CVE Alert: CVE-2025-27098
Vulnerability Summary: CVE-2025-27098 GraphQL Mesh is a GraphQL Federation framework and gateway for both GraphQL Federation and non-GraphQL Federation subgraphs,...
Vulnerabilities
CVE Alert: CVE-2025-1265
Vulnerability Summary: CVE-2025-1265 An OS command injection vulnerability exists in Vinci Protocol Analyzer that could allow an attacker to escalate...
CVE Alert: CVE-2025-24893
Vulnerability Summary: CVE-2025-24893 XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it....
CVE Alert: CVE-2025-0352
Vulnerability Summary: CVE-2025-0352 Rapid Response Monitoring My Security Account App utilizes an API that could be exploited by an attacker...
[Palo Alto Networks Security Advisories] CVE-2024-5921 GlobalProtect App: Insufficient Certificate Validation Leads toPrivilege Escalation
Palo Alto Networks Security Advisories /CVE-2024-5921CVE-2024-5921 GlobalProtect App: Insufficient Certificate Validation Leads to Privilege EscalationUrgencyMODERATE047910Severity5.6 ·MEDIUMExploit MaturityPOCResponse EffortMODERATERecoveryUSERValue DensityDIFFUSEAttack VectorADJACENTAttack...
CVE Alert: CVE-2024-13483
Vulnerability Summary: CVE-2024-13483 The LTL Freight Quotes – SAIA Edition plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2025-0968
Vulnerability Summary: CVE-2025-0968 The ElementsKit Elementor addons plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up...
CVE Alert: CVE-2024-13481
Vulnerability Summary: CVE-2024-13481 The LTL Freight Quotes – R+L Carriers Edition plugin for WordPress is vulnerable to SQL Injection via...
CVE Alert: CVE-2024-13478
Vulnerability Summary: CVE-2024-13478 The LTL Freight Quotes – TForce Edition plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2024-13479
Vulnerability Summary: CVE-2024-13479 The LTL Freight Quotes – SEFL Edition plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2024-13491
Vulnerability Summary: CVE-2024-13491 The Small Package Quotes – For Customers of FedEx plugin for WordPress is vulnerable to SQL Injection...
CVE Alert: CVE-2024-13534
Vulnerability Summary: CVE-2024-13534 The Small Package Quotes – Worldwide Express Edition plugin for WordPress is vulnerable to SQL Injection via...
CVE Alert: CVE-2025-0916
Vulnerability Summary: CVE-2025-0916 The YaySMTP and Email Logs: Amazon SES, SendGrid, Outlook, Mailgun, Brevo, Google and Any SMTP Service plugin...
CVE Alert: CVE-2024-13485
Vulnerability Summary: CVE-2024-13485 The LTL Freight Quotes – ABF Freight Edition plugin for WordPress is vulnerable to SQL Injection via...
CVE Alert: CVE-2024-13533
Vulnerability Summary: CVE-2024-13533 The Small Package Quotes – USPS Edition plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2025-1464
Vulnerability Summary: CVE-2025-1464 A vulnerability, which was classified as critical, has been found in Baiyi Cloud Asset Management System up...
CVE Alert: CVE-2024-28776
Vulnerability Summary: CVE-2024-28776 IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to cross-site scripting. This...
CVE Alert: CVE-2024-45081
Vulnerability Summary: CVE-2024-45081 IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated user to...
CVE Alert: CVE-2024-45084
Vulnerability Summary: CVE-2024-45084 IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated attacker to...
CVE Alert: CVE-2024-52902
Vulnerability Summary: CVE-2024-52902 IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 client application contains hard coded database...
CVE Alert: CVE-2024-28780
Vulnerability Summary: CVE-2024-28780 IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 Rich Client uses weaker than expected...
CVE Alert: CVE-2024-28777
Vulnerability Summary: CVE-2024-28777 IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to unrestricted deserialization. This...
CVE Alert: CVE-2025-20211
Vulnerability Summary: CVE-2025-20211 A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an unauthenticated,...
CVE Alert: CVE-2025-20153
Vulnerability Summary: CVE-2025-20153 A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote...
