5.1

CVSS3.1

CVE-2025-1993 - IBM App Connect Enterprise Certified Container information disclosure

IBM App Connect Enterprise Certified Container 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, 12.7, 12.8, 12.9, and 12.10 DesignerAuthoring instances store their flows in a database that is protected by weaker than expected c…

πŸ“… Published: May 9, 2025, 5:12 p.m. πŸ”„ Last Modified: Aug. 31, 2025, 1:27 a.m.

6.9

CVSS4.0

CVE-2025-4481 - SourceCodester Apartment Visitor Management System search-result.php sql injection

A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /search-result.php. The manipulation of the argument searchdata leads to sql injection. The attack may be initiated remotely. Th…

πŸ“… Published: May 9, 2025, 4:31 p.m. πŸ”„ Last Modified: May 16, 2025, 3:34 p.m.

4.8

CVSS4.0

CVE-2025-4480 - code-projects Simple College Management System Add New Student input stack-based overflow

A vulnerability was found in code-projects Simple College Management System 1.0. It has been declared as critical. This vulnerability affects the function input of the component Add New Student. The manipulation of the argument name/branch leads to stack-based buffer overflow. It is possible to lau…

πŸ“… Published: May 9, 2025, 4:31 p.m. πŸ”„ Last Modified: Oct. 23, 2025, 8:06 p.m.

6.5

CVSS3.1

CVE-2024-8973 - Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.9.8, from 17.10 prior to 17.10.6, and from 17.11 prior to 17.11.2. It was possible to cause a DoS condition via GitHub import requests using a malicious crafted payload.

πŸ“… Published: May 9, 2025, 4:14 p.m. πŸ”„ Last Modified: Aug. 8, 2025, 4:54 p.m.

6.8

CVSS3.1

CVE-2025-0549 - Authentication Bypass Using an Alternate Path or Channel in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.3 prior to 17.9.8, from 17.10 prior to 17.10.6, and from 17.11 prior to 17.11.2. A security vulnerability allows attackers to bypass Device OAuth flow protections, enabling authorization form submission through min…

πŸ“… Published: May 9, 2025, 4:13 p.m. πŸ”„ Last Modified: Aug. 8, 2025, 4:54 p.m.

5.3

CVSS3.1

CVE-2025-1278 - Insufficient Granularity of Access Control in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 12.0 before 17.9.8, 17.10 before 17.10.6, and 17.11 before 17.11.2. Under certain conditions users could bypass IP access restrictions and view sensitive information.

πŸ“… Published: May 9, 2025, 4:13 p.m. πŸ”„ Last Modified: Aug. 8, 2025, 6:32 p.m.

7.8

CVSS3.1

CVE-2024-9524 - Privilege Escalation Vulnerability in Avira Prime Version 1.1.96.2

Link Following Local Privilege Escalation Vulnerability in System Speedup Service in Avira Operations GmbH Avira Prime Version 1.1.96.2 on Windows 10 x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a T…

πŸ“… Published: May 9, 2025, 3:37 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-13962 - Link Following Local Privilege Escalation Vulnerability in Avast Cleanup Premium Version 24.2.16593…

Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Gen Digital Inc. Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging…

πŸ“… Published: May 9, 2025, 3:20 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-13961 - Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability

Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-…

πŸ“… Published: May 9, 2025, 3:20 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-13960 - Link Following Local Privilege Escalation Vulnerability in AVG TuneUp Version 23.4

Link Following Local Privilege Escalation Vulnerability in TuneUp Service in AVG TuneUp Version 23.4 (build 15592) on Windows 10 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to …

πŸ“… Published: May 9, 2025, 3:20 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 5473 of 34,919
Β« previous page Β» next page
Filters