| 2025-01-29 | CVE-2025-0806 | Code Injection vulnerability in Anisha JOB Recruitment 1.0
A vulnerability was found in code-projects Job Recruitment 1.0. | 6.1 |
| 2025-01-29 | CVE-2023-33838 | IBM Security Verify Governance 10.0.2 Identity Manager uses a one-way cryptographic hash against an input that should not be reversible, such as a password, but the product does not also use a salt as part of the input. | 4.4 |
| 2025-01-29 | CVE-2025-0800 | Cross-site Scripting vulnerability in Argie Online Courseware 1.0
A vulnerability classified as problematic has been found in SourceCodester Online Courseware 1.0. | 4.8 |
| 2025-01-28 | CVE-2025-0783 | A vulnerability, which was classified as problematic, was found in pankajindevops scale up to 20241113. | 6.3 |
| 2025-01-28 | CVE-2024-11956 | A vulnerability, which was classified as critical, has been found in Pimcore customer-data-framework up to 4.2.0. | 4.7 |
| 2025-01-28 | CVE-2025-0752 | A flaw was found in OpenShift Service Mesh 2.6.3 and 2.5.6. | 6.3 |
| 2025-01-28 | CVE-2025-0754 | The vulnerability was found in OpenShift Service Mesh 2.6.3 and 2.5.6. | 4.3 |
| 2025-01-28 | CVE-2024-13527 | Cross-site Scripting vulnerability in Philantro
The Philantro – Donations and Donor Management plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes like 'donate' in all versions up to, and including, 5.3 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2025-01-28 | CVE-2025-0736 | A flaw was found in Infinispan, when using JGroups with JDBC_PING. | 5.5 |
| 2025-01-28 | CVE-2024-13521 | Cross-Site Request Forgery (CSRF) vulnerability in Ilghera Mailup Auto Subscription
The MailUp Auto Subscription plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.0. | 5.4 |