CVSS: 9.3EPSS: 0%CPEs: -EXPL: 0CVE-2025-34143 – ETQ Reliance CG Authentication Bypass via Trailing Space RCE
https://notcve.org/view.php?id=CVE-2025-34143
22 Jul 2025 — Once authenticated, an attacker could achieve remote code execution by modifying Jython scripts within the application. • https://slcyber.io/assetnote-security-research-center/how-we-accidentally-discovered-a-remote-code-execution-vulnerability-in-etq-reliance • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE-269: Improper Privilege Management CWE-288: Authentication Bypass Using an Alternate Path or Channel •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7427 – Uncontrolled Search Path Element in Arm Development Studio before 2025
https://notcve.org/view.php?id=CVE-2025-7427
22 Jul 2025 — Uncontrolled Search Path Element in Arm Development Studio before 2025 may allow an attacker to perform a DLL hijacking attack. Uncontrolled Search Path Element in Arm Development Studio before 2025 may allow an attacker to perform a DLL hijacking attack. Successful exploitation could lead to local arbitrary code execution in the context of the user running Arm Development Studio. Successful exploitation could lead to local arbitrary code execution in ... • https://developer.arm.com/documentation/110691 • CWE-427: Uncontrolled Search Path Element •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-7951 – code-projects Public Chat Room send_message.php cross site scripting
https://notcve.org/view.php?id=CVE-2025-7951
22 Jul 2025 — A vulnerability classified as problematic has been found in code-projects Public Chat Room 1.0. ... Es wurde eine Schwachstelle in code-projects Public Chat Room 1.0 entdeckt. • https://code-projects.org • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2025-7946 – PHPGurukul Apartment Visitors Management System HTTP POST Request search-visitor.php cross site scripting
https://notcve.org/view.php?id=CVE-2025-7946
22 Jul 2025 — A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search-visitor.php of the component HTTP POST Request Handler. The manipulation of the argument searchdata leads to cross site scripting. The attack may be initiated remotely. • https://github.com/HieuGITLAB/my-cves/issues/11 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7977 – Ashlar-Vellum Cobalt LI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7977
22 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7978 – Ashlar-Vellum Graphite VC6 File Parsing Uninitialized Variable Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7978
22 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7979 – Ashlar-Vellum Graphite VC6 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7979
22 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7980 – Ashlar-Vellum Graphite VC6 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7980
22 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7981 – Ashlar-Vellum Graphite VC6 File Parsing Uninitialized Variable Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7981
22 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7982 – Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7982
22 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •