Categoria: CVE

A vulnerability was found in JiranSoft CrossEditor4 on Windows and classified as problematic. This issue affects some unknown processing of the component API Module. The manipulation leads to cross site scripting. The...

A vulnerability has been found in ProTNS ActADUR and classified as critical. This vulnerability affects unknown code. The manipulation leads to command injection. This vulnerability was named CVE-2025-3621. The attack needs to...

A vulnerability, which was classified as problematic, was found in Companion Auto Update Plugin up to 3.9.2 on WordPress. This affects an unknown part. The manipulation of the argument update_delay_days leads to cross site...

A vulnerability, which was classified as problematic, has been found in Restrict File Access Plugin up to 1.1.2 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request...

A vulnerability classified as problematic was found in Caido up to 0.48.x. Affected by this vulnerability is an unknown functionality of the component Toast UI. The manipulation leads to cross site scripting. This vulnerability...

A vulnerability classified as problematic has been found in Directus up to 11.8.x. Affected is an unknown function of the file /server/specs/oas of the component OpenAPI. The manipulation leads to information disclosure. This...

A vulnerability was found in Directus up to 11.8.x. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to improper authentication. The identification of this vulnerability is...

A vulnerability, which was classified as critical, has been found in Sunwood-ai-labs github-kanban-mcp-server 0.3.0/0.4.0. Affected by this issue is some unknown functionality of the component add_comment. The manipulation leads...

A vulnerability classified as critical was found in MeterSphere up to 3.6.4-lts. Affected by this vulnerability is an unknown functionality of the component API Endpoint. The manipulation of the argument sortField leads to sql...

A vulnerability classified as problematic has been found in Indico up to 3.3.6. Affected is an unknown function. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2025-53640. It is possible to...

A vulnerability was found in aio-libs aiohttp up to 3.12.13. It has been rated as critical. This issue affects some unknown processing of the component Python Parser. The manipulation leads to http request smuggling. The...

A vulnerability was found in NixOS nix 2.30.0 on macOS. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to privilege dropping / lowering errors. This vulnerability was named...