General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-31501 | Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink. | High (7.2) | 2025-05-28 | General-Purpose |
| CVE-2025-31500 | Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an Asset name. | High (7.2) | 2025-05-28 | General-Purpose |
| CVE-2025-30087 | Best Practical RT (Request Tracker) 4.4 through 4.4.7 and 5.0 through 5.0.7 allows XSS via injection of crafted paramet… | High (7.2) | 2025-05-28 | General-Purpose |
| CVE-2025-1461 | Improper neutralization of the value of the 'eventMoreText' property of the 'VCalendar' component in Vuetify allows uns… | Medium (5.6) | 2025-05-28 | General-Purpose |
| CVE-2024-57338 | An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.… | Medium (6.5) | 2025-05-28 | General-Purpose |