0.0
CVE-2025-66230 -
Not used
0.0
CVE-2025-66234 -
Not used
0.0
CVE-2025-66235 -
Not used
0.0
CVE-2025-66231 -
Not used
0.0
CVE-2025-66229 -
Not used
0.0
CVE-2025-66232 -
Not used
5.8
CVE-2025-40890 - Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0
A Stored Cross-Site Scripting vulnerability was discovered in the Dashboards functionality due to improper validation of an input parameter. An authenticated low-privilege user can craft a malicious dashboard containing a JavaScript payload and share it with victim users, or a victim can be sociβ¦
8.1
CVE-2025-0248 - HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability,
HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input. A remote, unauthenticated attacker can specially craft a URL to execute script in a victim's Web browser within the security context of the hosting Web site and/orβ¦
3.7
CVE-2025-36134 - IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure
IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1Β could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie.
7.5
CVE-2025-13502 - Webkit: webkitgtk / wpe webkit: out-of-bounds read and integer underflow vulnerability leading to dβ¦
A flaw was found in WebKitGTK and WPE WebKit. This vulnerability allows an out-of-bounds read and integer underflow, leading to a UIProcess crash (DoS) via a crafted payload to the GLib remote inspector server.