NA - CVE-2025-52521 - Trend Micro Security 17.8 (Consumer) is...
Trend Micro Security 17.8 (Consumer) is vulnerable to a link following local privilege escalation vulnerability that could allow a local attacker to unintentionally delete privileged Trend Micro...
NA - CVE-2025-52837 - Trend Micro Password Manager (Consumer) version...
Trend Micro Password Manager (Consumer) version 5.8.0.1327 and below is vulnerable to a Link Following Privilege Escalation Vulnerability that could allow an attacker the opportunity to abuse...
NA - CVE-2025-53378 - A missing authentication vulnerability in Trend...
A missing authentication vulnerability in Trend Micro Worry-Free Business Security Services (WFBSS) agent could have allowed an unauthenticated attacker to remotely take control of the agent on...
NA - CVE-2025-53503 - Trend Micro Cleaner One Pro is vulnerable to a...
Trend Micro Cleaner One Pro is vulnerable to a Privilege Escalation vulnerability that could allow a local attacker to unintentionally delete privileged Trend Micro files including its own.
NA - CVE-2025-53542 - Headlamp is an extensible Kubernetes web UI. A...
Headlamp is an extensible Kubernetes web UI. A command injection vulnerability was discovered in the codeSign.js script used in the macOS packaging workflow of the Kubernetes Headlamp project. This...
NA - CVE-2025-53549 - The Matrix Rust SDK is a collection of...
The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::find_event_with_relations method of...
NA - CVE-2025-53625 - The DynamicPageList3 extension is a reporting...
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several #dpl parameters can leak usernames that have...
NA - CVE-2025-53626 - pdfme is a TypeScript-based PDF generator and...
pdfme is a TypeScript-based PDF generator and React-based UI. The expression evaluation feature in pdfme 5.2.0 to 5.4.0 contains critical vulnerabilities allowing sandbox escape leading to XSS and...
NA - CVE-2025-53709 - Secure-upload is a data submission service that...
Secure-upload is a data submission service that validates single-use tokens when accepting submissions to channels. The service only installed on a small number of environments. Under specific...
High - CVE-2025-7411 - A vulnerability was found in code-projects...
A vulnerability was found in code-projects LifeStyle Store 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /success.php. The...