General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-48340 | Cross-Site Request Forgery (CSRF) vulnerability in Danny Vink User Profile Meta Manager allows Privilege Escalation.Thi… | Critical (9.8) | 2025-05-19 | General-Purpose |
| CVE-2025-3223 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in GE Vernova WorkstationS… | Medium (5.9) | 2025-05-19 | General-Purpose |
| CVE-2025-47949 | samlify is a Node.js library for SAML single sign-on. A Signature Wrapping attack has been found in samlify prior to ve… | Unknown | 2025-05-19 | General-Purpose |
| CVE-2025-47946 | Symfony UX is an initiative and set of libraries to integrate JavaScript tools into applications. Prior to version 2.25… | Medium (6.1) | 2025-05-19 | General-Purpose |
| CVE-2025-47944 | Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability that is present starting in version … | High (7.5) | 2025-05-19 | General-Purpose |