Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-03 | CVE-2024-45779 | Unspecified vulnerability in GNU Grub2 An integer overflow flaw was found in the BFS file system driver in grub2. | 6.0 |
| 2025-03-03 | CVE-2024-45780 | Unspecified vulnerability in GNU Grub2 A flaw was found in grub2. | 6.7 |
| 2025-03-03 | CVE-2024-8261 | Unspecified vulnerability in Prolizyazilim Student Affairs Information System 23.04.01 Authorization Bypass Through User-Controlled Key vulnerability in Proliz Software OBS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects OBS: before 24.0927. | 5.9 |
| 2025-03-03 | CVE-2024-8262 | Unspecified vulnerability in Prolizyazilim Student Affairs Information System 23.04.01 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Proliz Software OBS allows Path Traversal.This issue affects OBS: before 24.0927. | 6.2 |
| 2025-03-03 | CVE-2025-1801 | A flaw was found in the Ansible aap-gateway. | 8.1 |
| 2025-03-03 | CVE-2024-54179 | IBM Business Automation Workflow and IBM Business Automation Workflow Enterprise Service Bus 24.0.0, 24.0.1 and earlier unsupported versions are vulnerable to cross-site scripting. | 5.4 |
| 2025-03-03 | CVE-2025-23526 | Cross-site Scripting vulnerability in Swiftcloud Swift Calendar Online Appointment Scheduling Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Swift Calendar Online Appointment Scheduling allows Reflected XSS. | 6.1 |
| 2025-03-03 | CVE-2025-26917 | Cross-site Scripting vulnerability in Hasthemes WP Templata Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HasThemes WP Templata allows Reflected XSS. | 6.1 |
| 2025-03-03 | CVE-2025-26918 | Cross-site Scripting vulnerability in Eniture Small Package Quotes Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in enituretechnology Small Package Quotes – Unishippers Edition allows Reflected XSS. | 6.1 |
| 2025-03-03 | CVE-2025-26967 | Deserialization of Untrusted Data vulnerability in Stiofan Events Calendar for GeoDirectory allows Object Injection. | 8.8 |