5.4

CVSS3.1

CVE-2025-32067 - i18n XSS vulnerability in message growthexperiments

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Growth Experiments Extension allows Cross-Site Scripting (XSS).This issue affects Mediawiki - Growth Experiments Extension: from 1.39 through 1.43.

πŸ“… Published: April 11, 2025, 4:21 p.m. πŸ”„ Last Modified: July 7, 2025, 3:15 p.m.

5.4

CVSS3.1

CVE-2025-32068 - Revoking authorization of OAuth2 consumer does not invalidate refresh tokens

Incorrect Authorization vulnerability in The Wikimedia Foundation Mediawiki - OAuth Extension allows Authentication Bypass.This issue affects Mediawiki - OAuth Extension: from 1.39 through 1.43.

πŸ“… Published: April 11, 2025, 4:21 p.m. πŸ”„ Last Modified: July 7, 2025, 3:15 p.m.

5.4

CVSS3.1

CVE-2025-32069 - Wikitext stored XSS on filepages due to dangerous WBMI serialization

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikibase Media Info Extension allows Cross-Site Scripting (XSS).This issue affects Mediawiki - Wikibase Media Info Extension: from 1.39 through 1.43.

πŸ“… Published: April 11, 2025, 4:20 p.m. πŸ”„ Last Modified: July 7, 2025, 2:15 p.m.

5.4

CVSS3.1

CVE-2025-32070 - XSSes in AJAXPoll

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - AJAX Poll Extension allows Cross-Site Scripting (XSS).This issue affects Mediawiki - AJAX Poll Extension: from 1.39 through 1.43.

πŸ“… Published: April 11, 2025, 4:20 p.m. πŸ”„ Last Modified: July 7, 2025, 3:15 p.m.

5.4

CVSS3.1

CVE-2025-32071 - Wikibase CommonsInlineImageFormatter: i18n XSS

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikidata Extension allows Cross-Site Scripting (XSS)Β from widthheight message via ImageHandler::getDimensionsString()This issue affects Mediawiki - Wikidata Extension: from 1.39 through 1.43.

πŸ“… Published: April 11, 2025, 4:19 p.m. πŸ”„ Last Modified: July 7, 2025, 3:15 p.m.

6.9

CVSS4.0

CVE-2025-31935 - Subnet Solutions PowerSYSTEM Center Deserialization of Untrusted Data

Subnet Solutions PowerSYSTEM Center is affected by a mishandling of exceptional conditions vulnerability. Crafted data that is passed to the API may trigger an exception, resulting in a denial-of-service condition.

πŸ“… Published: April 11, 2025, 3:33 p.m. πŸ”„ Last Modified: April 15, 2025, 6:39 p.m.

0.0

CVE-2025-3524 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: April 11, 2025, 3:31 p.m. πŸ”„ Last Modified: July 5, 2025, 11:15 p.m.

5.3

CVSS4.0

CVE-2025-31354 - Subnet Solutions PowerSYSTEM Center Out-of-Bounds Read

Subnet Solutions PowerSYSTEM Center's SMTPS notification service can be affected by importing an EC certificate with crafted F2m parameters, which can lead to excessive CPU consumption during the evaluation of the curve parameters.

πŸ“… Published: April 11, 2025, 3:30 p.m. πŸ”„ Last Modified: April 15, 2025, 6:39 p.m.

6.4

CVSS3.1

CVE-2023-42983 -

Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks.

πŸ“… Published: April 11, 2025, 2:54 p.m. πŸ”„ Last Modified: June 9, 2025, 5:12 p.m.

7.8

CVSS3.1

CVE-2023-42977 -

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to break out of its sandbox.

πŸ“… Published: April 11, 2025, 2:54 p.m. πŸ”„ Last Modified: Feb. 26, 2026, 6:28 p.m.
Total resulsts: 342292
Page 5214 of 34,230
Β« previous page Β» next page
Filters