected Credentials for requests to remote...
CVE Alert: CVE-2025-54395
Vulnerability Summary: CVE-2025-54395 Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows XSS for authentication configuration data. Affected Endpoints:...
CVE Alert: CVE-2025-54393
Vulnerability Summary: CVE-2025-54393 Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows Static Code Injection. Authenticated users can obtain...
CVE Alert: CVE-2025-24000
Vulnerability Summary: CVE-2025-24000 Authentication Bypass Using an Alternate Path or Channel vulnerability in WPExperts Post SMTP allows Authentication Bypass.This issue...
CVE Alert: CVE-2025-54396
Vulnerability Summary: CVE-2025-54396 Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows SQL Injection. Authenticated users can exploit this....
CVE Alert: CVE-2025-55138
Vulnerability Summary: CVE-2025-55138 LinkJoin through 882f196 mishandles token ownership in password reset. Affected Endpoints: No affected endpoints listed. Published Date:...
CVE Alert: CVE-2025-55137
Vulnerability Summary: CVE-2025-55137 LinkJoin through 882f196 mishandles lacks type checking in password reset. Affected Endpoints: No affected endpoints listed. Published...
CVE Alert: CVE-2023-41521
Vulnerability Summary: CVE-2023-41521 Student Attendance Management System v1 was discovered to contain multiple SQL injection vulnerabilities in createSessionTerm.php via the...
CVE Alert: CVE-2025-54397
Vulnerability Summary: CVE-2025-54397 Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 inserts Sensitive Information Into Sent Data to authenticated...
CVE Alert: CVE-2025-54392
Vulnerability Summary: CVE-2025-54392 Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error data, a different...
CVE Alert: CVE-2023-41520
Vulnerability Summary: CVE-2023-41520 Student Attendance Management System v1 was discovered to contain multiple SQL injection vulnerabilities in createClassArms.php via the...
CVE Alert: CVE-2023-41519
Vulnerability Summary: CVE-2023-41519 Student Attendance Management System v1 was discovered to contain a cross-site scripting (XSS) vulnerability via the sessionName...
CVE Alert: CVE-2023-41531
Vulnerability Summary: CVE-2023-41531 Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func3.php via the username1...
CVE Alert: CVE-2023-40992
Vulnerability Summary: CVE-2023-40992 Hospital Management System 4 is vulnerable to a SQL injection in /Hospital-Management-System-master/func.php via the password2 parameter. Affected...
CVE Alert: CVE-2023-41532
Vulnerability Summary: CVE-2023-41532 Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the doctor_contact parameter in...
CVE Alert: CVE-2025-51533
Vulnerability Summary: CVE-2025-51533 An Insecure Direct Object Reference (IDOR) in Sage DPW v2024_12_004 and below allows unauthorized attackers to access...
CVE Alert: CVE-2025-51629
Vulnerability Summary: CVE-2025-51629 A cross-site scripting (XSS) vulnerability in the PdfViewer component of Agenzia Impresa Eccobook 2.81.1 allows attackers to...
CVE Alert: CVE-2023-41529
Vulnerability Summary: CVE-2023-41529 Hospital Management System v4 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in func2.php via the...
CVE Alert: CVE-2025-8697
Vulnerability Summary: CVE-2025-8697 A vulnerability was found in agentUniverse up to 0.0.18 and classified as critical. This issue affects the...
