General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-55948 | This vulnerability fundamentally arises from yzcheng90 X-SpringBoot 6.0's implementation of role-based access control (… | High (7.3) | 2025-12-04 | General-Purpose |
| CVE-2025-27935 | The OTP Integration Kit for PingFederate fails to enforce HTTP method validation and state validation properly. The ser… | Unknown | 2025-12-04 | General-Purpose |
| CVE-2025-13543 | The PostGallery plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in t… | High (8.8) | 2025-12-04 | General-Purpose |
| CVE-2024-58278 | perl2exe <= V30.10C contains an arbitrary code execution vulnerability that allows local authenticated attackers to exe… | Unknown | 2025-12-04 | General-Purpose |
| CVE-2024-58276 | Obi08/Enrollment System 1.0 contains a SQL injection vulnerability in the keyword parameter of /get_subject.php that al… | Unknown | 2025-12-04 | General-Purpose |