An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to ins…

In certain situations it is possible for an unmanaged rule to exist on the target system that h…

Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to b…

HedgeDoc is an open source, real-time, collaborative, markdown notes application. When using He…

Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion…

The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to a…

Mercure is a protocol for pushing data updates to web browsers and other HTTP clients in a batt…

Improper input validation in the apps and endpoints configuration in PowerShell Universal befor…

Parse Dashboard is a standalone dashboard for managing Parse Server apps. In versions 7.3.0-alp…

Net::CIDR::Lite versions before 0.24 for Perl does not properly validate IP address and CIDR ma…

Net::CIDR::Lite versions before 0.24 for Perl does not properly consider extraneous zero charac…

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unic…

1Password 8 before 8.10.36 for macOS allows local attackers to exfiltrate vault items because X…

The Aqara Cloud OAuth Authorization Endpoint (open-cn.aqara.com/oauth/authorize) is vulnerable …

1Password 8 before 8.10.38 for macOS allows local attackers to exfiltrate vault items by bypass…

Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url all…

An incorrect startup configuration of affected versions of Zscaler Client Connector on Windows …

xdg-dbus-proxy is a filtering proxy for D-Bus connections. Prior to 0.1.7, a policy parser vuln…

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.8 before 18.8.4 t…