CVE Brief Security Intelligence

In multiple locations, there is a possible way to escape chrome sandbox to attack android system_server due to a use after free

It was possible to perform Remote Command Execution (RCE) via Java RMI interface in the OpenEdge AdminServer, allowing authenticated users to inject and execute OS commands under the delegated authority of the AdminServer process

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeMove MaxCoach allows PHP Local File Inclusion

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in gavias Indutri allows PHP Local File Inclusion

Hono is a Web application framework that provides support for any JavaScript runtime

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RealMag777 InPost Gallery allows PHP Local File Inclusion

WLAN in Android before 2025-09-05 on Google Pixel devices allows elevation of privilege, aka A-396462223

The WordPress Helpdesk Integration plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5

In draw_surface_image() of abl/android/lib/draw/draw

A flaw has been found in PHPGurukul Beauty Parlour Management System 1

A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1

In onNullBinding of RemoteFillService

Path Traversal vulnerability in Stefan Keller WooCommerce Payment Gateway for Saferpay allows Path Traversal

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saad Iqbal License Manager for WooCommerce allows Blind SQL Injection

In Skia, there is a possible out of bounds write due to a heap buffer overflow

In saveGlobalProxyLocked of DevicePolicyManagerService

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft TaskPano allows Authentication Bypass

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft e-Mutabakat allows Authentication Bypass

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus New Simple Gallery allows Blind SQL Injection

In multiple locations, there is a possible memory corruption due to a use after free

In multiple locations, there is a possible privilege escalation due to a tapjacking/overlay attack

In multiple locations, there is a possible way to read files belonging to other apps due to SQL injection

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeisle WP Full Stripe Free allows SQL Injection

Elevation of privilege

A weakness has been identified in D-Link DI-8400 16

In smp_process_secure_connection_oob_data of smp_act

In getDefaultCBRPackageName of CellBroadcastHandler

Cross-Site Request Forgery (CSRF) vulnerability in INVELITY Invelity MyGLS connect allows Object Injection

NVIDIA BlueField contains a vulnerability in the management interface, where an attacker with local access could cause incorrect authorization to modify the configuration

There is a possible escalation of privilege due to test/debugging code left in a production build

Vulnerability of exposing object heap addresses in the Ark eTS module

Out-of-bounds read vulnerability in the runtime interpreter module

Promptcraft Forge Studio is a toolkit for evaluating, optimizing, and maintaining LLM-powered applications

In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check

There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path

Roo Code is an AI-powered autonomous coding agent that lives in users' editors

Roo Code is an AI-powered autonomous coding agent that lives in users' editors

In SendPacketToPeer of acl_arbiter

pgAdmin <= 9

In wl_update_hidden_ap_ie() of wl_cfgscan

In wl_cfgscan_update_v3_schedscan_results() of wl_cfgscan

There is a possible escalation of privilege due to a logic error in the code

In lwis_io_buffer_write, there is a possible OOB read/write due to improper input validation

In gxp_mapping_create of gxp_mapping

In ConvertReductionOp of darwinn_mlir_converter_aidl

In getDestinationForApp of SpaAppBridgeActivity, there is a possible cross-user file reveal due to a logic error in the code

In updateState of ContentProtectionTogglePreferenceController

In clearAllowBgActivityStarts of PendingIntentRecord

In multiple functions of CameraService

In onHandleForceStop of VoiceInteractionManagerService

In onInputEvent of IInputMethodSessionWrapper

In loadDrawableForCookie of ResourcesImpl

In multiple functions of NdkMediaCodec

In multiple functions of LocationProviderManager

In AccessibilityServiceConnection

In createIntentsList of PackageParser

In avrc_vendor_msg of avrc_opt

In multiple locations, there is a possible way to hijack the Launcher app due to a logic error in the code

In validateUriSchemeAndPermission of DisclaimersParserImpl

In executeAppFunction of AppSearchManagerService

In isSafeIntent of AccountTypePreferenceLoader

In getCallingAppName of Shared

In onCommand of ActivityManagerShellCommand

In appendFrom of Parcel

In multiple functions of AppRestrictionsFragment

In multiple functions of PickerDbFacade

In showDismissibleKeyguard of KeyguardService

In startSpaActivityForApp of SpaActivity

In updateState of ContentProtectionTogglePreferenceController

In onActivityResult of VoicemailSettingsActivity

In onStart of BiometricEnrollIntroduction

In maybeShowDialog of ControlsSettingsDialogManager

In setDisplayName of AssociationRequest

In onCreate of SelectAccountActivity

In getCallingPackageName of CredentialStorage, there is a possible permission bypass due to a logic error in the code

In assertSafeToStartCustomActivity of AppRestrictionsFragment

In processTransactInternal of RpcState

In onCreate of FaceSettings

In checkPermissions of SafeActivityOptions

In multiple locations, there is a possible way to record audio via a background app due to a missing permission check

In handlePackagesChanged of DevicePolicyManagerService

In multiple functions of BatteryService

In FrpBypassAlertActivity of FrpBypassAlertActivity

In setupAccessibilityServices of AccessibilityFragment

In getComponentName of AccessibilitySettingsUtils

In onCreate of MediaProjectionPermissionActivity

Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1

In System UI, there is a possible way to view other users' images due to a confused deputy

Soft Serve is a self-hostable Git server for the command line

Improper export of component in GoodLock prior to version 2

In SAEMM_DiscloseMsId of SAEMM_RadioMessageCodec

Denial of service

In TBD of TBD, there is a possible DoS due to a missing null check

Information disclosure

Markdownify is a Model Context Protocol server for converting almost anything to Markdown

The langchain-ai/langchain project, specifically the EverNoteLoader component, is vulnerable to XML External Entity (XXE) attacks due to insecure XML parsing

Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability

Race condition vulnerability in the audio module

A security vulnerability has been detected in 1000projects Beauty Parlour Management System 1

A vulnerability was determined in TOTOLINK N600R 4