NA - CVE-2025-1025 - Versions of the package cockpit-hq/cockpit...
Versions of the package cockpit-hq/cockpit before 2.4.1 are vulnerable to Arbitrary File Upload where an attacker can use different extension to bypass the upload filter.
NA - CVE-2025-1026 - Versions of the package spatie/browsershot...
Versions of the package spatie/browsershot before 5.0.5 are vulnerable to Improper Input Validation due to improper URL validation through the setUrl method, which results in a Local File Inclusion...
Medium - CVE-2024-13829 - The WordPress form builder plugin for contact...
The WordPress form builder plugin for contact forms, surveys and quizzes – Tripetto plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 8.0.8...
NA - CVE-2023-52924 - In the Linux kernel, the following...
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: don't skip expired elements during walk There is an asymmetry between commit/abort and preparation...
NA - CVE-2023-52925 - In the Linux kernel, the following...
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: don't fail inserts if duplicate has expired nftables selftests fail: run-tests.sh...
NA - CVE-2023-6386 - A denial of service vulnerability was...
A denial of service vulnerability was identified in GitLab CE/EE, affecting all versions from 15.11 prior to 16.6.7, 16.7 prior to 16.7.5 and 16.8 prior to 16.8.2 which allows an attacker to spike...
NA - CVE-2024-1539 - An issue has been discovered in GitLab EE...
An issue has been discovered in GitLab EE affecting all versions starting from 15.2 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. It was possible...
NA - CVE-2024-6356 - An issue was discovered in GitLab EE affecting...
An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, which allowed cross...
NA - CVE-2025-0167 - When asked to use a `.netrc` file for...
When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This...