Vulnerabilities

CVE Alert: CVE-2025-0720

January 27, 2025

Vulnerability Summary: CVE-2025-0720 A vulnerability was found in Microword eScan Antivirus 7.0.32 on Linux. It has been rated as problematic....

CVE Alert: CVE-2017-20196

January 27, 2025

Vulnerability Summary: CVE-2017-20196 A vulnerability was found in Itechscripts School Management Software 2.75. It has been classified as critical. This...

CVE Alert: CVE-2023-38009

January 27, 2025

Vulnerability Summary: CVE-2023-38009 IBM Cognos Mobile Client 1.1 iOS may be vulnerable to information disclosure through man in the middle...

CVE Alert: CVE-2023-50946

January 27, 2025

Vulnerability Summary: CVE-2023-50946 IBM Common Licensing 9.0 could allow an authenticated user to modify a configuration file that they should...

CVE Alert: CVE-2024-13370

January 26, 2025

Vulnerability Summary: CVE-2024-13370 The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress...

CVE Alert: CVE-2024-12113

January 26, 2025

Vulnerability Summary: CVE-2024-12113 The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress...

CVE Alert: CVE-2024-12076

January 26, 2025

Vulnerability Summary: CVE-2024-12076 The Target Video Easy Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...

CVE Alert: CVE-2024-12512

January 26, 2025

Vulnerability Summary: CVE-2024-12512 The Ask Me Anything (Anonymously) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2024-11825

January 26, 2025

Vulnerability Summary: CVE-2024-11825 The Broadstreet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘zone’ parameter in all...

CVE Alert: CVE-2024-13368

January 26, 2025

Vulnerability Summary: CVE-2024-13368 The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress...

CVE Alert: CVE-2024-12817

January 26, 2025

Vulnerability Summary: CVE-2024-12817 The Etsy Importer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'product_link' shortcode...

CVE Alert: CVE-2024-12826

January 26, 2025

Vulnerability Summary: CVE-2024-12826 The GoHero Store Customizer for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due...

CVE Alert: CVE-2024-12816

January 26, 2025

Vulnerability Summary: CVE-2024-12816 The NOTICE BOARD BY TOWKIR plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2024-12885

January 26, 2025

Vulnerability Summary: CVE-2024-12885 The Connections Business Directory plugin for WordPress is vulnerable to arbitrary directory deletion due to insufficient file...

CVE Alert: CVE-2024-13441

January 26, 2025

Vulnerability Summary: CVE-2024-13441 The Bilingual Linker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the bl_otherlang_link_1 parameter in...

CVE Alert: CVE-2024-13550

January 26, 2025

Vulnerability Summary: CVE-2024-13550 The ABC Notation plugin for WordPress is vulnerable to Path Traversal in all versions up to, and...

CVE Alert: CVE-2024-13458

January 26, 2025

Vulnerability Summary: CVE-2024-13458 The WordPress SEO Friendly Accordion FAQ with AI assisted content generation plugin for WordPress is vulnerable to...

CVE Alert: CVE-2024-13548

January 26, 2025

Vulnerability Summary: CVE-2024-13548 The Power Ups for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2024-13467

January 26, 2025

Vulnerability Summary: CVE-2024-13467 The WP Contact Form7 Email Spam Blocker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via...

CVE Alert: CVE-2024-13599

January 26, 2025

Vulnerability Summary: CVE-2024-13599 The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all...

CVE Alert: CVE-2024-13551

January 26, 2025

Vulnerability Summary: CVE-2024-13551 The ABC Notation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'abcjs' shortcode...

CVE Alert: CVE-2024-13586

January 26, 2025

Vulnerability Summary: CVE-2024-13586 The Masy Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'justified-gallery' shortcode...

CVE Alert: CVE-2024-13450

January 26, 2025

Vulnerability Summary: CVE-2024-13450 The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom...

CVE Alert: CVE-2024-13449

January 26, 2025

Vulnerability Summary: CVE-2024-13449 The Boom Fest plugin for WordPress is vulnerable to unauthorized modification of data due to a missing...

Vulnerabilities

CVE Alert: CVE-2025-0720

CVE Alert: CVE-2017-20196

CVE Alert: CVE-2023-38009

CVE Alert: CVE-2023-50946

CVE Alert: CVE-2024-13370

CVE Alert: CVE-2024-12113

CVE Alert: CVE-2024-12076

CVE Alert: CVE-2024-12512

CVE Alert: CVE-2024-11825

CVE Alert: CVE-2024-13368

CVE Alert: CVE-2024-12817

CVE Alert: CVE-2024-12826

CVE Alert: CVE-2024-12816

CVE Alert: CVE-2024-12885

CVE Alert: CVE-2024-13441

CVE Alert: CVE-2024-13550

CVE Alert: CVE-2024-13458

CVE Alert: CVE-2024-13548

CVE Alert: CVE-2024-13467

CVE Alert: CVE-2024-13599

CVE Alert: CVE-2024-13551

CVE Alert: CVE-2024-13586

CVE Alert: CVE-2024-13450

CVE Alert: CVE-2024-13449

CVE Alert: CVE-2025-48703 – centos-webpanel – CentOS Web Panel

CVE Alert: CVE-2025-11371 – Gladinet – CentreStack and TrioFox

[QILIN] – Ransomware Victim: Prova

[COINBASECARTEL] – Ransomware Victim: Property Finder / PropSpace

[AKIRA] – Ransomware Victim: MS Metal Solutions

You may have missed