Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.5 CVE-2025-55298

ImageMagick Format String Bug in InterpretImageFilename leads to arbitrary code execution_CVE-2025-55298

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2,...

ImageMagick ImageMagick < 7.1.2-2 CVE
HIGH 7.5 CVE-2025-57803

ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride β†’ heap buffer overflow_CVE-2025-57803

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2 for ImageMag...

ImageMagick ImageMagick < 7.1.2-2 CVE
HIGH 7.2 CVE-2025-36729

RACOM M!DGE2 Privilege Escalation via SDK Testing Endpoint_CVE-2025-36729

A non-primary administrator user with admin rights to the web interface but without shell access permissions can display configuration of the devic...

RACOM M!DGE2 4.0 CVE
HIGH 7.4 CVE-2025-2697

IBM Cognos Command Center HTTP Open Redirect_CVE-2025-2697

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persua...

IBM Cognos Command Center 10.2.4.1 CVE
HIGH 7.8 CVE-2025-1994

IBM Cognos Command Center code execution_CVE-2025-1994

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of ...

IBM Cognos Command Center 10.2.4.1 CVE
HIGH 8.8 PACKETSTORM:208857

πŸ“„ GeoVision ASManager Windows Application 6.1.2.0 Remote Code Execution_PACKETSTORM:208857

GeoVision.............................................

N/A N/A PACKETSTORM
HIGH 8.8 PACKETSTORM:208848

πŸ“„ Ivanti Endpoint Manager Mobile 12.5.0.0 Authentication Bypass_PACKETSTORM:208848

Ivanti................................................

N/A N/A PACKETSTORM
HIGH 8.7 CVE-2025-57810

jsPDF Parsing of Corrupt PNGs Leads to Potential Denial of Service (DoS)_CVE-2025-57810

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.2, user control of the first argument of the addImage method results in CPU utiliza...

parallax jsPDF < 3.0.2 CVE
HIGH 7.5 CVE-2025-29421

CVE-2025-29421_CVE-2025-29421

PerfreeBlog v4.0.11 has an arbitrary file read vulnerability in the getThemeFileContent function.

n/a n/a n/a CVE
HIGH 8.8 CVE-2025-6366

Event List <= 2.0.4 - Authenticated (Subscriber+) Privilege Escalation_CVE-2025-6366

The Event List plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.0.4. This is due to the plugin no...

ovatheme.com Event List * CVE