CVE Alert: CVE-2025-5659
Vulnerability Summary: CVE-2025-5659 A vulnerability classified as critical was found in PHPGurukul Complaint Management System 2.0. Affected by this vulnerability...
Month: June 2025
CVE Alert: CVE-2025-5660
Vulnerability Summary: CVE-2025-5660 A vulnerability, which was classified as critical, has been found in PHPGurukul Complaint Management System 2.0. Affected...
CVE Alert: CVE-2025-0691
Vulnerability Summary: CVE-2025-0691 Improper access control in permissions component in Devolutions Server 2025.1.10.0 and earlier allows an authenticated user to...
CVE Alert: CVE-2025-5658
Vulnerability Summary: CVE-2025-5658 A vulnerability classified as critical has been found in PHPGurukul Complaint Management System 2.0. Affected is an...
CVE Alert: CVE-2025-27754
Vulnerability Summary: CVE-2025-27754 A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows...
CVE Alert: CVE-2025-5665
Vulnerability Summary: CVE-2025-5665 A vulnerability was found in FreeFloat FTP Server 1.0. It has been classified as critical. Affected is...
CVE Alert: CVE-2025-3768
Vulnerability Summary: CVE-2025-3768 Improper access control in Tor network blocking feature in Devolutions Server 2025.1.10.0 and earlier allows an authenticated...
CVE Alert: CVE-2025-5382
Vulnerability Summary: CVE-2025-5382 Improper access control in users MFA feature in Devolutions Server 2025.1.7.0 and earlier allows a user with...
CVE Alert: CVE-2025-5661
Vulnerability Summary: CVE-2025-5661 A vulnerability, which was classified as problematic, was found in code-projects Traffic Offense Reporting System 1.0. This...
CVE Alert: CVE-2025-5663
Vulnerability Summary: CVE-2025-5663 A vulnerability has been found in PHPGurukul Auto Taxi Stand Management System 1.0 and classified as critical....
HackerOne Bug Bounty Disclosure: imageid-format-injection-in-image-upload-endpoint-oblivionsage
Company Name: Lichess Company HackerOne URL: https://hackerone.com/lichess Submitted By:oblivionsageLink to Submitters Profile:https://hackerone.com/oblivionsage Report Title:ImageId Format Injection in Image Upload EndpointReport...
HackerOne Bug Bounty Disclosure: -click-account-takeover-via-auth-token-theft-on-marketing-hostinger-com-aziz-x
Company Name: hostinger Company HackerOne URL: https://hackerone.com/hostinger Submitted By:aziz0x48Link to Submitters Profile:https://hackerone.com/aziz0x48 Report Title:1 Click Account Takeover via Auth Token...
CVE Alert: CVE-2025-5664
Vulnerability Summary: CVE-2025-5664 A vulnerability was found in FreeFloat FTP Server 1.0 and classified as critical. This issue affects some...
CVE Alert: CVE-2025-5669
Vulnerability Summary: CVE-2025-5669 A vulnerability classified as critical was found in PHPGurukul Medical Card Generation System 1.0. This vulnerability affects...
CVE Alert: CVE-2025-5666
Vulnerability Summary: CVE-2025-5666 A vulnerability was found in FreeFloat FTP Server 1.0. It has been declared as critical. Affected by...
CVE Alert: CVE-2025-5668
Vulnerability Summary: CVE-2025-5668 A vulnerability classified as critical has been found in PHPGurukul Medical Card Generation System 1.0. This affects...
CVE Alert: CVE-2025-5667
Vulnerability Summary: CVE-2025-5667 A vulnerability was found in FreeFloat FTP Server 1.0. It has been rated as critical. Affected by...
CVE Alert: CVE-2025-46257
Vulnerability Summary: CVE-2025-46257 Cross-Site Request Forgery (CSRF) vulnerability in BdThemes Element Pack Pro allows Cross Site Request Forgery.This issue affects...
CVE Alert: CVE-2025-5670
Vulnerability Summary: CVE-2025-5670 A vulnerability, which was classified as critical, has been found in PHPGurukul Medical Card Generation System 1.0....
CVE Alert: CVE-2025-49009
Vulnerability Summary: CVE-2025-49009 Para is a multitenant backend server/framework for object persistence and retrieval. A vulnerability that exists in versions...
CVE Alert: CVE-2025-46258
Vulnerability Summary: CVE-2025-46258 Missing Authorization vulnerability in BdThemes Element Pack Pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue...
CVE Alert: CVE-2025-5671
Vulnerability Summary: CVE-2025-5671 A vulnerability, which was classified as critical, was found in TOTOLINK N302R Plus up to 3.4.0-B20201028. Affected...
CVE Alert: CVE-2025-5674
Vulnerability Summary: CVE-2025-5674 A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by...
CVE Alert: CVE-2025-5677
Vulnerability Summary: CVE-2025-5677 A vulnerability was found in Campcodes Online Recruitment Management System 1.0. It has been rated as critical....
