CVSS

CVE-2025-1093: Critical RCE Vulnerability in WordPress AIHub Theme

CVE News

CVE-2025-1093: Critical RCE Vulnerability in WordPress AIHub Theme

A critical vulnerability (CVE-2025-1093) has been identified in the AIHub WordPress theme, allowing unauthenticated attackers to upload...

GoBGP Zero-Value Software Version Len Panic Vulnerability (CVE-2025-43971): Analysis and Mitigation

CVE News

GoBGP Zero-Value Software Version Len Panic Vulnerability (CVE-2025-43971): Analysis and Mitigation

A critical vulnerability (CVE-2025-43971) affecting GoBGP versions prior to 3.35.0 was disclosed on April 21, 2025. The...

Critical Buffer Overflow Vulnerability in Tenda W12 and i24 Routers (CVE-2025-3820)

CVE News

Critical Buffer Overflow Vulnerability in Tenda W12 and i24 Routers (CVE-2025-3820)

A newly disclosed critical vulnerability (CVE-2025-3820) affecting Tenda W12 and i24 routers allows remote attackers to execute...

Funding Crisis Averted for CVE Program: What Security Professionals Need to Know

CVE News

Funding Crisis Averted for CVE Program: What Security Professionals Need to Know

A critical cybersecurity resource—the Common Vulnerabilities and Exposures (CVE) program—faced imminent shutdown due to expired U.S. government...

Cisco Webex Vulnerability (CVE-2025-20236) Enables Remote Code Execution via Malicious Links

CVE News

Cisco Webex Vulnerability (CVE-2025-20236) Enables Remote Code Execution via Malicious Links

Cisco has issued patches for a high-severity vulnerability (CVE-2025-20236) in its Webex software that allows unauthenticated attackers...

Critical Erlang/OTP SSH Vulnerability (CVE-2025-32433): Exploits Publicly Available, Patch Urgently

CVE News

Critical Erlang/OTP SSH Vulnerability (CVE-2025-32433): Exploits Publicly Available, Patch Urgently

A critical remote code execution (RCE) vulnerability in Erlang/OTP’s SSH implementation (CVE-2025-32433) now has publicly available exploits,...

CVE-2025-31911: Critical SQL Injection Vulnerability in WordPress Social Share And Social Locker Plugin

CVE News

CVE-2025-31911: Critical SQL Injection Vulnerability in WordPress Social Share And Social Locker Plugin

A critical SQL injection vulnerability (CVE-2025-31911) has been identified in the WordPress plugin “Social Share And Social...

Tenda AC10 Router Vulnerability (CVE-2025-3161): Remote Stack-Based Buffer Overflow Exploit

CVE News

Tenda AC10 Router Vulnerability (CVE-2025-3161): Remote Stack-Based Buffer Overflow Exploit

A critical stack-based buffer overflow vulnerability (CVE-2025-3161) has been identified in Tenda AC10 routers running firmware version...

Dell PowerProtect Data Domain Vulnerability (CVE-2025-29987): Root Access Exploit Analysis

CVE News

Dell PowerProtect Data Domain Vulnerability (CVE-2025-29987): Root Access Exploit Analysis

A critical vulnerability (CVE-2025-29987) in Dell PowerProtect Data Domain systems running Data Domain Operating System (DD OS)...

Ivanti Connect Secure Zero-Day Exploited by China-Linked APT Since Mid-March 2025

CVE News

Ivanti Connect Secure Zero-Day Exploited by China-Linked APT Since Mid-March 2025

Ivanti has released critical patches for two zero-day vulnerabilities (CVE-2025-22457 and CVE-2025-0282) in its Connect Secure (ICS),...

iPhone Security Alert: Banking Malware and Zero-Day Exploits Threaten Users

Threat Intelligence

iPhone Security Alert: Banking Malware and Zero-Day Exploits Threaten Users

A new wave of cyber threats targeting iPhone users has prompted urgent warnings from security experts. Malicious...

Smart TV Security Alert: 1.6 Million Devices at Risk from Firmware Exploits

News

Smart TV Security Alert: 1.6 Million Devices at Risk from Firmware Exploits

A new wave of attacks targeting smart TVs and streaming boxes has put approximately 1.6 million devices...

ROS dynparam YAML Deserialization Vulnerability (CVE-2024-39780) Analysis and Mitigation

CVE News

ROS dynparam YAML Deserialization Vulnerability (CVE-2024-39780) Analysis and Mitigation

A critical vulnerability (CVE-2024-39780) has been identified in the Robot Operating System (ROS) dynparam tool, allowing arbitrary...

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

CVE News

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

A critical path traversal vulnerability (CVE-2025-31131) has been identified in YesWiki, a PHP-based wiki system, with a...

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

CVE News

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

A critical SQL injection vulnerability (CVE-2025-30807) has been identified in the Next-Cart Store to WooCommerce Migration plugin,...

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

CVE News

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

A high-severity vulnerability (CVE-2025-30892) has been identified in the Magepeople WpTravelly WordPress plugin, exposing websites to potential...

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)

CVE News

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)

A high-severity SQL injection vulnerability (CVE-2025-31089) has been identified in Fahad Mahmood’s Order Splitter for WooCommerce plugin,...

CVE-2025-31534: Critical SQL Injection Vulnerability in Shopperdotcom Shopper

CVE News

CVE-2025-31534: Critical SQL Injection Vulnerability in Shopperdotcom Shopper

A critical SQL injection vulnerability (CVE-2025-31534) has been identified in the Shopperdotcom Shopper platform, affecting all versions...

Critical SQL Injection Vulnerability in Salesmate Add-On for Gravity Forms (CVE-2025-31551)

CVE News

Critical SQL Injection Vulnerability in Salesmate Add-On for Gravity Forms (CVE-2025-31551)

A critical SQL injection vulnerability (CVE-2025-31551) has been identified in the Salesmate.io Salesmate Add-On for Gravity Forms,...

Critical SQL Injection Vulnerability in RSVPMarker WordPress Plugin (CVE-2025-31552)

CVE News

Critical SQL Injection Vulnerability in RSVPMarker WordPress Plugin (CVE-2025-31552)

A critical SQL injection vulnerability (CVE-2025-31552) has been identified in the RSVPMarker WordPress plugin, affecting versions up...

Posts pagination

Previous 1 … 4 5 6 7 8 9 10 Next

CVSS

CVE-2025-1093: Critical RCE Vulnerability in WordPress AIHub Theme

GoBGP Zero-Value Software Version Len Panic Vulnerability (CVE-2025-43971): Analysis and Mitigation

Critical Buffer Overflow Vulnerability in Tenda W12 and i24 Routers (CVE-2025-3820)

Funding Crisis Averted for CVE Program: What Security Professionals Need to Know

Cisco Webex Vulnerability (CVE-2025-20236) Enables Remote Code Execution via Malicious Links

Critical Erlang/OTP SSH Vulnerability (CVE-2025-32433): Exploits Publicly Available, Patch Urgently

CVE-2025-31911: Critical SQL Injection Vulnerability in WordPress Social Share And Social Locker Plugin

Tenda AC10 Router Vulnerability (CVE-2025-3161): Remote Stack-Based Buffer Overflow Exploit

Dell PowerProtect Data Domain Vulnerability (CVE-2025-29987): Root Access Exploit Analysis

Ivanti Connect Secure Zero-Day Exploited by China-Linked APT Since Mid-March 2025

iPhone Security Alert: Banking Malware and Zero-Day Exploits Threaten Users

Smart TV Security Alert: 1.6 Million Devices at Risk from Firmware Exploits

ROS dynparam YAML Deserialization Vulnerability (CVE-2024-39780) Analysis and Mitigation

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)

CVE-2025-31534: Critical SQL Injection Vulnerability in Shopperdotcom Shopper

Critical SQL Injection Vulnerability in Salesmate Add-On for Gravity Forms (CVE-2025-31551)

Critical SQL Injection Vulnerability in RSVPMarker WordPress Plugin (CVE-2025-31552)

You may have missed

Russia’s Throttling of Cloudflare: Technical Impact and Security Implications

Livestreamed Child Exploitation: Technical and Legal Implications of a Disturbing Case

UNFI Cyberattack: Supply Chain Disruption and Recovery Analysis

Hawaiian Airlines Cyberattack: IT Systems Compromised, Flight Operations Unaffected