|
221
|
- |
|
-
|
-
|
TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is…
New
|
CWE-352
CWE-749
Origin Validation Error
Exposed Dangerous Method or Function
|
CVE-2024-55893
|
2025-01-15 05:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222
|
- |
|
-
|
-
|
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation Mediawiki - SocialProfile Extension allows Functionality Misuse.This issue affects Mediawiki - SocialP…
New
|
-
|
CVE-2025-23074
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - RefreshSpecial Extension allows Cross-Site Scripting (XSS…
New
|
-
|
CVE-2025-23072
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224
|
- |
|
-
|
-
|
Umbraco.Forms is a web form framework written for the nuget ecosystem. Character limits configured by editors for short and long answer fields are validated only client-side, not server-side. This is…
New
|
CWE-20
Improper Input Validation
|
CVE-2025-23041
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
225
|
7.8 |
HIGH
Local
|
-
|
-
|
Illustrator on iPad versions 3.0.7 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user…
New
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2025-21134
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226
|
7.8 |
HIGH
Local
|
-
|
-
|
Illustrator on iPad versions 3.0.7 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user…
New
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2025-21133
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
227
|
7.8 |
HIGH
Local
|
-
|
-
|
Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of …
New
|
CWE-787
Out-of-bounds Write
|
CVE-2025-21132
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
228
|
7.8 |
HIGH
Local
|
-
|
-
|
Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of …
New
|
CWE-787
Out-of-bounds Write
|
CVE-2025-21131
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
229
|
7.8 |
HIGH
Local
|
-
|
-
|
Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of …
New
|
CWE-787
Out-of-bounds Write
|
CVE-2025-21130
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
230
|
- |
|
-
|
-
|
Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Gradio's Access Control List (ACL) …
New
|
CWE-285
Improper Authorization
|
CVE-2025-23042
|
2025-01-15 04:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
