Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-12 | CVE-2025-1225 | A vulnerability, which was classified as problematic, has been found in ywoa up to 2024.07.03. | 6.3 |
| 2025-02-12 | CVE-2025-25343 | Classic Buffer Overflow vulnerability in Tenda AC6 Firmware 15.03.05.16 Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function. | 9.8 |
| 2025-02-12 | CVE-2024-6097 | Path Traversal vulnerability in Progress Telerik Reporting In Progress® Telerik® Reporting versions prior to 2025 Q1 (19.0.25.211), information disclosure is possible by a local threat actor through an absolute path vulnerability. | 5.3 |
| 2025-02-12 | CVE-2025-1213 | A vulnerability was found in pihome-shc PiHome 1.77. | 3.5 |
| 2025-02-12 | CVE-2024-11628 | Unspecified vulnerability in Telerik Kendo UI for VUE In Progress® Telerik® Kendo UI for Vue versions v2.4.0 through v6.0.1, an attacker can introduce or modify properties within the global prototype chain which can result in denial of service or command injection. | 7.2 |
| 2025-02-12 | CVE-2024-11629 | Files or Directories Accessible to External Parties vulnerability in Progress Telerik Document Processing Libraries In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205), using .NET Standard 2.0, the contents of a file at an arbitrary path can be exported to RTF. | 6.5 |
| 2025-02-12 | CVE-2025-1209 | Cross-site Scripting vulnerability in Anisha Wazifa System 1.0 A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0. | 5.4 |
| 2025-02-12 | CVE-2025-1210 | SQL Injection vulnerability in Anisha Wazifa System 1.0 A vulnerability classified as critical was found in code-projects Wazifa System 1.0. | 8.8 |
| 2025-02-12 | CVE-2025-25742 | Out-of-bounds Write vulnerability in Dlink Dir-853 Firmware 1.20B07 D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the AccountPassword parameter in the SetSysEmailSettings module. | 9.8 |
| 2025-02-12 | CVE-2025-25743 | Command Injection vulnerability in Dlink Dir-853 Firmware 1.20B07 D-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the SetVirtualServerSettings module. | 7.2 |