7.5
CVE-2025-69235 -
Whale browser before 4.35.351.12 allows an attacker to bypass the Same-Origin Policy in a sidebar environment.
9.1
CVE-2025-69234 -
Whale browser before 4.35.351.12 allows an attacker to escape the iframe sandbox in a sidebar environment.
5.3
CVE-2025-15213 - code-projects Student File Management System File Download download.php improper authorization
A vulnerability has been found in code-projects Student File Management System 1.0. The affected element is an unknown function of the file /download.php of the component File Download Handler. The manipulation of the argument store_id leads to improper authorization. The attack is possible to be cβ¦
7.7
CVE-2025-69217 - Coturn has unsafe nonce and relay port randomization due to weak random number generation.
coturn is a free open source implementation of TURN and STUN Server. Versions 4.6.2r5 through 4.7.0-r4 have a bad random number generator for nonces and port randomization after refactoring. Additionally, random numbers aren't generated with openssl's RAND_bytes but libc's random() (if it's not runβ¦
5.3
CVE-2025-15212 - code-projects Refugee Food Management System regfood.php sql injection
A vulnerability was detected in code-projects Refugee Food Management System 1.0. This issue affects some unknown processing of the file /home/regfood.php. Performing manipulation of the argument a results in sql injection. Remote exploitation of the attack is possible. The exploit is now public anβ¦
5.3
CVE-2025-15211 - code-projects Refugee Food Management System refugee.php sql injection
A flaw has been found in code-projects Refugee Food Management System 1.0. Impacted is an unknown function of the file /home/refugee.php. Executing manipulation of the argument refNo/Fname/Lname/sex/age/contact/nationality_nid can lead to sql injection. The attack can be executed remotely. The explβ¦
7.5
CVE-2025-65409 - Recutils: Recutils: Denial of Service due to divide-by-zero with empty password input
A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service (DoS) via inputting an empty value as a password.
7.5
CVE-2025-61557 -
nixseparatedebuginfod before v0.4.1 is vulnerable to Directory Traversal.
5.5
CVE-2023-54312 - samples/bpf: Fix buffer overflow in tcp_basertt
In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix buffer overflow in tcp_basertt Using sizeof(nv) or strlen(nv)+1 is correct.
5.5
CVE-2023-54287 - tty: serial: imx: disable Ageing Timer interrupt request irq
In the Linux kernel, the following vulnerability has been resolved: tty: serial: imx: disable Ageing Timer interrupt request irq There maybe pending USR interrupt before requesting irq, however uart_add_one_port has not executed, so there will be kernel panic: [ 0.795668] Unable to handle kernβ¦