Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.1 PACKETSTORM:212537

πŸ“„ Django 5.1.13 SQL Injection_PACKETSTORM:212537

Django version 5.1.13 remote SQL injection vulnerability scanning script...

N/A N/A PACKETSTORM
CRITICAL 10 PACKETSTORM:212538

πŸ“„ Craft CMS 5.0 Logic Flaw_PACKETSTORM:212538

A flaw in the Craft CMS image transform endpoint allows an unauthenticated attacker to trigger backend processing without prior authentication. Whi...

N/A N/A PACKETSTORM
HIGH 7.8 PACKETSTORM:212542

πŸ“„ Microsoft Windows LNK File UI Misrepresentation Remote Code Execution_PACKETSTORM:212542

A critical vulnerability exists in Microsoft Windows LNK file handling that allows attackers to create malicious shortcut files that appear legitim...

N/A N/A PACKETSTORM
CRITICAL 10 PACKETSTORM:212536

πŸ“„ DNN Platform Pre‑10.1.1 Arbitrary File Upload_PACKETSTORM:212536

DNN Platform version Pre‑10.1.1 suffers from an unauthenticated arbitrary file upload vulnerability. This software was formerly known as DotNetNuke...

N/A N/A PACKETSTORM
NONE PACKETSTORM:212541

πŸ“„ Zimbra Collaboration Suite Postjournal 9.0.0 Remote Command Execution_PACKETSTORM:212541

A critical vulnerability exists in the Zimbra Collaboration Suite ZCS PostJournal service that allows attackers to execute arbitrary system command...

N/A N/A PACKETSTORM
MEDIUM 6.5 PACKETSTORM:212539

πŸ“„ ClipBucket 5.5.2 Build 90 Practical Exploitation Tool_PACKETSTORM:212539

An enhanced Python penetration testing tool designed specifically for ClipBucket video sharing platform vulnerability assessment and exploitation. ...

N/A N/A PACKETSTORM
HIGH 7.4 PACKETSTORM:212540

πŸ“„ YOURLS 1.8.2 CSRF / IDOR / Missing Authorization_PACKETSTORM:212540

YOURLS version 1.8.2 AJAX endpoint scanner that checks for cross site request forgery, insecure direct object reference, missing authorization, and...

N/A N/A PACKETSTORM
NONE PACKETSTORM:212532

πŸ“„ Coohom SaaS Cross Site Scripting_PACKETSTORM:212532

Coohoom SaaS is susceptible to a persistent cross site scripting vulnerability...

N/A N/A PACKETSTORM
MEDIUM 6.5 PACKETSTORM:212535

πŸ“„ Cinnamon kotaemon 0.11.0 ZIP Bomb_PACKETSTORM:212535

Cinnamon kotaemon version 0.11.0 zip bomb proof of concept denial of service exploit...

N/A N/A PACKETSTORM
HIGH 8.8 PACKETSTORM:212534

πŸ“„ Cacti 1.2.29 Remote Command Execution_PACKETSTORM:212534

Proof of concept exploit that demonstrates how authenticated users with access to Graph Templates in Cacti can abuse RRD invocation parameters to w...

N/A N/A PACKETSTORM