CVE Brief Security Intelligence

Microsoft Windows LNK File UI Misrepresentation Remote Code Execution Vulnerability

The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4

The Event List plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3

The Vibes plugin for WordPress is vulnerable to time-based SQL Injection via the ‘resource’ parameter in all versions up to, and including, 2

A denial of service vulnerability exists in the JSONReader component of the run-llama/llama_index repository, specifically in version v0

phpgurukul Hospital Management System 4

An out-of-bounds read vulnerability exists in the Nex parsing functionality of The Biosig Project libbiosig 3

Privilege Defined With Unsafe Actions vulnerability in Apache Cassandra

Delta Electronics COMMGR has Stack-based Buffer Overflow vulnerability

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants

Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation

A memory corruption vulnerability exists in the BMPv3 Image Decoding functionality of the SAIL Image Decoding Library v0

A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL Image Decoding Library v0

A memory corruption vulnerability exists in the BMPv3 Palette Decoding functionality of the SAIL Image Decoding Library v0

A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL Image Decoding Library v0

A memory corruption vulnerability exists in the WebP Image Decoding functionality of the SAIL Image Decoding Library v0

A memory corruption vulnerability exists in the BMPv3 RLE Decoding functionality of the SAIL Image Decoding Library v0

A memory corruption vulnerability exists in the PSD RLE Decoding functionality of the SAIL Image Decoding Library v0

A memory corruption vulnerability exists in the PSD Image Decoding functionality of the SAIL Image Decoding Library v0

FoxCMS 1

Langflow is a tool for building and deploying AI-powered agents and workflows

A flaw has been found in Tenda CH22 1

A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1

A vulnerability was detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1

A flaw has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1

Adminer 4

Agiloft Release 28 downloads critical system packages over an insecure HTTP connection

Delta Electronics COMMGR has Code Injection vulnerability

IBM Cognos Command Center 10

NVIDIA NeMo Curator for all platforms contains a vulnerability where a malicious file created by an attacker could allow code injection

NVIDIA NeMo Framework for all platforms contains a vulnerability in the retrieval services component, where malicious data created by an attacker could cause a code injection

NVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP component, where malicious data created by an attacker could cause a code injection issue

NVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP component, where malicious data created by an attacker could cause a code injection issue

NVIDIA NeMo Framework for all platforms contains a vulnerability in the export and deploy component, where malicious data created by an attacker could cause a code injection issue

Mahara before 22

An unauthenticated unrestricted file upload vulnerability allows an attacker to upload malicious binaries and scripts to the server

PerfreeBlog v4

PerfreeBlog v4

On affected platforms running Arista EOS, maliciously formed UDP packets with source port 3503 may be accepted by EOS

ImageMagick is free and open-source software used for editing and manipulating digital images

ImageMagick is free and open-source software used for editing and manipulating digital images

IBM Cognos Command Center 10

A security vulnerability has been detected in itsourcecode Apartment Management System 1

A vulnerability was detected in itsourcecode Apartment Management System 1

A flaw has been found in itsourcecode Apartment Management System 1

A vulnerability has been found in itsourcecode Apartment Management System 1

A vulnerability was determined in Campcodes Online Water Billing System 1

A security flaw has been discovered in itsourcecode Online Tour and Travel Management System 1

A weakness has been identified in itsourcecode Online Tour and Travel Management System 1

A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1

A security vulnerability has been detected in itsourcecode Apartment Management System 1

A vulnerability was detected in itsourcecode Apartment Management System 1

A flaw has been found in itsourcecode Apartment Management System 1

A vulnerability has been found in itsourcecode Apartment Management System 1

A vulnerability was found in itsourcecode Apartment Management System 1

A security vulnerability has been detected in SourceCodester Online Bank Management System 1

A flaw has been found in SourceCodester Human Resource Information System 1

A vulnerability has been found in SourceCodester Human Resource Information System 1

A vulnerability was determined in Campcodes Online Water Billing System 1

D-Link DSL-7740C with firmware DSL7740C

D-Link DSL-7740C with firmware DSL7740C

A non-primary administrator user with admin rights to the web interface but without shell access permissions can display configuration of the device including the master admin password

D-Link DI-8100 16