Latest CVE Feed
-
7.1
HIGHCVE-2025-23425
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in marekki Marekkis Watermark allows Reflected XSS. This issue affects Marekkis Watermark: from n/a through 0.9.4.... Read more
Affected Products :- Published: Mar. 03, 2025
- Modified: Mar. 03, 2025
- Vuln Type: Cross-Site Scripting
-
5.4
MEDIUMCVE-2024-54179
IBM Business Automation Workflow and IBM Business Automation Workflow Enterprise Service Bus 24.0.0, 24.0.1 and earlier unsupported versions are vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScr... Read more
Affected Products : business_automation_workflow- Published: Mar. 03, 2025
- Modified: Aug. 18, 2025
- Vuln Type: Cross-Site Scripting
-
9.8
CRITICALCVE-2024-47092
Insecure deserialization and improper certificate validation in Checkmk Exchange plugin check-mk-api prior to 5.8.1... Read more
Affected Products : check_mk_python_api- Published: Mar. 03, 2025
- Modified: Sep. 02, 2025
- Vuln Type: Misconfiguration
-
9.8
CRITICALCVE-2025-1875
SQL injection vulnerability have been found in 101news affecting version 1.0 through the "searchtitle" parameter in search.php.... Read more
Affected Products : best_online_news_portal- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2025-1874
SQL injection vulnerability have been found in 101news affecting version 1.0 through the "description" parameter in admin/add-category.php.... Read more
Affected Products : best_online_news_portal- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2025-1873
SQL injection vulnerability have been found in 101news affecting version 1.0 through the "pagetitle" and "pagedescription" parameters in admin/contactus.php.... Read more
Affected Products : best_online_news_portal- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2025-1872
SQL injection vulnerability have been found in 101news affecting version 1.0 through the "sadminusername" parameter in admin/add-subadmins.php.... Read more
Affected Products : best_online_news_portal- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2025-1871
SQL injection vulnerability have been found in 101news affecting version 1.0 through the "category" and "subcategory" parameters in admin/add-subcategory.php.... Read more
Affected Products : best_online_news_portal- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
-
9.8
CRITICALCVE-2025-1870
SQL injection vulnerability have been found in 101news affecting version 1.0 through the "pagedescription" parameter in admin/aboutus.php.... Read more
Affected Products : best_online_news_portal- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Injection
-
9.8
CRITICALCVE-2025-1869
SQL injection vulnerability have been found in 101news affecting version 1.0 through the "username" parameter in admin/check_avalability.php.... Read more
Affected Products : best_online_news_portal- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Injection
-
7.8
HIGHCVE-2025-21424
Memory corruption while calling the NPU driver APIs concurrently.... Read more
Affected Products : aqt1000_firmware qam8295p_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware +471 more products- Published: Mar. 03, 2025
- Modified: Aug. 11, 2025
- Vuln Type: Memory Corruption
-
6.9
MEDIUMCVE-2025-1868
Vulnerability of unauthorized exposure of confidential information affecting Advanced IP Scanner and Advanced Port Scanner. It occurs when these applications initiate a network scan, inadvertently sending the NTLM hash of the user performing the scan. Thi... Read more
Affected Products :- Published: Mar. 03, 2025
- Modified: Mar. 03, 2025
- Vuln Type: Information Disclosure
-
8.7
HIGHCVE-2025-0475
An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1. A proxy feature could potentially allow unintended content rendering leading to XSS under specific circumstance... Read more
Affected Products : gitlab- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Cross-Site Scripting
-
7.8
HIGHCVE-2024-53034
Memory corruption occurs during an Escape call if an invalid Kernel Mode CPU event and sync object handle are passed with the DriverKnownEscape flag reset.... Read more
Affected Products : wcd9380_firmware wcd9385_firmware fastconnect_6900_firmware fastconnect_7800_firmware wsa8840_firmware wsa8845_firmware wsa8845h_firmware wcd9380 wcd9385 sc8380xp_firmware +6 more products- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-53033
Memory corruption while doing Escape call when user provides valid kernel address in the place of valid user buffer address.... Read more
Affected Products : wcd9380_firmware wcd9385_firmware fastconnect_6900_firmware fastconnect_7800_firmware wsa8840_firmware wsa8845_firmware wsa8845h_firmware wcd9380 wcd9385 sc8380xp_firmware +6 more products- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-53032
Memory corruption may occur in keyboard virtual device due to guest VM interaction.... Read more
Affected Products : qam8295p_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa8295p_firmware qca6595_firmware qca6698aq_firmware sa8540p_firmware sa9000p_firmware qam8255p_firmware +42 more products- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-53031
Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine.... Read more
Affected Products : qam8295p_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa8295p_firmware qca6595_firmware qca6698aq_firmware sa8540p_firmware sa9000p_firmware qam8255p_firmware +42 more products- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-53030
Memory corruption while processing input message passed from FE driver.... Read more
Affected Products : qam8295p_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware sa8150p_firmware sa8155p_firmware +78 more products- Published: Mar. 03, 2025
- Modified: Mar. 07, 2025
- Vuln Type: Memory Corruption
-
8.8
HIGHCVE-2024-53029
Memory corruption while reading a value from a buffer controlled by the Guest Virtual Machine.... Read more
Affected Products :- Published: Mar. 03, 2025
- Modified: Mar. 03, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-53028
Memory corruption may occur while processing message from frontend during allocation.... Read more
Affected Products :- Published: Mar. 03, 2025
- Modified: Mar. 03, 2025
- Vuln Type: Memory Corruption