NA - CVE-2025-25929 - A reflected cross-site scripting (XSS)...
A reflected cross-site scripting (XSS) vulnerability in the component /legacyui/quickReportServlet of Openmrs 2.4.3 Build 0ff0ed allows attackers to execute arbitrary JavaScript in the context of a...
NA - CVE-2025-27789 - Babel is a compiler for writing next generation...
Babel is a compiler for writing next generation JavaScript. When using versions of Babel prior to 7.26.10 and 8.0.0-alpha.17 to compile regular expression named capturing groups, Babel will...
Low - CVE-2025-2206 - A vulnerability classified as problematic has...
A vulnerability classified as problematic has been found in aitangbao springboot-manager 3.0. This affects an unknown part of the file /sys/permission. The manipulation of the argument name leads...
Low - CVE-2025-2207 - A vulnerability classified as problematic was...
A vulnerability classified as problematic was found in aitangbao springboot-manager 3.0. This vulnerability affects unknown code of the file /sys/dept. The manipulation of the argument name leads...
NA - CVE-2025-0900 - PDF-XChange Editor PDF File Parsing...
PDF-XChange Editor PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations...
Medium - CVE-2025-21170 - Substance3D - Modeler versions 1.15.0 and...
Substance3D - Modeler versions 1.15.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this...
High - CVE-2025-27173 - Substance3D - Modeler versions 1.15.0 and...
Substance3D - Modeler versions 1.15.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user....
Medium - CVE-2025-27180 - Substance3D - Modeler versions 1.15.0 and...
Substance3D - Modeler versions 1.15.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this...
High - CVE-2025-27181 - Substance3D - Modeler versions 1.15.0 and...
Substance3D - Modeler versions 1.15.0 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of...
NA - CVE-2025-28856 - Cross-Site Request Forgery (CSRF) vulnerability...
Cross-Site Request Forgery (CSRF) vulnerability in dangrossman W3Counter Free Real-Time Web Stats allows Cross Site Request Forgery. This issue affects W3Counter Free Real-Time Web Stats: from n/a...