Month: March 2025

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

March 15, 2025

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

March 15, 2025

CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Three Industrial Control Systems Advisories

March 15, 2025

CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on March 6, 2025. These...

CISA: CISA Releases Eight Industrial Control Systems Advisories

March 15, 2025

CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on March 4, 2025. These...

CISA: FBI Warns of Data Extortion Scam Targeting Corporate Executives

March 15, 2025

FBI Warns of Data Extortion Scam Targeting Corporate Executives The Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (IC3) has...

CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog

March 15, 2025

CISA Adds Five Known Exploited Vulnerabilities to Catalog CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA and Partners Release Cybersecurity Advisory on Medusa Ransomware

March 15, 2025

CISA and Partners Release Cybersecurity Advisory on Medusa Ransomware Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and...

CISA: CISA Adds Six Known Exploited Vulnerabilities to Catalog

March 15, 2025

CISA Adds Six Known Exploited Vulnerabilities to Catalog CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Two Industrial Control Systems Advisories

March 15, 2025

CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on March 11, 2025. These...

CISA: CISA Releases Thirteen Industrial Control Systems Advisories

March 15, 2025

CISA Releases Thirteen Industrial Control Systems Advisories CISA released thirteen Industrial Control Systems (ICS) advisories on March 13, 2025. These...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

March 15, 2025

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CVE Alert: CVE-2025-1561

March 14, 2025

Vulnerability Summary: CVE-2025-1561 The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2020-36843

March 14, 2025

Vulnerability Summary: CVE-2020-36843 The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0.3.0 exhibits signature malleability and does not satisfy...

CVE Alert: CVE-2024-7296

March 14, 2025

Vulnerability Summary: CVE-2024-7296 An issue was discovered in GitLab EE affecting all versions from 16.5 prior to 17.7.7, 17.8 prior...

CVE Alert: CVE-2025-2104

March 14, 2025

Vulnerability Summary: CVE-2025-2104 The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to unauthorized...

CVE Alert: CVE-2024-13054

March 14, 2025

Vulnerability Summary: CVE-2024-13054 An issue was discovered in GitLab CE/EE affecting all versions before 17.7.7, 17.8 prior to 17.8.5, and...

CVE Alert: CVE-2024-12380

March 14, 2025

Vulnerability Summary: CVE-2024-12380 An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions...

CVE Alert: CVE-2025-1119

March 14, 2025

Vulnerability Summary: CVE-2025-1119 The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to arbitrary...

CVE Alert: CVE-2024-8402

March 14, 2025

Vulnerability Summary: CVE-2024-8402 An issue was discovered in GitLab EE affecting all versions starting from 17.2 before 17.7.7, all versions...

CVE Alert: CVE-2025-0652

March 14, 2025

Vulnerability Summary: CVE-2025-0652 An issue has been discovered in GitLab EE/CE affecting all versions starting from 16.9 before 17.7.7, all...

CVE Alert: CVE-2025-1257

March 14, 2025

Vulnerability Summary: CVE-2025-1257 An issue was discovered in GitLab EE affecting all versions starting with 12.3 before 17.7.7, 17.8 prior...

HackerOne Bug Bounty Disclosure: stored-cross-site-scripting-found-in-custom-integration-app-on-hxxps-admin-b-autodesk-com-the-white-evil

March 14, 2025

Company Name: Autodesk Company HackerOne URL: https://hackerone.com/autodesk Submitted By:the-white-evilLink to Submitters Profile:https://hackerone.com/the-white-evil Report Title:Stored Cross-Site Scripting found in custom integration...

HackerOne Bug Bounty Disclosure: -fa-bypass-leads-to-impersonation-of-legimate-users-dedoxd

March 14, 2025

Company Name: Drugs.com Company HackerOne URL: https://hackerone.com/drugs_com Submitted By:dedoxd2Link to Submitters Profile:https://hackerone.com/dedoxd2 Report Title:2FA Bypass leads to impersonation of legimate...

Microsoft Edge Multiple Vulnerabilities

March 14, 2025

Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution,...

Month: March 2025

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Three Industrial Control Systems Advisories

CISA: CISA Releases Eight Industrial Control Systems Advisories

CISA: FBI Warns of Data Extortion Scam Targeting Corporate Executives

CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA: CISA and Partners Release Cybersecurity Advisory on Medusa Ransomware

CISA: CISA Adds Six Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Two Industrial Control Systems Advisories

CISA: CISA Releases Thirteen Industrial Control Systems Advisories

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CVE Alert: CVE-2025-1561

CVE Alert: CVE-2020-36843

CVE Alert: CVE-2024-7296

CVE Alert: CVE-2025-2104

CVE Alert: CVE-2024-13054

CVE Alert: CVE-2024-12380

CVE Alert: CVE-2025-1119

CVE Alert: CVE-2024-8402

CVE Alert: CVE-2025-0652

CVE Alert: CVE-2025-1257

HackerOne Bug Bounty Disclosure: stored-cross-site-scripting-found-in-custom-integration-app-on-hxxps-admin-b-autodesk-com-the-white-evil

HackerOne Bug Bounty Disclosure: -fa-bypass-leads-to-impersonation-of-legimate-users-dedoxd

Microsoft Edge Multiple Vulnerabilities

[NOVA] – Ransomware Victim: Municipality of Pisa

CVE Alert: CVE-2025-3528

CVE Alert: CVE-2024-13961

CVE Alert: CVE-2025-3897

CVE Alert: CVE-2024-13962

You may have missed