A critical SQL injection vulnerability (CVE-2025-30807) has been identified in the Next-Cart Store to WooCommerce Migration plugin,...
CVSS
A high-severity vulnerability (CVE-2025-30892) has been identified in the Magepeople WpTravelly WordPress plugin, exposing websites to potential...
A high-severity SQL injection vulnerability (CVE-2025-31089) has been identified in Fahad Mahmood’s Order Splitter for WooCommerce plugin,...
A critical SQL injection vulnerability (CVE-2025-31534) has been identified in the Shopperdotcom Shopper platform, affecting all versions...
A critical SQL injection vulnerability (CVE-2025-31551) has been identified in the Salesmate.io Salesmate Add-On for Gravity Forms,...
A critical SQL injection vulnerability (CVE-2025-31552) has been identified in the RSVPMarker WordPress plugin, affecting versions up...
A critical SQL injection vulnerability (CVE-2025-31553) has been identified in the WPFactory Advanced WooCommerce Product Sales Reporting...
A critical security vulnerability has been identified in the Sabuj Kundu CBX Poll WordPress plugin, tracked as...
A high-severity SQL injection vulnerability (CVE-2025-31547) has been identified in the Aphotrax Uptime Robot Plugin for WordPress,...
A critical SQL injection vulnerability (CVE-2025-3011) has been identified in PiExtract’s SOOP-CLM software, rated 9.8 (CRITICAL) on...
A critical vulnerability (CVE-2025-25211) affecting all versions of the CHOCO TEI WATCHER mini (IB-MCT001) industrial monitoring device...
The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with CVE-2025-2783,...
A critical vulnerability (CVE-2025-2249) in the WordPress SoJ SoundSlides plugin allows authenticated attackers with Contributor-level access or...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing...
Meta Warns of Actively Exploited FreeType Vulnerability (CVE-2025-27363) with High-Severity RCE Risk
Meta Warns of Actively Exploited FreeType Vulnerability (CVE-2025-27363) with High-Severity RCE Risk
Meta has issued a warning about an actively exploited vulnerability in the FreeType font rendering library, tracked...
A critical SQL injection vulnerability (CVE-2025-25686) has been identified in SEMCMS versions 5.0 and earlier, posing significant...
A critical remote code execution (RCE) vulnerability, tracked as CVE-2025-28138, has been identified in TOTOLINK A800R routers...
A critical authorization bypass vulnerability in HTCondor, tracked as CVE-2025-30093, has been disclosed, affecting multiple versions of...
A newly disclosed path traversal vulnerability (CVE-2024-54291) in Apache’s NotFound PluginPass has been rated with a high...
A newly discovered SQL injection vulnerability in the widely used GLPI IT Service Management (ITSM) tool poses...
