General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-61623 | Reflected cross-site scripting vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.03. Users… | Medium (6.5) | 2025-11-12 | General-Purpose |
| CVE-2025-59118 | Unrestricted Upload of File with Dangerous Type vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before… | High (7.3) | 2025-11-12 | General-Purpose |
| CVE-2025-37734 | Origin Validation Error in Kibana can lead to Server-Side Request Forgery via a forged Origin HTTP header processed by … | Medium (4.3) | 2025-11-12 | General-Purpose |
| CVE-2025-12382 | Improper Limitation of a Pathname 'Path Traversal') vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows … | High (8.8) | 2025-11-12 | General-Purpose |
| CVE-2025-11962 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in DivvyDrive… | High (7.3) | 2025-11-12 | General-Purpose |