Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
H Deserialization of Untrusted Data	pdfminer.six[,20251107)	pip	9 Nov 2025
M Missing Authorization	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
M Missing Authorization	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
C Command Injection	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
M Premature Release of Resource During Expected Lifetime	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
M Premature Release of Resource During Expected Lifetime	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
M Premature Release of Resource During Expected Lifetime	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
H Directory Traversal	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
C Brute Force	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
M Cross-site Scripting (XSS)	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
H Cross-site Scripting (XSS)	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	9 Nov 2025
M Deserialization of Untrusted Data	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
C Arbitrary File Upload	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
H Arbitrary File Upload	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
H Command Injection	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
C Arbitrary File Upload	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
H Arbitrary File Upload	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
C XML Injection	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
M Cross-site Scripting (XSS)	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
C XML Injection	magento/community-edition<2.3.7-p1>=2.4.0, <2.4.2-p2	Composer	9 Nov 2025
M Incorrect Default Permissions	kubevirt.io/kubevirt>=0.0.0	Go	9 Nov 2025
M Incorrect Default Permissions	github.com/kubevirt/kubevirt>=0.0.0	Go	9 Nov 2025
M Improper Neutralization	github.com/charmbracelet/soft-serve/pkg/ssh/cmd<0.11.0	Go	9 Nov 2025
M Improper Neutralization	github.com/charmbracelet/soft-serve/pkg/backend<0.11.0	Go	9 Nov 2025
H Resource Management Errors	readstat[0,]	Conan	8 Nov 2025
H Resource Management Errors	readstat[0,]	Conan	8 Nov 2025
H Out-of-Bounds	readstat[0,]	Conan	8 Nov 2025
M Command Injection	magento/community-edition<2.4.4-p10>=2.4.5-p1, <2.4.5-p9>=2.4.6-p1, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	7 Nov 2025
H Incorrect Privilege Assignment	apollo-router<1.61.12>=2.0.0-alpha.2 <2.8.1	Cargo	7 Nov 2025
H Authentication Bypass Using an Alternate Path or Channel	apollo-router<1.61.12>=2.0.0-alpha.2 <2.8.1	Cargo	7 Nov 2025

APPLICATION

OPERATING SYSTEM