Vulnerabilities

CVE Alert: CVE-2025-8773

August 10, 2025

Vulnerability Summary: CVE-2025-8773 A vulnerability, which was classified as critical, was found in Dinstar Monitoring Platform 甘肃省危险品库监控平台 1.0. Affected is...

CVE Alert: CVE-2025-8775

August 10, 2025

Vulnerability Summary: CVE-2025-8775 A vulnerability was found in Qiyuesuo Eelectronic Signature Platform up to 4.34 and classified as critical. Affected...

CVE Alert: CVE-2024-58256

August 10, 2025

Vulnerability Summary: CVE-2024-58256 EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability may lead to arbitrary command...

CVE Alert: CVE-2024-58257

August 10, 2025

Vulnerability Summary: CVE-2024-58257 EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability may lead to arbitrary command...

CVE Alert: CVE-2025-8708

August 10, 2025

Vulnerability Summary: CVE-2025-8708 A vulnerability was found in Antabot White-Jotter 0.22. It has been declared as critical. This vulnerability affects...

CVE Alert: CVE-2025-8707

August 10, 2025

Vulnerability Summary: CVE-2025-8707 A vulnerability was found in Huuge Box App 1.0.3 on Android. It has been classified as problematic....

CVE Alert: CVE-2024-58255

August 10, 2025

Vulnerability Summary: CVE-2024-58255 EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability may lead to arbitrary command...

CVE Alert: CVE-2025-54958

August 10, 2025

Vulnerability Summary: CVE-2025-54958 Powered BLUE 870 versions 0.20130927 and prior contain an OS command injection vulnerability. If this vulnerability is...

CVE Alert: CVE-2025-48913

August 10, 2025

Vulnerability Summary: CVE-2025-48913 If untrusted users are allowed to configure JMS for Apache CXF, previously they could use RMI or...

CVE Alert: CVE-2025-6572

August 10, 2025

Vulnerability Summary: CVE-2025-6572 The OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer) WordPress plugin through 1.2.0 does not...

CVE Alert: CVE-2025-54940

August 10, 2025

Vulnerability Summary: CVE-2025-54940 An HTML injection vulnerability exists in WordPress plugin "Advanced Custom Fields" prior to 6.4.3. If this vulnerability...

CVE Alert: CVE-2025-54959

August 10, 2025

Vulnerability Summary: CVE-2025-54959 Powered BLUE Server versions 0.20130927 and prior contain a path traversal vulnerability. If this vulnerability is exploited,...

CVE Alert: CVE-2025-8749

August 9, 2025

Vulnerability Summary: CVE-2025-8749 Path Traversal vulnerability in API Endpoint in Mobile Industrial Robots (MiR) Software Versions prior to 3.0.0 on...

CVE Alert: CVE-2025-53606

August 9, 2025

Vulnerability Summary: CVE-2025-53606 Deserialization of Untrusted Data vulnerability in Apache Seata (incubating). This issue affects Apache Seata (incubating): 2.4.0. Users...

CVE Alert: CVE-2025-8729

August 9, 2025

Vulnerability Summary: CVE-2025-8729 A vulnerability has been found in MigoXLab LMeterX 1.2.0 and classified as critical. Affected by this vulnerability...

CVE Alert: CVE-2025-8748

August 9, 2025

Vulnerability Summary: CVE-2025-8748 MiR software versions prior to version 3.0.0 are affected by a command injection vulnerability. A malicious HTTP...

CVE Alert: CVE-2020-9322

August 9, 2025

Vulnerability Summary: CVE-2020-9322 The /users endpoint in Statamic Core before 2.11.8 allows XSS to add an administrator user. This can...

CVE Alert: CVE-2025-36023

August 9, 2025

Vulnerability Summary: CVE-2025-36023 IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF005 and 24.0.1 through 24.0.1 IF002 could allow...

CVE Alert: CVE-2025-8730

August 9, 2025

Vulnerability Summary: CVE-2025-8730 A vulnerability was found in Belkin F9K1009 and F9K1010 2.00.04/2.00.09 and classified as critical. Affected by this...

CVE Alert: CVE-2025-36119

August 9, 2025

Vulnerability Summary: CVE-2025-36119 IBM i 7.3, 7.4, 7.5, and 7.6 is affected by an authenticated user obtaining elevated privileges with...

CVE Alert: CVE-2025-52586

August 9, 2025

Vulnerability Summary: CVE-2025-52586 The MOD3 command traffic between the monitoring application and the inverter is transmitted in plaintext without encryption...

CVE Alert: CVE-2025-8355

August 9, 2025

Vulnerability Summary: CVE-2025-8355 In Xerox FreeFlow Core version 8.0.4, improper handling of XML input allows injection of external entities. An...

CVE Alert: CVE-2025-50465

August 9, 2025

Vulnerability Summary: CVE-2025-50465 OpenMetadata

CVE Alert: CVE-2025-8356

August 9, 2025

Vulnerability Summary: CVE-2025-8356 In Xerox FreeFlow Core version 8.0.4, an attacker can exploit a Path Traversal vulnerability to access unauthorized...

Vulnerabilities

CVE Alert: CVE-2025-8773

CVE Alert: CVE-2025-8775

CVE Alert: CVE-2024-58256

CVE Alert: CVE-2024-58257

CVE Alert: CVE-2025-8708

CVE Alert: CVE-2025-8707

CVE Alert: CVE-2024-58255

CVE Alert: CVE-2025-54958

CVE Alert: CVE-2025-48913

CVE Alert: CVE-2025-6572

CVE Alert: CVE-2025-54940

CVE Alert: CVE-2025-54959

CVE Alert: CVE-2025-8749

CVE Alert: CVE-2025-53606

CVE Alert: CVE-2025-8729

CVE Alert: CVE-2025-8748

CVE Alert: CVE-2020-9322

CVE Alert: CVE-2025-36023

CVE Alert: CVE-2025-8730

CVE Alert: CVE-2025-36119

CVE Alert: CVE-2025-52586

CVE Alert: CVE-2025-8355

CVE Alert: CVE-2025-50465

CVE Alert: CVE-2025-8356

BugCrowd Bug Bounty Disclosure: P3 – Publicly Editable Google Docs Linked from NASA SnowEx PPT –

BugCrowd Bug Bounty Disclosure: P3 – Details of the collaboration between NASA and Inmarsat Government and the type of contract –

Apple Products Multiple Vulnerabilities

Miljödata – 870,108 breached accounts

Cobalt Strike Beacon Detected – 119[.]91[.]203[.]199:88

You may have missed