7.5

CVSS3.1

CVE-2025-6021 - Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.

๐Ÿ“… Published: June 12, 2025, midnight ๐Ÿ”„ Last Modified: April 20, 2026, 3:45 p.m.

5.4

CVSS3.1

CVE-2025-44091 -

yangyouwang crud v1.0.0 is vulnerable to Cross Site Scripting (XSS) via the role management function.

๐Ÿ“… Published: June 12, 2025, midnight ๐Ÿ”„ Last Modified: July 2, 2025, 3:52 p.m.

7.5

CVSS3.1

CVE-2024-55567 -

Improper input validation was discovered in UsbCoreDxe in Insyde InsydeH2O kernel 5.4 before 05.47.01, 5.5 before 05.55.01, 5.6 before 05.62.01, and 5.7 before 05.71.01. The SMM module has an SMM call out vulnerability which can be used to write arbitrary memory inside SMRAM and execute arbitrary cโ€ฆ

๐Ÿ“… Published: June 12, 2025, midnight ๐Ÿ”„ Last Modified: Aug. 20, 2025, 5:31 p.m.

5.4

CVSS3.1

CVE-2025-29744 -

pg-promise before 11.5.5 is vulnerable to SQL Injection due to improper handling of negative numbers.

๐Ÿ“… Published: June 12, 2025, midnight ๐Ÿ”„ Last Modified: July 2, 2025, 3:55 p.m.

9.2

CVSS4.0

CVE-2025-30085 - Extension - rsjoomla.com - Remote code execution vulnerability in RSForm!pro component 3.0.0 - 3.3.โ€ฆ

Remote code execution vulnerability in RSForm!pro component 3.0.0 - 3.3.14 for Joomla was discovered. The issue occurs within the submission export feature and requires administrative access to the export feature.

๐Ÿ“… Published: June 11, 2025, 7:07 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.7

CVSS4.0

CVE-2025-32466 - Extension - rsjoomla.com - SQL injection vulnerability in RSMediaGallery! component 1.7.4 - 2.1.7 fโ€ฆ

A SQL injection vulnerability in RSMediaGallery! component 1.7.4 - 2.1.7 for Joomla was discovered. The issue occurs within the dashboard component, where user-supplied input is not properly sanitized before being stored and rendered. An attacker can inject malicious JavaScript code into text fielโ€ฆ

๐Ÿ“… Published: June 11, 2025, 7:07 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.5

CVSS4.0

CVE-2025-32465 - Extension - rsjoomla.com - Stored XSS vulnerability in RSTickets! component 1.9.12 - 3.3.0 for Joomโ€ฆ

A stored XSS vulnerability in RSTickets! component 1.9.12 - 3.3.0 for Joomla was discovered. It allows attackers to perform cross-site scripting (XSS) attacks via sending crafted payload.

๐Ÿ“… Published: June 11, 2025, 7:07 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2025-6010 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

๐Ÿ“… Published: June 11, 2025, 6:55 p.m. ๐Ÿ”„ Last Modified: Feb. 10, 2026, 5:56 p.m.

5.9

CVSS3.1

CVE-2025-49150 - Cursor Agent Potentially Leaks Information using JSON schema

Cursor is a code editor built for programming with AI. Prior to 0.51.0, by default, the setting json.schemaDownload.enable was set to True. This means that by writing a JSON file, an attacker can trigger an arbitrary HTTP GET request that does not require user confirmation. Since the Cursor Agent cโ€ฆ

๐Ÿ“… Published: June 11, 2025, 5:49 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.8

CVSS3.1

CVE-2025-40912 - CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed uniโ€ฆ

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.

๐Ÿ“… Published: June 11, 2025, 5:48 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 346103
Page 4740 of 34,611
ยซ previous page ยป next page
Filters