General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-65960 | Contao is an Open Source CMS. From version 4.0.0 to before 4.13.57, before 5.3.42, and before 5.6.5, back end users wit… | Medium (6.6) | 2025-11-25 | General-Purpose |
| CVE-2025-64065 | The Primakon Pi Portal 1.0.18 API /api/V2/pp_udfv_admin endpoint, fails to perform necessary server-side validation. Th… | High (8.8) | 2025-11-25 | General-Purpose |
| CVE-2025-64064 | Primakon Pi Portal 1.0.18 /api/v2/pp_users endpoint fails to adequately check user permissions before processing a PATC… | High (8.8) | 2025-11-25 | General-Purpose |
| CVE-2025-64063 | Primakon Pi Portal 1.0.18 API endpoints fail to enforce sufficient authorization checks when processing requests. Speci… | Critical (9.8) | 2025-11-25 | General-Purpose |
| CVE-2025-61168 | An issue in the cms_rest.php component of SIGB PMB v8.0.1.14 allows attackers to execute arbitrary code via unserializi… | Critical (9.8) | 2025-11-25 | General-Purpose |