-
CVE-2025-0398 – Longpi1 Warehouse Cross Site Scripting in Backend
CVE ID : CVE-2025-0398 Published : Jan. 12, 2025, 2:15 p.m. | 1 hour, 50 minutes ago Description : A vulnerability has been found in longpi1 warehouse 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /resources/..;/inport/updateInport of the component Backend. The manipulation of the argument remark leads to cross…
-
CVE-2025-0397 – Reckn SPPanAdmin Cross-Site Scripting (XSS)
CVE ID : CVE-2025-0397 Published : Jan. 12, 2025, 1:15 p.m. | 2 hours, 50 minutes ago Description : A vulnerability, which was classified as problematic, was found in reckcn SPPanAdmin 1.0. Affected is an unknown function of the file /;/admin/role/edit. The manipulation of the argument name leads to cross site scripting. It is possible to launch…
-
CVE-2025-0396 – Exelban Stats XPC Service Command Injection Vulnerability
CVE ID : CVE-2025-0396 Published : Jan. 12, 2025, 12:15 p.m. | 3 hours, 50 minutes ago Description : A vulnerability, which was classified as critical, has been found in exelban stats up to 2.11.21. This issue affects the function shouldAcceptNewConnection of the component XPC Service. The manipulation leads to command injection. It is possible to launch…
-
BlackPwn: BlackPhone SilentText Type Confusion Vulnerability
Privacy is a hot topic at the moment – it continues to dominate the headlines as news of new NSA incursions, celebrity phone hacks, and corporate breaches are being reported on an increasingly regular basis. In response to this, a number of products have been brought to market that attempt to provide consumers with a…