CVE Alert: CVE-2025-54527
Vulnerability Summary: CVE-2025-54527 In JetBrains YouTrack before 2025.2.86935, 2025.2.87167, 2025.3.87341, 2025.3.87344 improper iframe configuration in widget sandbox allows popups to...
Month: July 2025
CVE Alert: CVE-2025-50494
Vulnerability Summary: CVE-2025-50494 Improper session invalidation in the component /doctor/change-password.php of PHPGurukul Car Washing Management System v1.0 allows attackers to...
CVE Alert: CVE-2024-49342
Vulnerability Summary: CVE-2024-49342 IBM Informix Dynamic Server 12.10 and 14.10 uses an inadequate account lockout setting that could allow a...
CVE Alert: CVE-2025-54528
Vulnerability Summary: CVE-2025-54528 In JetBrains TeamCity before 2025.07 a CSRF was possible in GitHub App connection flow Affected Endpoints: No...
CVE Alert: CVE-2025-50493
Vulnerability Summary: CVE-2025-50493 Improper session invalidation in the component /doctor/change-password.php of PHPGurukul Doctor Appointment Management System v1 allows attackers to...
CVE Alert: CVE-2025-50490
Vulnerability Summary: CVE-2025-50490 Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student Result Management System v2.0 allows attackers to...
CVE Alert: CVE-2025-54532
Vulnerability Summary: CVE-2025-54532 In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via snapshot dependencies Affected...
CVE Alert: CVE-2025-54531
Vulnerability Summary: CVE-2025-54531 In JetBrains TeamCity before 2025.07 path traversal was possible via plugin unpacking on Windows Affected Endpoints: No...
CVE Alert: CVE-2025-54530
Vulnerability Summary: CVE-2025-54530 In JetBrains TeamCity before 2025.07 privilege escalation was possible due to incorrect directory permissions Affected Endpoints: No...
CVE Alert: CVE-2025-54529
Vulnerability Summary: CVE-2025-54529 In JetBrains TeamCity before 2025.07 a CSRF was possible in external OAuth login integration Affected Endpoints: No...
CVE Alert: CVE-2025-54537
Vulnerability Summary: CVE-2025-54537 In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots Affected Endpoints:...
CVE Alert: CVE-2025-54536
Vulnerability Summary: CVE-2025-54536 In JetBrains TeamCity before 2025.07 a CSRF was possible on GraphQL endpoint Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2025-54533
Vulnerability Summary: CVE-2025-54533 In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via VCS configuration Affected...
CVE Alert: CVE-2025-54534
Vulnerability Summary: CVE-2025-54534 In JetBrains TeamCity before 2025.07 reflected XSS was possible on the agentpushPreset page Affected Endpoints: No affected...
CVE Alert: CVE-2025-54535
Vulnerability Summary: CVE-2025-54535 In JetBrains TeamCity before 2025.07 password reset and email verification tokens were using weak hashing algorithms Affected...
CVE Alert: CVE-2025-54538
Vulnerability Summary: CVE-2025-54538 In JetBrains TeamCity before 2025.07 password exposure was possible via command line in the "hg pull" command...
CVE Alert: CVE-2025-50489
Vulnerability Summary: CVE-2025-50489 Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to...
CVE Alert: CVE-2025-50492
Vulnerability Summary: CVE-2025-50492 Improper session invalidation in the component /edms/change-password.php of PHPGurukul e-Diary Management System v1 allows attackers to execute...
CVE Alert: CVE-2025-50491
Vulnerability Summary: CVE-2025-50491 Improper session invalidation in the component /banker/change-password.php of PHPGurukul Bank Locker Management System v1 allows attackers to...
CVE Alert: CVE-2025-50488
Vulnerability Summary: CVE-2025-50488 Improper session invalidation in the component /library/change-password.php of PHPGurukul Online Library Management System v3.0 allows attackers to...
[RHYSIDA] – Ransomware Victim: First Baptist Church of Hammond
Ransomware Group: RHYSIDA VICTIM NAME: First Baptist Church of Hammond NOTE: No files or stolen information are by RedPacket Security....
PaperCut Multiple Vulnerabilities
Multiple vulnerabilities were identified in PaperCut. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information...
CVE Alert: CVE-2025-8194
Vulnerability Summary: CVE-2025-8194 There is a defect in the CPython “tarfile” module affecting the “TarFile” extraction and entry enumeration APIs....
CVE Alert: CVE-2025-29534
Vulnerability Summary: CVE-2025-29534 An authenticated remote code execution vulnerability in PowerStick Wave Dual-Band Wifi Extender V1.0 allows an attacker with...
