CVE Alert: CVE-2025-32243
Vulnerability Summary: CVE-2025-32243 Missing Authorization vulnerability in Toast Plugins Internal Link Optimiser allows Exploiting Incorrectly Configured Access Control Security Levels....
Month: April 2025
CVE Alert: CVE-2025-32282
Vulnerability Summary: CVE-2025-32282 Cross-Site Request Forgery (CSRF) vulnerability in ShareThis ShareThis Dashboard for Google Analytics. This issue affects ShareThis Dashboard...
CVE Alert: CVE-2025-32687
Vulnerability Summary: CVE-2025-32687 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Magnigenie Review Stars...
CVE Alert: CVE-2025-32668
Vulnerability Summary: CVE-2025-32668 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Rameez...
CVE Alert: CVE-2025-27350
Vulnerability Summary: CVE-2025-27350 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Hugh Mungus Vice Versa allows...
CVE Alert: CVE-2025-23386
Vulnerability Summary: CVE-2025-23386 A Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed package gerbera allows the service user gerbera to...
CVE Alert: CVE-2025-27081
Vulnerability Summary: CVE-2025-27081 A potential security vulnerability in HPE NonStop OSM Service Connection Suite could potentially be exploited to allow...
CVE Alert: CVE-2025-22279
Vulnerability Summary: CVE-2025-22279 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Crocoblock...
CVE Alert: CVE-2025-31411
Vulnerability Summary: CVE-2025-31411 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Aribhour Linet ERP-Woocommerce Integration...
HackerOne Bug Bounty Disclosure: direct-ip-access-to-website-ryomenshuvro
Company Name: Lichess Company HackerOne URL: https://hackerone.com/lichess Submitted By:ryomenshuvroLink to Submitters Profile:https://hackerone.com/ryomenshuvro Report Title:Direct IP Access to WebsiteReport Link:https://hackerone.com/reports/3068485Date Submitted:11...
CVE Alert: CVE-2025-1073
Vulnerability Summary: CVE-2025-1073 Panasonic IR Control Hub (IR Blaster) versions 1.17 and earlier may allow an attacker with physical access...
CVE Alert: CVE-2025-32754
Vulnerability Summary: CVE-2025-32754 In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images...
CVE Alert: CVE-2025-1677
Vulnerability Summary: CVE-2025-1677 A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all up to 17.8.7,...
CVE Alert: CVE-2025-32755
Vulnerability Summary: CVE-2025-32755 In jenkins/ssh-slave Docker images based on Debian, SSH host keys are generated on image creation for images...
CVE Alert: CVE-2024-11129
Vulnerability Summary: CVE-2024-11129 An issue has been discovered in GitLab EE affecting all versions from 17.1 before 17.8.7, 17.9 before...
CVE Alert: CVE-2025-27813
Vulnerability Summary: CVE-2025-27813 MSI Center before 2.0.52.0 has Missing PE Signature Validation. Affected Endpoints: No affected endpoints listed. Published Date:...
CVE Alert: CVE-2025-25197
Vulnerability Summary: CVE-2025-25197 Silverstripe Elemental extends a page type to swap the content area for a list of manageable elements...
CVE Alert: CVE-2025-30148
Vulnerability Summary: CVE-2025-30148 Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. Prior to 5.3.23, bad actor with...
CVE Alert: CVE-2025-2408
Vulnerability Summary: CVE-2025-2408 An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before...
CVE Alert: CVE-2025-27812
Vulnerability Summary: CVE-2025-27812 MSI Center before 2.0.52.0 allows TOCTOU Local Privilege Escalation. Affected Endpoints: No affected endpoints listed. Published Date:...
Cobalt Strike Beacon Detected – 1[.]94[.]105[.]46:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 43[.]198[.]246[.]165:2082
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 27[.]71[.]27[.]210:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 172[.]86[.]106[.]24:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
