General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-6512 | On a client with a non-admin user, a script can be integrated into a report. The reports could later be executed on the… | Critical (10.0) | 2025-06-23 | General-Purpose |
| CVE-2025-52922 | Innoshop through 0.4.1 allows directory traversal via FileManager API endpoints. An authenticated attacker with access … | High (7.4) | 2025-06-23 | General-Purpose |
| CVE-2025-52921 | In Innoshop through 0.4.1, an authenticated attacker could exploit the File Manager functions in the admin panel to ach… | Critical (9.9) | 2025-06-23 | General-Purpose |
| CVE-2025-23049 | Meridian Technique Materialise OrthoView through 7.5.1 allows OS Command Injection when servlet sharing is enabled. | Unknown | 2025-06-23 | General-Purpose |
| CVE-2025-52939 | Out-of-bounds Write vulnerability in dail8859 NotepadNext (src/lua/src modules). This vulnerability is associated with … | Unknown | 2025-06-23 | General-Purpose |