CVE Alert: CVE-2025-39392
Vulnerability Summary: CVE-2025-39392 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mojoomla WPAMS allows Reflected XSS.This...
Vulnerabilities
CVE Alert: CVE-2025-39355
Vulnerability Summary: CVE-2025-39355 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in roninwp FAT Services...
CVE Alert: CVE-2025-39352
Vulnerability Summary: CVE-2025-39352 Missing Authorization vulnerability in ThemeGoods Grand Restaurant WordPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue...
CVE Alert: CVE-2025-39350
Vulnerability Summary: CVE-2025-39350 Missing Authorization vulnerability in Rocket Apps wProject.This issue affects wProject: from n/a before 5.8.0. Affected Endpoints: No...
CVE Alert: CVE-2025-39354
Vulnerability Summary: CVE-2025-39354 Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Conference allows Object Injection.This issue affects Grand Conference: from...
CVE Alert: CVE-2025-39380
Vulnerability Summary: CVE-2025-39380 Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla Hospital Management System allows Upload a Web...
CVE Alert: CVE-2025-39366
Vulnerability Summary: CVE-2025-39366 Incorrect Privilege Assignment vulnerability in Rocket Apps wProject.This issue affects wProject: from n/a before 5.8.0. Affected Endpoints:...
CVE Alert: CVE-2025-39386
Vulnerability Summary: CVE-2025-39386 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla Hospital Management...
CVE Alert: CVE-2025-39389
Vulnerability Summary: CVE-2025-39389 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Solid Plugins AnalyticsWP...
CVE Alert: CVE-2025-39372
Vulnerability Summary: CVE-2025-39372 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in elbisnero WordPress Events Calendar Registration...
CVE Alert: CVE-2025-46441
Vulnerability Summary: CVE-2025-46441 Path Traversal: '.../...//' vulnerability in ctltwp Section Widget allows Path Traversal.This issue affects Section Widget: from n/a...
CVE Alert: CVE-2025-39395
Vulnerability Summary: CVE-2025-39395 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla WPAMS allows...
CVE Alert: CVE-2025-47935
Vulnerability Summary: CVE-2025-47935 Multer is a node.js middleware for handling `multipart/form-data`. Versions prior to 2.0.0 are vulnerable to a resource...
CVE Alert: CVE-2025-39401
Vulnerability Summary: CVE-2025-39401 Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a Web Shell to...
CVE Alert: CVE-2025-39402
Vulnerability Summary: CVE-2025-39402 Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a Web Shell to...
CVE Alert: CVE-2025-3223
Vulnerability Summary: CVE-2025-3223 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in GE Vernova WorkstationST on...
CVE Alert: CVE-2025-47946
Vulnerability Summary: CVE-2025-47946 Symfony UX is an initiative and set of libraries to integrate JavaScript tools into applications. Prior to...
CVE Alert: CVE-2025-48340
Vulnerability Summary: CVE-2025-48340 Cross-Site Request Forgery (CSRF) vulnerability in Danny Vink User Profile Meta Manager allows Privilege Escalation.This issue affects...
CVE Alert: CVE-2025-39393
Vulnerability Summary: CVE-2025-39393 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mojoomla Hospital Management System allows...
CVE Alert: CVE-2025-47944
Vulnerability Summary: CVE-2025-47944 Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability that is present starting in version 1.4.4-lts.1...
CVE Alert: CVE-2025-4863
Vulnerability Summary: CVE-2025-4863 A vulnerability, which was classified as critical, was found in Advaya Softech GEMS ERP Portal 2.1. This...
CVE Alert: CVE-2025-4861
Vulnerability Summary: CVE-2025-4861 A vulnerability classified as critical was found in PHPGurukul Beauty Parlour Management System 1.1. Affected by this...
CVE Alert: CVE-2025-4865
Vulnerability Summary: CVE-2025-4865 A vulnerability was found in itsourcecode Restaurant Management System 1.0 and classified as critical. This issue affects...
CVE Alert: CVE-2025-4864
Vulnerability Summary: CVE-2025-4864 A vulnerability has been found in itsourcecode Restaurant Management System 1.0 and classified as critical. This vulnerability...
