Vulnerabilities

CVE Alert: CVE-2025-9149

August 20, 2025

Vulnerability Summary: CVE-2025-9149 A vulnerability was determined in Wavlink WL-NU516U1 M16U1_V240425. This impacts the function sub_4032E4 of the file /cgi-bin/wireless.cgi....

CVE Alert: CVE-2025-55295

August 20, 2025

Vulnerability Summary: CVE-2025-55295 qBit Manage is a tool that helps manage tedious tasks in qBittorrent and automate them. A path...

CVE Alert: CVE-2025-55294

August 20, 2025

Vulnerability Summary: CVE-2025-55294 screenshot-desktop allows capturing a screenshot of your local machine. This vulnerability is a command injection issue. When...

CVE Alert: CVE-2025-8450

August 20, 2025

Vulnerability Summary: CVE-2025-8450 Improper Access Control issue in the Workflow component of Fortra's FileCatalyst allows unauthenticated users to upload arbitrary...

CVE Alert: CVE-2025-9151

August 20, 2025

Vulnerability Summary: CVE-2025-9151 A security flaw has been discovered in LiuYuYang01 ThriveX-Blog up to 3.1.7. Affected by this vulnerability is...

CVE Alert: CVE-2025-31988

August 20, 2025

Vulnerability Summary: CVE-2025-31988 HCL Digital Experience is susceptible to cross site scripting (XSS) in an administrative UI with restricted access....

CVE Alert: CVE-2024-44373

August 20, 2025

Vulnerability Summary: CVE-2024-44373 A Path Traversal vulnerability in AllSky v2023.05.01_04 allows an unauthenticated attacker to create a webshell and remote...

CVE Alert: CVE-2025-50891

August 20, 2025

Vulnerability Summary: CVE-2025-50891 Adform Site Tracking 1.1 allows attackers to inject HTML or execute arbitrary code via cookie hijacking. Affected...

CVE Alert: CVE-2025-33008

August 20, 2025

Vulnerability Summary: CVE-2025-33008 IBM Sterling B2B Integrator 6.2.1.0 and IBM Sterling File Gateway 6.2.1.0 is vulnerable to cross-site scripting. This...

CVE Alert: CVE-2025-52338

August 20, 2025

Vulnerability Summary: CVE-2025-52338 An issue in the default configuration of the password reset function in LogicData eCommerce Framework v5.0.9.7000 allows...

CVE Alert: CVE-2025-55733

August 20, 2025

Vulnerability Summary: CVE-2025-55733 DeepChat is a smart assistant that connects powerful AI to your personal world. DeepChat before 0.3.1 has...

CVE Alert: CVE-2025-9153

August 20, 2025

Vulnerability Summary: CVE-2025-9153 A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown...

CVE Alert: CVE-2025-2988

August 20, 2025

Vulnerability Summary: CVE-2025-2988 IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7, 6.2.0.0 through 6.2.0.4, and 6.2.1.0...

CVE Alert: CVE-2025-9154

August 20, 2025

Vulnerability Summary: CVE-2025-9154 A flaw has been found in itsourcecode Online Tour and Travel Management System 1.0. This issue affects...

CVE Alert: CVE-2025-55306

August 20, 2025

Vulnerability Summary: CVE-2025-55306 GenX_FX is an advance IA trading platform that will focus on forex trading. A vulnerability was identified...

CVE Alert: CVE-2025-55740

August 20, 2025

Vulnerability Summary: CVE-2025-55740 nginx-defender is a high-performance, enterprise-grade Web Application Firewall (WAF) and threat detection system engineered for modern web...

CVE Alert: CVE-2025-51543

August 20, 2025

Vulnerability Summary: CVE-2025-51543 An issue was discovered in Cicool builder 3.4.4 allowing attackers to reset the administrator's password via the...

CVE Alert: CVE-2025-52337

August 20, 2025

Vulnerability Summary: CVE-2025-52337 An authenticated arbitrary file upload vulnerability in the Content Explorer feature of LogicData eCommerce Framework v5.0.9.7000 allows...

CVE Alert: CVE-2025-50926

August 20, 2025

Vulnerability Summary: CVE-2025-50926 Easy Hosting Control Panel EHCP v20.04.1.b was discovered to contain a SQL injection vulnerability via the id...

CVE Alert: CVE-2025-9155

August 20, 2025

Vulnerability Summary: CVE-2025-9155 A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Impacted is an...

CVE Alert: CVE-2025-9156

August 20, 2025

Vulnerability Summary: CVE-2025-9156 A vulnerability was found in itsourcecode Sports Management System 1.0. The affected element is an unknown function...

CVE Alert: CVE-2025-9168

August 20, 2025

Vulnerability Summary: CVE-2025-9168 A vulnerability was found in SolidInvoice up to 2.4.0. This issue affects some unknown processing of the...

CVE Alert: CVE-2025-9157

August 20, 2025

Vulnerability Summary: CVE-2025-9157 A vulnerability was determined in appneta tcpreplay up to 4.5.2-beta2. The impacted element is the function untrunc_packet...

CVE Alert: CVE-2025-9165

August 20, 2025

Vulnerability Summary: CVE-2025-9165 A flaw has been found in LibTIFF 4.7.0. This affects the function _TIFFmallocExt/_TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 of the file tools/tiffcmp.c...

Vulnerabilities

CVE Alert: CVE-2025-9149

CVE Alert: CVE-2025-55295

CVE Alert: CVE-2025-55294

CVE Alert: CVE-2025-8450

CVE Alert: CVE-2025-9151

CVE Alert: CVE-2025-31988

CVE Alert: CVE-2024-44373

CVE Alert: CVE-2025-50891

CVE Alert: CVE-2025-33008

CVE Alert: CVE-2025-52338

CVE Alert: CVE-2025-55733

CVE Alert: CVE-2025-9153

CVE Alert: CVE-2025-2988

CVE Alert: CVE-2025-9154

CVE Alert: CVE-2025-55306

CVE Alert: CVE-2025-55740

CVE Alert: CVE-2025-51543

CVE Alert: CVE-2025-52337

CVE Alert: CVE-2025-50926

CVE Alert: CVE-2025-9155

CVE Alert: CVE-2025-9156

CVE Alert: CVE-2025-9168

CVE Alert: CVE-2025-9157

CVE Alert: CVE-2025-9165

HackerOne Bug Bounty Disclosure: stack-buffer-overflow-in-curl-cookie-parsing-leads-to-rce-batuhanilgarr

BugCrowd Bug Bounty Disclosure: P3 – Publicly Editable Google Docs Linked from NASA SnowEx PPT –

BugCrowd Bug Bounty Disclosure: P3 – Details of the collaboration between NASA and Inmarsat Government and the type of contract –

Apple Products Multiple Vulnerabilities

Miljödata – 870,108 breached accounts

You may have missed