0.0
CVE-2025-47861 -
Not used
0.0
CVE-2025-47862 -
Not used
0.0
CVE-2025-47863 -
Not used
0.0
CVE-2025-47859 -
Not used
0.0
CVE-2025-47860 -
Not used
0.0
CVE-2025-47858 -
Not used
5.1
CVE-2025-40627 - Reflected Cross-Site Scripting (XSS) in AbanteCart
Reflected Cross-Site Scripting (XSS) vulnerability inย AbanteCart v1.4.0, that could allow an attacker to execute JavaScript code in a victim's browser by sending the victim a malicious URL. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actiโฆ
5.1
CVE-2025-40626 - Reflected Cross-Site Scripting (XSS) in AbanteCart
Reflected Cross-Site Scripting (XSS) vulnerability inย AbanteCart v1.4.0, that could allow an attacker to execute JavaScript code in a victim's browser by sending the victim a malicious URL. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actiโฆ
6.3
CVE-2025-47271 - OZI-Project/ozi-publish Code Injection vulnerability
The OZI action is a GitHub Action that publishes releases to PyPI and mirror releases, signature bundles, and provenance in a tagged release. In versions 1.13.2 through 1.13.5, potentially untrusted data flows into PR creation logic. A malicious actor could construct a branch name that injects arbiโฆ
7.5
CVE-2025-47270 - nimiq-network-libp2p Uncontrolled Resource Consumption vulnerability
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. The `nimiq-network-libp2p` subcrate of nimiq/core-rs-albatross is vulnerable to a Denial of Service (DoS) attack due to uncontrolled memory allocation. Specifically, theโฆ