CVE News

High-Severity SQL Injection Vulnerability in WordPress Uptime Robot Plugin (CVE-2025-31547)

CVE News

High-Severity SQL Injection Vulnerability in WordPress Uptime Robot Plugin (CVE-2025-31547)

A high-severity SQL injection vulnerability (CVE-2025-31547) has been identified in the Aphotrax Uptime Robot Plugin for WordPress,...

Critical SQL Injection Vulnerability in PiExtract’s SOOP-CLM (CVE-2025-3011)

CVE News

Critical SQL Injection Vulnerability in PiExtract’s SOOP-CLM (CVE-2025-3011)

A critical SQL injection vulnerability (CVE-2025-3011) has been identified in PiExtract’s SOOP-CLM software, rated 9.8 (CRITICAL) on...

Critical Authentication Bypass in CHOCO TEI WATCHER mini Exposes Industrial Systems

CVE News

Critical Authentication Bypass in CHOCO TEI WATCHER mini Exposes Industrial Systems

A critical vulnerability (CVE-2025-25211) affecting all versions of the CHOCO TEI WATCHER mini (IB-MCT001) industrial monitoring device...

CISA Issues New ICS Advisory for Schneider Electric EcoStruxure Power Monitoring Expert

CVE News

CISA Issues New ICS Advisory for Schneider Electric EcoStruxure Power Monitoring Expert

The Cybersecurity and Infrastructure Security Agency (CISA) released an Industrial Control Systems (ICS) advisory on March 27,...

CISA Updates Known Exploited Vulnerabilities Catalog with Critical Chromium Sandbox Escape

CVE News

CISA Updates Known Exploited Vulnerabilities Catalog with Critical Chromium Sandbox Escape

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with CVE-2025-2783,...

CVE-2025-2249: WordPress SoJ SoundSlides Plugin Vulnerability Exposes Sites to Arbitrary File Uploads

CVE News

CVE-2025-2249: WordPress SoJ SoundSlides Plugin Vulnerability Exposes Sites to Arbitrary File Uploads

A critical vulnerability (CVE-2025-2249) in the WordPress SoJ SoundSlides plugin allows authenticated attackers with Contributor-level access or...

Meta Warns of Actively Exploited FreeType Vulnerability (CVE-2025-27363) with High-Severity RCE Risk

CVE News

Meta Warns of Actively Exploited FreeType Vulnerability (CVE-2025-27363) with High-Severity RCE Risk

Meta has issued a warning about an actively exploited vulnerability in the FreeType font rendering library, tracked...

Critical SQL Injection Vulnerability in SEMCMS (CVE-2025-25686): Analysis and Mitigation

CVE News

Critical SQL Injection Vulnerability in SEMCMS (CVE-2025-25686): Analysis and Mitigation

A critical SQL injection vulnerability (CVE-2025-25686) has been identified in SEMCMS versions 5.0 and earlier, posing significant...

Critical RCE Vulnerability in TOTOLINK A800R Routers (CVE-2025-28138)

CVE News

Critical RCE Vulnerability in TOTOLINK A800R Routers (CVE-2025-28138)

A critical remote code execution (RCE) vulnerability, tracked as CVE-2025-28138, has been identified in TOTOLINK A800R routers...

HTCondor Authorization Bypass Vulnerability (CVE-2025-30093): Technical Analysis and Mitigation

CVE News

HTCondor Authorization Bypass Vulnerability (CVE-2025-30093): Technical Analysis and Mitigation

A critical authorization bypass vulnerability in HTCondor, tracked as CVE-2025-30093, has been disclosed, affecting multiple versions of...

Apache NotFound PluginPass Path Traversal Vulnerability (CVE-2024-54291): Analysis and Mitigation

CVE News

Apache NotFound PluginPass Path Traversal Vulnerability (CVE-2024-54291): Analysis and Mitigation

A newly disclosed path traversal vulnerability (CVE-2024-54291) in Apache’s NotFound PluginPass has been rated with a high...

Critical SQL Injection Vulnerability in GLPI ITSM Tool (CVE-2025-24799): Analysis and Mitigation

CVE News

Critical SQL Injection Vulnerability in GLPI ITSM Tool (CVE-2025-24799): Analysis and Mitigation

A newly discovered SQL injection vulnerability in the widely used GLPI IT Service Management (ITSM) tool poses...

Mozilla Patches Critical Windows Sandbox Escape Flaw Linked to Chrome Zero-Day

CVE News

Mozilla Patches Critical Windows Sandbox Escape Flaw Linked to Chrome Zero-Day

Mozilla has issued an emergency update for Firefox on Windows to address a critical sandbox escape vulnerability...

Critical NetApp SnapCenter Vulnerability Allows Privilege Escalation to Remote Admin Access

CVE News

Critical NetApp SnapCenter Vulnerability Allows Privilege Escalation to Remote Admin Access

A critical security flaw in NetApp SnapCenter, tracked as CVE-2025-26512, could allow authenticated users to escalate privileges...

Firefox and Chrome Zero-Days Highlight Systemic Sandbox Risks

CVE News

Firefox and Chrome Zero-Days Highlight Systemic Sandbox Risks

Mozilla has released emergency updates to patch a critical sandbox escape vulnerability (CVE-2025-2857) in Firefox for Windows,...

Mobile Security & Malware Threats: Critical Vulnerabilities and Emerging Risks in March 2025

CVE News

Mobile Security & Malware Threats: Critical Vulnerabilities and Emerging Risks in March 2025

The fourth week of March 2025 has brought significant developments in mobile security and malware, with critical...

High-Severity Missing Authorization Flaw in Shinetheme Traveler WordPress Theme (CVE-2025-26733)

CVE News

High-Severity Missing Authorization Flaw in Shinetheme Traveler WordPress Theme (CVE-2025-26733)

A high-severity vulnerability (CVE-2025-26733) has been identified in the Shinetheme Traveler WordPress theme, affecting versions up to...

Critical RCE Vulnerability in Shinetheme Traveler (CVE-2025-26873): Analysis and Mitigation

CVE News

Critical RCE Vulnerability in Shinetheme Traveler (CVE-2025-26873): Analysis and Mitigation

A critical remote code execution (RCE) vulnerability, tracked as CVE-2025-26873, has been disclosed in the Shinetheme Traveler...

Critical SQL Injection Vulnerability Discovered in Shinetheme Traveler (CVE-2025-26898)

CVE News

Critical SQL Injection Vulnerability Discovered in Shinetheme Traveler (CVE-2025-26898)

A critical SQL injection vulnerability (CVE-2025-26898) has been identified in the Shinetheme Traveler WordPress theme, affecting versions...

Exim Use-After-Free Vulnerability (CVE-2025-30232) Poses Privilege Escalation Risk

CVE News

Exim Use-After-Free Vulnerability (CVE-2025-30232) Poses Privilege Escalation Risk

A high-severity vulnerability (CVE-2025-30232) has been identified in Exim mail servers, affecting versions 4.96 through 4.98.1. The...

Posts pagination

1 2 3 4 Next

CVE News

High-Severity SQL Injection Vulnerability in WordPress Uptime Robot Plugin (CVE-2025-31547)

Critical SQL Injection Vulnerability in PiExtract’s SOOP-CLM (CVE-2025-3011)

Critical Authentication Bypass in CHOCO TEI WATCHER mini Exposes Industrial Systems

CISA Issues New ICS Advisory for Schneider Electric EcoStruxure Power Monitoring Expert

CISA Updates Known Exploited Vulnerabilities Catalog with Critical Chromium Sandbox Escape

CVE-2025-2249: WordPress SoJ SoundSlides Plugin Vulnerability Exposes Sites to Arbitrary File Uploads

Meta Warns of Actively Exploited FreeType Vulnerability (CVE-2025-27363) with High-Severity RCE Risk

Critical SQL Injection Vulnerability in SEMCMS (CVE-2025-25686): Analysis and Mitigation

Critical RCE Vulnerability in TOTOLINK A800R Routers (CVE-2025-28138)

HTCondor Authorization Bypass Vulnerability (CVE-2025-30093): Technical Analysis and Mitigation

Apache NotFound PluginPass Path Traversal Vulnerability (CVE-2024-54291): Analysis and Mitigation

Critical SQL Injection Vulnerability in GLPI ITSM Tool (CVE-2025-24799): Analysis and Mitigation

Mozilla Patches Critical Windows Sandbox Escape Flaw Linked to Chrome Zero-Day

Critical NetApp SnapCenter Vulnerability Allows Privilege Escalation to Remote Admin Access

Firefox and Chrome Zero-Days Highlight Systemic Sandbox Risks

Mobile Security & Malware Threats: Critical Vulnerabilities and Emerging Risks in March 2025

High-Severity Missing Authorization Flaw in Shinetheme Traveler WordPress Theme (CVE-2025-26733)

Critical RCE Vulnerability in Shinetheme Traveler (CVE-2025-26873): Analysis and Mitigation

Critical SQL Injection Vulnerability Discovered in Shinetheme Traveler (CVE-2025-26898)

Exim Use-After-Free Vulnerability (CVE-2025-30232) Poses Privilege Escalation Risk

You may have missed

Hong Kong Data Breach: 128,000 Records Exposed Due to System Neglect and Outdated Infrastructure

Oracle’s SaaS Breach Cover-Up Exposed: Evidence Contradicts Denials

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

Lucid PhaaS Platform Targets iOS and Android Users via iMessage and RCS