CVE Alert: CVE-2025-41690 – Endress+Hauser – Promag 10 with HART
CVE-2025-41690 HIGHNo exploitation known A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege...
Month: September 2025
CVE Alert: CVE-2025-2413 – Akinsoft – ProKuafor
CVE-2025-2413 HIGHNo exploitation known Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft ProKuafor allows Authentication Bypass.This issue affects ProKuafor:...
CVE Alert: CVE-2025-9813 – Tenda – CH22
CVE-2025-9813 HIGHNo exploitation known A vulnerability was identified in Tenda CH22 1.0.0.1. This issue affects the function formSetSambaConf of the...
CVE Alert: CVE-2025-2414 – Akinsoft – OctoCloud
CVE-2025-2414 HIGHNo exploitation known Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft OctoCloud allows Authentication Bypass.This issue affects OctoCloud:...
CVE Alert: CVE-2025-9829 – PHPGurukul – Beauty Parlour Management System
CVE-2025-9829 HIGHNo exploitation knownPoC observed A vulnerability was identified in PHPGurukul Beauty Parlour Management System 1.1. The impacted element is...
HackerOne Bug Bounty Disclosure: -unauthorized-blogs-creation-albetisi
Company Name: Lichess Company HackerOne URL: https://hackerone.com/lichess Submitted By:albetisiLink to Submitters Profile:https://hackerone.com/albetisi Report Title: Unauthorized Blogs CreationReport Link:https://hackerone.com/reports/2130385Date Submitted:02 September...
HackerOne Bug Bounty Disclosure: order-more-than-maximum-allowed-quantity-blackbird-azar
Company Name: Mars Company HackerOne URL: https://hackerone.com/mars Submitted By:blackbird_azarLink to Submitters Profile:https://hackerone.com/blackbird_azar Report Title:Order More Than Maximum Allowed QuantityReport Link:https://hackerone.com/reports/3185001Date...
HackerOne Bug Bounty Disclosure: bug-report-jan-subdomain-takeover-via-shopify-kuriyama
Company Name: Mars Company HackerOne URL: https://hackerone.com/mars Submitted By:kuriyamaLink to Submitters Profile:https://hackerone.com/kuriyama Report Title:Bug Report #23JAN135 (subdomain takeover via shopify...
HackerOne Bug Bounty Disclosure: bug-report-jan-subdomain-takeover-via-shopify-kuriyama
Company Name: Mars Company HackerOne URL: https://hackerone.com/mars Submitted By:kuriyamaLink to Submitters Profile:https://hackerone.com/kuriyama Report Title:Bug Report #23JAN136 (subdomain takeover via shopify...
HackerOne Bug Bounty Disclosure: account-takeover-in-password-reset-function-egsec
Company Name: Mars Company HackerOne URL: https://hackerone.com/mars Submitted By:egsecLink to Submitters Profile:https://hackerone.com/egsec Report Title:Account Takeover in Password Reset FunctionReport Link:https://hackerone.com/reports/3228888Date...
HackerOne Bug Bounty Disclosure: unauthenticated-sensitive-information-disclosure-on-cve-kuriyama
Company Name: Mars Company HackerOne URL: https://hackerone.com/mars Submitted By:kuriyamaLink to Submitters Profile:https://hackerone.com/kuriyama Report Title:Unauthenticated Sensitive Information Disclosure on CVE-2021-38314Report Link:https://hackerone.com/reports/1452774Date...
CVE Alert: CVE-2025-55177 – Facebook – WhatsApp Desktop for Mac
CVE-2025-55177 MEDIUMExploitation active Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2.25.21.73, WhatsApp Business for...
CVE Alert: CVE-2020-24363 – n/a – n/a
CVE-2020-24363 UnknownExploitation active TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker (on the same network) to submit a TDDP_RESET...
CVE Alert: CVE-2025-9812 – Tenda – CH22
CVE-2025-9812 HIGHNo exploitation known A vulnerability was determined in Tenda CH22 1.0.0.1. This vulnerability affects the function formexeCommand of the...
CVE Alert: CVE-2025-9811 – Campcodes – Farm Management System
CVE-2025-9811 HIGHNo exploitation known A vulnerability was found in Campcodes Farm Management System 1.0. This affects an unknown part of...
CVE Alert: CVE-2025-9794 – Campcodes – Computer Sales and Inventory System
CVE-2025-9794 HIGHNo exploitation known A flaw has been found in Campcodes Computer Sales and Inventory System 1.0. The affected element...
CVE Alert: CVE-2025-9790 – SourceCodester – Hotel Reservation System
CVE-2025-9790 HIGHNo exploitation known A security flaw has been discovered in SourceCodester Hotel Reservation System 1.0. This affects an unknown...
CVE Alert: CVE-2025-9791 – Tenda – AC20
CVE-2025-9791 HIGHNo exploitation known A weakness has been identified in Tenda AC20 16.03.08.05. This vulnerability affects unknown code of the...
CVE Alert: CVE-2025-9793 – itsourcecode – Apartment Management System
CVE-2025-9793 HIGHNo exploitation known A vulnerability was detected in itsourcecode Apartment Management System 1.0. Impacted is an unknown function of...
CVE Alert: CVE-2025-9792 – itsourcecode – Apartment Management System
CVE-2025-9792 HIGHNo exploitation known A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. This issue affects some...
CVE Alert: CVE-2025-9789 – SourceCodester – Online Hotel Reservation System
CVE-2025-9789 HIGHNo exploitation known A vulnerability was identified in SourceCodester Online Hotel Reservation System 1.0. Affected by this issue is...
CVE Alert: CVE-2025-9788 – SourceCodester – School Log Management System
CVE-2025-9788 HIGHNo exploitation known A vulnerability was determined in SourceCodester/Campcodes School Log Management System 1.0. Affected by this vulnerability is...
CVE Alert: CVE-2025-9786 – Campcodes – Online Learning Management System
CVE-2025-9786 HIGHNo exploitation known A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function...
CVE Alert: CVE-2025-9782 – TOTOLINK – A702R
CVE-2025-9782 HIGHNo exploitation known A vulnerability was found in TOTOLINK A702R 4.0.0-B20211108.1423. This vulnerability affects the function sub_4466F8 of the...
