A vulnerability classified as critical was found in fastify-multipart up to 8.3.0/9.0.2. Affected by this vulnerability is the function saveRequestFiles of the component Temporary Files Handler. The manipulation leads to allocation of resources.
This …
A vulnerability classified as critical has been found in Directus up to 11.1.x. Affected is an unknown function. The manipulation leads to improper privilege management.
This vulnerability is traded as CVE-2025-24353. It is possible to launch the atta…
A vulnerability was found in IBM Security Verify Bridge up to 1.0.15. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to modification of assumed-immutable data.
The identification of this vulnerabil…
A vulnerability was found in zopefoundation RestrictedPython up to 7.x. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to type confusion.
This vulnerability was named CVE-2025-22153. The attack can…
A vulnerability was found in himmelblau up to 0.7.14/0.8.2. It has been classified as problematic. This affects the function logon_script of the file /etc/himmelblau/himmelblau.conf. The manipulation of the argument d leads to sensitive information in …
A vulnerability was found in IBM Tivoli Application Dependency Discovery Manager up to 7.3.0.11 and classified as problematic. Affected by this issue is some unknown functionality of the component Web UI. The manipulation leads to cross site scripting….
I’m designing a service to store secrets without relying on traditional mail-password system.
I will describe this service to give a bit more context for my questions, at the end.
secret The payload we want to store (encrypted) for the us…
A vulnerability has been found in ECOVACS Robot Lawn Mower and Robot Vacuum and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Anti-Theft PIN. The manipulation leads to cleartext storage of sensit…
A vulnerability has been found in ECOVACS Robot Lawn Mower and Robot Vacuum and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Anti-Theft PIN. The manipulation leads to cleartext storage of sensit…
A vulnerability, which was classified as problematic, was found in ECOVACS DEEBOT X5 PRO PLUS, DEEBOT X5 PRO, DEEBOT X2S, DEEBOT X2 OMNI, DEEBOT X1 TURBO, DEEBOT X1, DEEBOT X1S PRO, DEEBOT X1e OMNI, DEEBOT T10 PLUS, DEEBOT T10 OMNI, DEEBOT X5 PRO ULTRA…
