CVE Alert: CVE-2025-54593
Vulnerability Summary: CVE-2025-54593 FreshRSS is a free, self-hostable RSS aggregator. In versions 1.26.1 and below, an authenticated administrator user can...
Vulnerabilities
CVE Alert: CVE-2025-54595
Vulnerability Summary: CVE-2025-54595 Pearcleaner is a free, source-available and fair-code licensed mac app cleaner. The PearcleanerHelper is a privileged helper...
CVE Alert: CVE-2025-6004
Vulnerability Summary: CVE-2025-6004 Vault and Vault Enterprise’s (“Vault”) user lockout feature could be bypassed for Userpass and LDAP authentication methods....
CVE Alert: CVE-2025-6011
Vulnerability Summary: CVE-2025-6011 A timing side channel in Vault and Vault Enterprise’s (“Vault”) userpass auth method allowed an attacker to...
CVE Alert: CVE-2025-6014
Vulnerability Summary: CVE-2025-6014 Vault and Vault Enterprise’s (“Vault”) TOTP Secrets Engine code validation endpoint is susceptible to code reuse within...
CVE Alert: CVE-2025-54574
Vulnerability Summary: CVE-2025-54574 Squid is a caching proxy for the Web. In versions 6.3 and below, Squid is vulnerable to...
CVE Alert: CVE-2025-54564
Vulnerability Summary: CVE-2025-54564 uploadsm in ChargePoint Home Flex 5.5.4.13 does not validate a user-controlled string for bz2 decompression, which allows...
CVE Alert: CVE-2025-8473
Vulnerability Summary: CVE-2025-8473 Alpine iLX-507 UPDM_wstpCBCUpdStart Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on...
CVE Alert: CVE-2025-8474
Vulnerability Summary: CVE-2025-8474 Alpine iLX-507 CarPlay Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows physically present attackers to execute...
CVE Alert: CVE-2025-5999
Vulnerability Summary: CVE-2025-5999 A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own...
CVE Alert: CVE-2025-8475
Vulnerability Summary: CVE-2025-8475 Alpine iLX-507 AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute...
CVE Alert: CVE-2025-6000
Vulnerability Summary: CVE-2025-6000 A privileged Vault operator within the root namespace with write permission to {{sys/audit}} may obtain code execution...
CVE Alert: CVE-2025-8480
Vulnerability Summary: CVE-2025-8480 Alpine iLX-507 Command Injection Remote Code Execution. This vulnerability allows network-adjacent attackers to execute arbitrary code on...
CVE Alert: CVE-2025-8472
Vulnerability Summary: CVE-2025-8472 Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to...
CVE Alert: CVE-2025-6015
Vulnerability Summary: CVE-2025-6015 Vault and Vault Enterprise’s (“Vault”) login MFA rate limits could be bypassed and TOTP tokens could be...
CVE Alert: CVE-2025-6037
Vulnerability Summary: CVE-2025-6037 Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured...
CVE Alert: CVE-2025-8477
Vulnerability Summary: CVE-2025-8477 Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to...
CVE Alert: CVE-2025-54132
Vulnerability Summary: CVE-2025-54132 Cursor is a code editor built for programming with AI. In versions below 1.3, Mermaid (which is...
CVE Alert: CVE-2025-54424
Vulnerability Summary: CVE-2025-54424 1Panel is a web interface and MCP Server that manages websites, files, containers, databases, and LLMs on...
CVE Alert: CVE-2025-8476
Vulnerability Summary: CVE-2025-8476 Alpine iLX-507 TIDAL Improper Certificate Validation Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on...
CVE Alert: CVE-2025-54131
Vulnerability Summary: CVE-2025-54131 Cursor is a code editor built for programming with AI. In versions below 1.3, an attacker can...
CVE Alert: CVE-2024-13978
Vulnerability Summary: CVE-2024-13978 A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by...
CVE Alert: CVE-2025-8401
Vulnerability Summary: CVE-2025-8401 The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure...
CVE Alert: CVE-2025-8068
Vulnerability Summary: CVE-2025-8068 The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized modification and...
