General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-64046 | OpenRapid RapidCMS 1.3.1 is vulnerable to Cross Site Scripting (XSS) in /system/update-run.php. | Medium (6.1) | 2025-11-17 | General-Purpose |
| CVE-2025-63916 | MyScreenTools v2.2.1.0 contains a critical OS command injection vulnerability in the GIF compression tool. The applicat… | High (8.1) | 2025-11-17 | General-Purpose |
| CVE-2025-63748 | QaTraq 6.9.2 allows authenticated users to upload arbitrary files via the "Add Attachment" feature in the "Test Script"… | High (8.8) | 2025-11-17 | General-Purpose |
| CVE-2025-63747 | QaTraq 6.9.2 ships with administrative account credentials which are enabled in default installations and permit immedi… | Critical (9.8) | 2025-11-17 | General-Purpose |
| CVE-2025-63708 | Cross-Site Scripting (XSS) vulnerability exists in SourceCodester AI Font Matcher (nid=18425, 2025-10-10) that allows r… | Medium (6.1) | 2025-11-17 | General-Purpose |