CVE Alert: CVE-2025-31286
Vulnerability Summary: CVE-2025-31286 An HTML injection vulnerability previously discovered in Trend Vision One could have allowed a malicious user to...
Month: April 2025
CVE Alert: CVE-2025-3119
Vulnerability Summary: CVE-2025-3119 A vulnerability was found in SourceCodester Online Tutor Portal 1.0. It has been declared as critical. This...
CVE Alert: CVE-2025-31284
Vulnerability Summary: CVE-2025-31284 A broken access control vulnerability previously discovered in the Trend Vision One Status component could have allowed...
CVE Alert: CVE-2025-0257
Vulnerability Summary: CVE-2025-0257 HCL DevOps Deploy / HCL Launch could allow unauthorized access to other services or potential exposure of...
CVE Alert: CVE-2025-3121
Vulnerability Summary: CVE-2025-3121 A vulnerability classified as problematic has been found in PyTorch 2.6.0. Affected is the function torch.jit.jit_module_from_flatbuffer. The...
CVE Alert: CVE-2025-31479
Vulnerability Summary: CVE-2025-31479 canonical/get-workflow-version-action is a GitHub composite action to get commit SHA that GitHub Actions reusable workflow was called...
CVE Alert: CVE-2025-3123
Vulnerability Summary: CVE-2025-3123 A vulnerability, which was classified as critical, has been found in WonderCMS 3.5.0. Affected by this issue...
CVE Alert: CVE-2025-3122
Vulnerability Summary: CVE-2025-3122 A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the...
CVE Alert: CVE-2025-3120
Vulnerability Summary: CVE-2025-3120 A vulnerability was found in SourceCodester Apartment Visitors Management System 1.0. It has been rated as critical....
Cobalt Strike Beacon Detected – 47[.]111[.]117[.]176:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]108[.]39[.]159:4444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-30892
Vulnerability Summary: CVE-2025-30892 Deserialization of Untrusted Data vulnerability in magepeopleteam WpTravelly allows Object Injection. This issue affects WpTravelly: from n/a...
CVE Alert: CVE-2025-30853
Vulnerability Summary: CVE-2025-30853 Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images allows Exploiting Incorrectly Configured Access Control Security Levels. This...
CVE Alert: CVE-2025-30841
Vulnerability Summary: CVE-2025-30841 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in adamskaat Countdown & Clock...
CVE Alert: CVE-2025-30852
Vulnerability Summary: CVE-2025-30852 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in emotionalonlinestorytelling Oracle Cards Lite allows...
CVE Alert: CVE-2025-30844
Vulnerability Summary: CVE-2025-30844 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bob Watu Quiz allows Reflected...
CVE Alert: CVE-2025-30825
Vulnerability Summary: CVE-2025-30825 Missing Authorization vulnerability in WPClever WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce allows Privilege...
CVE Alert: CVE-2025-31082
Vulnerability Summary: CVE-2025-31082 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in InfornWeb...
CVE Alert: CVE-2025-31085
Vulnerability Summary: CVE-2025-31085 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michel - xiligroup dev xili-language...
CVE Alert: CVE-2025-31081
Vulnerability Summary: CVE-2025-31081 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ShortPixel Enable Media Replace allows...
CVE Alert: CVE-2025-31080
Vulnerability Summary: CVE-2025-31080 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Software LLC HTML Forms...
CVE Alert: CVE-2025-30906
Vulnerability Summary: CVE-2025-30906 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Coffee Code Tech Plugin Oficial...
CVE Alert: CVE-2025-31078
Vulnerability Summary: CVE-2025-31078 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in enituretechnology Small Package Quotes –...
CVE Alert: CVE-2025-30913
Vulnerability Summary: CVE-2025-30913 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in podpirate Access Areas allows Reflected...
