Mano257200

#12303of 53,630
22.1Total CVSS
Vulnerabilities · 4
Medium
3
High
1
PT-2025-30092
7.5
2025-07-18
Unknown · Perplexity Ai Gpt-4 · CVE-2025-50708
**Name of the Vulnerable Software and Affected Versions** Perplexity AI GPT-4 version 2.51.0 **Description** An issue allows a remote attacker to obtain sensitive information via the `token` component in the shared chat URL. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-38157
4.3
2025-07-18
Perplexity Ai · Perplexity Ai Gpt-4 · CVE-2025-50709
**Name of the Vulnerable Software and Affected Versions** Perplexity AI GPT-4 (affected versions not specified) **Description** An issue in Perplexity AI GPT-4 allows a remote attacker to obtain sensitive information via a GET parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-7124
4.2
2025-02-18
Webkul · Webkul Qloapps · CVE-2025-26058
Name of the Vulnerable Software and Affected Versions: Webkul QloApps version 1.6.1 Description: The issue exposes authentication tokens in URLs during redirection. When users access the admin panel or other protected areas, the application appends sensitive authentication tokens directly to the URL. Recommendations: For Webkul QloApps version 1.6.1, consider modifying the application to prevent appending authentication tokens to URLs during redirection, or implement an alternative secure method for handling user authentication. As a temporary workaround, restrict access to the admin panel and other protected areas to minimize the risk of exploitation.
PT-2025-6102
6.1
2025-02-10
Webkul · Webkul Qloapps · CVE-2025-1155
**Name of the Vulnerable Software and Affected Versions** Webkul QloApps version 1.6.1 **Description** A problematic vulnerability was found in Webkul QloApps, affecting an unknown part of the file /stores of the component Your Location Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The issue is planned to be addressed by removing the affected page in the long term. **Recommendations** For Webkul QloApps version 1.6.1, consider restricting access to the /stores component of Your Location Search until a fix is available. As a temporary workaround, disabling the affected part of the Your Location Search component may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.