Skip to main content
Abstract art
Abstract art
Abstract art
Abstract art

For providers

26 Jun 2025
Riasztás

NA - CVE-2025-5966 - Zohocorp ManageEngine Exchange reporter Plus...

Zohocorp ManageEngine Exchange reporter Plus version 5722 and below are vulnerable to Stored XSS in the Attachments by filename keyword report.
security-database.com
Read more
26 Jun 2025
Riasztás

High - CVE-2025-6562 - Certain hybrid DVR models (HBF-09KD and...

Certain hybrid DVR models (HBF-09KD and HBF-16NK) from Hunt Electronic have an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject arbitrary OS commands...
security-database.com
Read more
26 Jun 2025
Riasztás

High - CVE-2025-6693 - A vulnerability, which was classified as...

A vulnerability, which was classified as critical, was found in RT-Thread up to 5.1.0. This affects the function...
security-database.com
Read more
26 Jun 2025
Riasztás

NA - CVE-2025-48921 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Open Social allows Cross Site Request Forgery.This issue affects Open Social: from 0.0.0 before 12.3.14, from 12.4.0 before 12.4.13.
security-database.com
Read more
26 Jun 2025
Riasztás

NA - CVE-2025-48922 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal GLightbox allows Cross-Site Scripting (XSS).This issue affects GLightbox: from...
security-database.com
Read more
26 Jun 2025
Riasztás

NA - CVE-2025-48923 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Toc.Js allows Cross-Site Scripting (XSS).This issue affects Toc.Js: from 0.0.0...
security-database.com
Read more
26 Jun 2025
Riasztás

NA - CVE-2025-49003 - DataEase is an open source business...

DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.11, a threat actor may take advantage of a feature in Java in which the character "i" becomes "I"...
security-database.com
Read more
26 Jun 2025
Riasztás

NA - CVE-2025-52573 - iOS Simulator MCP Server (ios-simulator-mcp) is...

iOS Simulator MCP Server (ios-simulator-mcp) is a Model Context Protocol (MCP) server for interacting with iOS simulators. Versions prior to 1.3.3 are written in a way that is vulnerable to command...
security-database.com
Read more
26 Jun 2025
Riasztás

NA - CVE-2025-5682 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Klaro Cookie & Consent Management allows Cross-Site Scripting (XSS).This issue...
security-database.com
Read more
26 Jun 2025
Riasztás

NA - CVE-2025-6674 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal CKEditor5 Youtube allows Cross-Site Scripting (XSS).This issue affects...
security-database.com
Read more
Language
Type