Vulnerabilities

CVE Alert: CVE-2025-8165

July 26, 2025

Vulnerability Summary: CVE-2025-8165 A vulnerability was found in code-projects Food Review System 1.0 and classified as critical. This issue affects...

CVE Alert: CVE-2025-8166

July 26, 2025

Vulnerability Summary: CVE-2025-8166 A vulnerability was found in code-projects Church Donation System 1.0. It has been classified as critical. Affected...

CVE Alert: CVE-2025-8197

July 26, 2025

Vulnerability Summary: CVE-2025-8197 A global buffer overflow vulnerability was found in the soup_header_name_to_string function in Libsoup. The `soup_header_name_to_string` function does...

CVE Alert: CVE-2025-8167

July 26, 2025

Vulnerability Summary: CVE-2025-8167 A vulnerability was found in code-projects Church Donation System 1.0. It has been declared as problematic. Affected...

CVE Alert: CVE-2025-30135

July 26, 2025

Vulnerability Summary: CVE-2025-30135 An issue was discovered on IROAD Dashcam FX2 devices. Dumping Files Over HTTP and RTSP Without Authentication...

CVE Alert: CVE-2025-8168

July 26, 2025

Vulnerability Summary: CVE-2025-8168 A vulnerability was found in D-Link DIR-513 1.10. It has been rated as critical. Affected by this...

CVE Alert: CVE-2025-46198

July 26, 2025

Vulnerability Summary: CVE-2025-46198 Cross Site Scripting vulnerability in grav v.1.7.48, v.1.7.47 and v.1.7.46 allows an attacker to execute arbitrary code...

CVE Alert: CVE-2025-8169

July 26, 2025

Vulnerability Summary: CVE-2025-8169 A vulnerability classified as critical has been found in D-Link DIR-513 1.10. This affects the function formSetWanPPTPcallback...

CVE Alert: CVE-2025-8171

July 26, 2025

Vulnerability Summary: CVE-2025-8171 A vulnerability, which was classified as critical, has been found in code-projects Document Management System 1.0. This...

CVE Alert: CVE-2025-8172

July 26, 2025

Vulnerability Summary: CVE-2025-8172 A vulnerability, which was classified as critical, was found in itsourcecode Employee Management System 1.0. Affected is...

CVE Alert: CVE-2025-8173

July 26, 2025

Vulnerability Summary: CVE-2025-8173 A vulnerability has been found in 1000 Projects ABC Courier Management System 1.0 and classified as critical....

CVE Alert: CVE-2025-8170

July 26, 2025

Vulnerability Summary: CVE-2025-8170 A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748_B20211015. This vulnerability affects the function tcpcheck_net...

CVE Alert: CVE-2025-3669

July 26, 2025

Vulnerability Summary: CVE-2025-3669 The Supreme Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2025-6539

July 26, 2025

Vulnerability Summary: CVE-2025-6539 The Voltax Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter...

CVE Alert: CVE-2025-5084

July 26, 2025

Vulnerability Summary: CVE-2025-5084 The Post Grid Master plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘argsArray’ parameter...

CVE Alert: CVE-2025-6588

July 26, 2025

Vulnerability Summary: CVE-2025-6588 The FunnelCockpit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘error’ parameter in all...

CVE Alert: CVE-2025-4608

July 26, 2025

Vulnerability Summary: CVE-2025-4608 The Structured Content plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sc_fs_local_business shortcode...

CVE Alert: CVE-2025-6382

July 26, 2025

Vulnerability Summary: CVE-2025-6382 The Taeggie Feed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's taeggie-feed shortcode...

CVE Alert: CVE-2025-6385

July 26, 2025

Vulnerability Summary: CVE-2025-6385 The WP Applink plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title’ parameter in...

CVE Alert: CVE-2025-6387

July 26, 2025

Vulnerability Summary: CVE-2025-6387 The WP Get The Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’...

CVE Alert: CVE-2025-6441

July 26, 2025

Vulnerability Summary: CVE-2025-6441 The Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition plugin for WordPress is vulnerable...

CVE Alert: CVE-2025-7835

July 26, 2025

Vulnerability Summary: CVE-2025-7835 The iThoughts Advanced Code Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...

CVE Alert: CVE-2025-7780

July 25, 2025

Vulnerability Summary: CVE-2025-7780 The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to,...

CVE Alert: CVE-2025-7695

July 25, 2025

Vulnerability Summary: CVE-2025-7695 The Dataverse Integration plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization checks within...

Vulnerabilities

CVE Alert: CVE-2025-8165

CVE Alert: CVE-2025-8166

CVE Alert: CVE-2025-8197

CVE Alert: CVE-2025-8167

CVE Alert: CVE-2025-30135

CVE Alert: CVE-2025-8168

CVE Alert: CVE-2025-46198

CVE Alert: CVE-2025-8169

CVE Alert: CVE-2025-8171

CVE Alert: CVE-2025-8172

CVE Alert: CVE-2025-8173

CVE Alert: CVE-2025-8170

CVE Alert: CVE-2025-3669

CVE Alert: CVE-2025-6539

CVE Alert: CVE-2025-5084

CVE Alert: CVE-2025-6588

CVE Alert: CVE-2025-4608

CVE Alert: CVE-2025-6382

CVE Alert: CVE-2025-6385

CVE Alert: CVE-2025-6387

CVE Alert: CVE-2025-6441

CVE Alert: CVE-2025-7835

CVE Alert: CVE-2025-7780

CVE Alert: CVE-2025-7695

BugCrowd Bug Bounty Disclosure: P3 – Publicly Editable Google Docs Linked from NASA SnowEx PPT –

BugCrowd Bug Bounty Disclosure: P3 – Details of the collaboration between NASA and Inmarsat Government and the type of contract –

Apple Products Multiple Vulnerabilities

Miljödata – 870,108 breached accounts

Cobalt Strike Beacon Detected – 119[.]91[.]203[.]199:88

You may have missed