Vulnerabilities

CVE Alert: CVE-2025-8740

August 9, 2025

Vulnerability Summary: CVE-2025-8740 A vulnerability was found in zhenfeng13 My-Blog up to 1.0.0. It has been classified as problematic. Affected...

CVE Alert: CVE-2025-8739

August 9, 2025

Vulnerability Summary: CVE-2025-8739 A vulnerability was found in zhenfeng13 My-Blog up to 1.0.0 and classified as problematic. This issue affects...

CVE Alert: CVE-2025-8743

August 9, 2025

Vulnerability Summary: CVE-2025-8743 A vulnerability classified as problematic has been found in Scada-LTS up to 2.7.8.1. This affects an unknown...

CVE Alert: CVE-2025-8742

August 9, 2025

Vulnerability Summary: CVE-2025-8742 A vulnerability was found in macrozheng mall 1.0.3. It has been rated as problematic. Affected by this...

CVE Alert: CVE-2025-54786

August 9, 2025

Vulnerability Summary: CVE-2025-54786 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. In versions 7.14.6 and 8.8.0, the...

CVE Alert: CVE-2025-54788

August 9, 2025

Vulnerability Summary: CVE-2025-54788 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. In versions and below, the InboundEmail...

CVE Alert: CVE-2025-54785

August 9, 2025

Vulnerability Summary: CVE-2025-54785 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. In versions 7.14.6 and 8.8.0, user-supplied...

CVE Alert: CVE-2025-8583

August 9, 2025

Vulnerability Summary: CVE-2025-8583 Inappropriate implementation in Permissions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to perform UI...

CVE Alert: CVE-2025-54882

August 9, 2025

Vulnerability Summary: CVE-2025-54882 Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. In versions 0.8.0 through 0.9.21...

CVE Alert: CVE-2025-3770

August 9, 2025

Vulnerability Summary: CVE-2025-3770 EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access....

CVE Alert: CVE-2025-54798

August 9, 2025

Vulnerability Summary: CVE-2025-54798 tmp is a temporary file and directory creator for node.js. In versions 0.2.3 and below, tmp is...

CVE Alert: CVE-2025-8582

August 9, 2025

Vulnerability Summary: CVE-2025-8582 Insufficient validation of untrusted input in Core in Google Chrome prior to 139.0.7258.66 allowed a remote attacker...

CVE Alert: CVE-2025-8578

August 8, 2025

Vulnerability Summary: CVE-2025-8578 Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially...

CVE Alert: CVE-2025-8581

August 8, 2025

Vulnerability Summary: CVE-2025-8581 Inappropriate implementation in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a...

CVE Alert: CVE-2025-8580

August 8, 2025

Vulnerability Summary: CVE-2025-8580 Inappropriate implementation in Filesystems in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to perform UI...

CVE Alert: CVE-2025-8577

August 8, 2025

Vulnerability Summary: CVE-2025-8577 Inappropriate implementation in Picture In Picture in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who...

CVE Alert: CVE-2025-8579

August 8, 2025

Vulnerability Summary: CVE-2025-8579 Inappropriate implementation in Picture In Picture in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who...

CVE Alert: CVE-2024-55401

August 8, 2025

Vulnerability Summary: CVE-2024-55401 An issue in 4C Strategies Exonaut before v22.4 allows attackers to execute a directory traversal. Affected Endpoints:...

CVE Alert: CVE-2025-8576

August 8, 2025

Vulnerability Summary: CVE-2025-8576 Use after free in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially...

CVE Alert: CVE-2025-32094

August 8, 2025

Vulnerability Summary: CVE-2025-32094 An issue was discovered in Akamai Ghost, as used for the Akamai CDN platform before 2025-03-26. Under...

CVE Alert: CVE-2024-52680

August 8, 2025

Vulnerability Summary: CVE-2024-52680 EyouCMS 1.6.7 is vulnerable to Cross Site Scripting (XSS) in /login.php?m=admin&c=System&a=web&lang=cn. Affected Endpoints: No affected endpoints listed....

CVE Alert: CVE-2025-35970

August 8, 2025

Vulnerability Summary: CVE-2025-35970 On multiple products of SEIKO EPSON and FUJIFILM Corporation, the initial administrator password is easy to guess...

CVE Alert: CVE-2025-55134

August 8, 2025

Vulnerability Summary: CVE-2025-55134 In Agora Foundation Agora fall23-Alpha1 before b087490, there is XSS via tag in client/agora/public/js/editorManager.js. Affected Endpoints: No...

CVE Alert: CVE-2025-47188

August 8, 2025

Vulnerability Summary: CVE-2025-47188 A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970...

Vulnerabilities

CVE Alert: CVE-2025-8740

CVE Alert: CVE-2025-8739

CVE Alert: CVE-2025-8743

CVE Alert: CVE-2025-8742

CVE Alert: CVE-2025-54786

CVE Alert: CVE-2025-54788

CVE Alert: CVE-2025-54785

CVE Alert: CVE-2025-8583

CVE Alert: CVE-2025-54882

CVE Alert: CVE-2025-3770

CVE Alert: CVE-2025-54798

CVE Alert: CVE-2025-8582

CVE Alert: CVE-2025-8578

CVE Alert: CVE-2025-8581

CVE Alert: CVE-2025-8580

CVE Alert: CVE-2025-8577

CVE Alert: CVE-2025-8579

CVE Alert: CVE-2024-55401

CVE Alert: CVE-2025-8576

CVE Alert: CVE-2025-32094

CVE Alert: CVE-2024-52680

CVE Alert: CVE-2025-35970

CVE Alert: CVE-2025-55134

CVE Alert: CVE-2025-47188

BugCrowd Bug Bounty Disclosure: P3 – Publicly Editable Google Docs Linked from NASA SnowEx PPT –

BugCrowd Bug Bounty Disclosure: P3 – Details of the collaboration between NASA and Inmarsat Government and the type of contract –

Apple Products Multiple Vulnerabilities

Miljödata – 870,108 breached accounts

Cobalt Strike Beacon Detected – 119[.]91[.]203[.]199:88

You may have missed