CVE-2025-4361 – PHPGurukul Company Visitor Management System SQL Injection Vulnerability

CVE ID : CVE-2025-4361

Published : May 6, 2025, 3:16 p.m. | 19 minutes ago

Description : A vulnerability classified as critical has been found in PHPGurukul Company Visitor Management System 2.0. This affects an unknown part of the file /department.php. The manipulation of the argument departmentname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-4362 – iSourcecode Gym Management System SQL Injection

CVE ID : CVE-2025-4362

Published : May 6, 2025, 3:16 p.m. | 19 minutes ago

Description : A vulnerability classified as critical was found in itsourcecode Gym Management System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=save_membership. The manipulation of the argument member_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-4373 – GLib Integer Overflow Buffer Underwrite

CVE ID : CVE-2025-4373

Published : May 6, 2025, 3:16 p.m. | 19 minutes ago

Description : A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

Severity: 4.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-4374 – Quay Unauthorized Privilege Escalation Vulnerability

CVE ID : CVE-2025-4374

Published : May 6, 2025, 3:16 p.m. | 19 minutes ago

Description : A flaw was found in Quay. When an organization acts as a proxy cache, and a user or robot pulls an image that hasn’t been mirrored yet, they are granted “Admin” permissions on the newly created repository.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Distribution Release: Clonezilla Live 3.2.1-28

The DistroWatch news feed is brought to you by TUXEDO COMPUTERS. Clonezilla Live is a minimal, live distribution which provides tools for cloning and restoring disk and partition images. The project’s latest release, version 3.2.1-28, is based on Ubuntu 25.04. “The underlying GNU/Linux operating system has been upgraded, this release is based on the Ubuntu 25.04 ‘Plucky Puffin’ repository,….