CVE Alert: CVE-2025-45250
Vulnerability Summary: CVE-2025-45250 MrDoc v0.95 and before is vulnerable to Server-Side Request Forgery (SSRF) in the validate_url function of the...
Month: May 2025
CVE Alert: CVE-2025-30165
Vulnerability Summary: CVE-2025-30165 vLLM is an inference and serving engine for large language models. In a multi-node vLLM deployment using...
CVE Alert: CVE-2025-25014
Vulnerability Summary: CVE-2025-25014 A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine...
Android Multiple Vulnerabilities
Multiple vulnerabilities were identified in Android. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
CVE Alert: CVE-2025-37730
Vulnerability Summary: CVE-2025-37730 Improper certificate validation in Logstash's TCP output could lead to a man-in-the-middle (MitM) attack in “client” mode,...
CVE Alert: CVE-2025-44900
Vulnerability Summary: CVE-2025-44900 In Tenda RX3 V1.0br_V16.03.13.11 in the GetParentControlInfo function of the web url /goform/GetParentControlInfo, the manipulation of the...
CVE Alert: CVE-2025-46816
Vulnerability Summary: CVE-2025-46816 goshs is a SimpleHTTPServer written in Go. Starting in version 0.3.4 and prior to version 1.0.5, running...
CVE Alert: CVE-2025-46815
Vulnerability Summary: CVE-2025-46815 The identity infrastructure software ZITADEL offers developers the ability to manage user sessions using the Session API....
CVE Alert: CVE-2025-46820
Vulnerability Summary: CVE-2025-46820 phpgt/Dom provides access to modern DOM APIs. Versions of phpgt/Dom prior to 4.1.8 expose the GITHUB_TOKEN in...
CVE Alert: CVE-2025-0855
Vulnerability Summary: CVE-2025-0855 The PGS Core plugin for WordPress is vulnerable to PHP Object Injection in all versions up to,...
CVE Alert: CVE-2025-47256
Vulnerability Summary: CVE-2025-47256 Libxmp through 4.6.2 has a stack-based buffer overflow in depack_pha in loaders/prowizard/pha.c via a malformed Pha format...
CVE Alert: CVE-2025-0853
Vulnerability Summary: CVE-2025-0853 The PGS Core plugin for WordPress is vulnerable to SQL Injection via the 'event' parameter in the...
CVE Alert: CVE-2024-12225
Vulnerability Summary: CVE-2024-12225 A vulnerability was found in Quarkus in the quarkus-security-webauthn module. The Quarkus WebAuthn module publishes default REST...
CVE Alert: CVE-2025-0856
Vulnerability Summary: CVE-2025-0856 The PGS Core plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due...
It Pros Are Caught Between An Ai Rock And An Economic Hard Place
The US jobs market grew faster than expected in April, but most IT pros aren’t among the beneficiaries.The US economy...
Trump Promises Protection For Tiktok, For Which He Has A ‘warm Spot In My Heart’
US President Donald Trump has said TikTok will be “very strongly protected” as the made-in-China social network has “a warm...
Commodore Os 3 Is The Loudest Linux Yet
A Commodore-themed talking Linux desktop, complete with hundreds of games, makes for the biggest distro we've seen yet.In the halcyon...
30 Years Of Mysql, The Database That Changed The World
Before Donald Trump became US president and the UK left the EU – both arguably the result of a new...
[NIGHTSPIRE] – Ransomware Victim: Julia Evans accountants
Ransomware Group: NIGHTSPIRE VICTIM NAME: Julia Evans accountants NOTE: No files or stolen information are by RedPacket Security. Any legal...
[QILIN] – Ransomware Victim: NSS 長崎船舶装備株式会社
Ransomware Group: QILIN VICTIM NAME: NSS 長崎船舶装備株式会社 NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[QILIN] – Ransomware Victim: gates-cooper[.]com
Ransomware Group: QILIN VICTIM NAME: gates-coopercom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: mdgny[.]com
Ransomware Group: QILIN VICTIM NAME: mdgnycom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: clinpath[.]com
Ransomware Group: QILIN VICTIM NAME: clinpathcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: jbanksdesign[.]com
Ransomware Group: QILIN VICTIM NAME: jbanksdesigncom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
