March 2025

CVE ID : CVE-2025-30217 Published : March 26, 2025, 5:15 p.m. | 43 minutes ago Description : Frappe is a full-stack web application framework. Prior to versions 14.93.2 and 15.55.0, a SQL Injection vulnerability has been identified in Frappe Framework which could allow a malicious actor to access sensitive information. Versions 14.93.2 and 15.55.0 contain a […]

CVE ID : CVE-2025-30225 Published : March 26, 2025, 5:15 p.m. | 43 minutes ago Description : Directus is a real-time API and App dashboard for managing SQL database content. The `@directus/storage-driver-s3` package starting in version 9.22.0 and prior to version 12.0.1, corresponding to Directus starting in version 9.22.0 and prior to 11.5.0, is vulnerable to

CVE ID : CVE-2025-30164 Published : March 26, 2025, 5:15 p.m. | 43 minutes ago Description : Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. A vulnerability in versions prior to 2.11.5 and 2.12.13 vulnerability allows an attacker to craft a URL that, once visited by an authenticated user (or

CVE ID : CVE-2025-30350 Published : March 26, 2025, 5:15 p.m. | 43 minutes ago Description : Directus is a real-time API and App dashboard for managing SQL database content. The `@directus/storage-driver-s3` package starting in version 9.22.0 and prior to version 12.0.1, corresponding to Directus starting in version 9.22.0 and prior to 11.5.0, is vulnerable to

CVE ID : CVE-2024-8315 Published : March 25, 2025, 5:15 a.m. | 42 minutes ago Description : An Improper Handling of Insufficient Permissions or Privileges vulnerability in scripts used in B&R APROL Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-2733 Published : March 25, 2025, 5:15 a.m. | 42 minutes ago Description : A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13. This affects an unknown part of the file app/tool/python_execute.py of the component Prompt Handler. The manipulation leads to os command injection. It is possible to

CVE ID : CVE-2025-2734 Published : March 25, 2025, 5:15 a.m. | 42 minutes ago Description : A vulnerability, which was classified as critical, was found in PHPGurukul Old Age Home Management System 1.0. Affected is an unknown function of the file /admin/aboutus.php. The manipulation of the argument pagetitle leads to sql injection. It is possible

CVE ID : CVE-2025-2735 Published : March 25, 2025, 5:15 a.m. | 42 minutes ago Description : A vulnerability has been found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-services.php. The manipulation of the argument sertitle leads to sql injection.

CVE ID : CVE-2025-2736 Published : March 25, 2025, 5:15 a.m. | 42 minutes ago Description : A vulnerability was found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/bwdates-report-details.php. The manipulation of the argument fromdate leads to sql injection. The

CVE ID : CVE-2025-2639 Published : March 23, 2025, 3:15 a.m. | 4 hours, 41 minutes ago Description : A vulnerability has been found in JIZHICMS up to 1.7.0 and classified as problematic. This vulnerability affects unknown code of the file /user/release.html of the component Article Handler. The manipulation leads to improper authorization. The attack can be