Vulnerabilities

CVE Alert: CVE-2025-47578

May 13, 2025

Vulnerability Summary: CVE-2025-47578 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Edward Caissie BNS Twitter Follow...

CVE Alert: CVE-2025-46611

May 13, 2025

Vulnerability Summary: CVE-2025-46611 Cross Site Scripting vulnerability in ARTEC EMA Mail v6.92 allows an attacker to execute arbitrary code via...

CVE Alert: CVE-2025-46737

May 13, 2025

Vulnerability Summary: CVE-2025-46737 SEL-5037 Grid Configurator contains an overly permissive Cross Origin Resource Sharing (CORS) configuration for a data gateway...

CVE Alert: CVE-2025-46743

May 13, 2025

Vulnerability Summary: CVE-2025-46743 An authenticated user's token could be used by another source after the user had logged out prior...

CVE Alert: CVE-2025-46742

May 13, 2025

Vulnerability Summary: CVE-2025-46742 Users who were required to change their password could still access system information before changing their password...

CVE Alert: CVE-2025-44022

May 13, 2025

Vulnerability Summary: CVE-2025-44022 An issue in vvveb CMS v.1.0.6 allows a remote attacker to execute arbitrary code via the Plugin...

CVE Alert: CVE-2025-44830

May 13, 2025

Vulnerability Summary: CVE-2025-44830 EngineerCMS v1.02 through v.2.0.5 has a SQL injection vulnerability in the /project/addprojtemplet interface. Affected Endpoints: No affected...

CVE Alert: CVE-2025-3632

May 13, 2025

Vulnerability Summary: CVE-2025-3632 IBM 4769 Developers Toolkit 7.0.0 through 7.5.52 could allow a remote attacker to cause a denial of...

CVE Alert: CVE-2025-46750

May 13, 2025

Vulnerability Summary: CVE-2025-46750 SEL BIOS packages prior to 1.3.49152.117 or 2.6.49152.98 allow a local attacker to bypass password authentication and...

CVE Alert: CVE-2025-46741

May 13, 2025

Vulnerability Summary: CVE-2025-46741 A suspended or recently logged-out user could continue to interact with Blueframe until the time-out period occurred....

CVE Alert: CVE-2025-46739

May 13, 2025

Vulnerability Summary: CVE-2025-46739 An unauthenticated user could discover account credentials via a brute-force attack without rate limiting Affected Endpoints: No...

CVE Alert: CVE-2025-46740

May 13, 2025

Vulnerability Summary: CVE-2025-46740 An authenticated user without user administrative permissions could change the administrator Account Name. Affected Endpoints: No affected...

CVE Alert: CVE-2025-45779

May 13, 2025

Vulnerability Summary: CVE-2025-45779 Tenda AC10 V1.0re_V15.03.06.46 is vulnerable to Buffer Overflow in the formSetPPTPUserList handler via the list POST parameter....

CVE Alert: CVE-2025-46746

May 13, 2025

Vulnerability Summary: CVE-2025-46746 An administrator could discover another account's credentials. Affected Endpoints: No affected endpoints listed. Published Date: 5/12/2025, 5:15:48...

CVE Alert: CVE-2025-46749

May 13, 2025

Vulnerability Summary: CVE-2025-46749 An authenticated user could submit scripting to fields that lack proper input and output sanitization leading to...

CVE Alert: CVE-2025-46747

May 13, 2025

Vulnerability Summary: CVE-2025-46747 An authenticated user without user-management permissions could identify other user accounts. Affected Endpoints: No affected endpoints listed....

CVE Alert: CVE-2025-46748

May 13, 2025

Vulnerability Summary: CVE-2025-46748 An authenticated user attempting to change their password could do so without using the current password. Affected...

CVE Alert: CVE-2025-46745

May 13, 2025

Vulnerability Summary: CVE-2025-46745 An authenticated user without user-management permissions could view other users' account information. Affected Endpoints: No affected endpoints...

CVE Alert: CVE-2024-4981

May 13, 2025

Vulnerability Summary: CVE-2024-4981 A vulnerability was discovered in Pagure server. If a malicious user were to submit a git repository...

CVE Alert: CVE-2024-4982

May 13, 2025

Vulnerability Summary: CVE-2024-4982 A directory traversal vulnerability was discovered in Pagure server. If a malicious user submits a specially cratfted...

CVE Alert: CVE-2025-47682

May 13, 2025

Vulnerability Summary: CVE-2025-47682 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vision Technologies...

CVE Alert: CVE-2025-46744

May 13, 2025

Vulnerability Summary: CVE-2025-46744 An authenticated administrator could modify the Created By username for a user account Affected Endpoints: No affected...

CVE Alert: CVE-2025-1079

May 13, 2025

Vulnerability Summary: CVE-2025-1079 Client RCE on macOS and Linux via improper symbolic link resolution in Google Web Designer's preview feature...

CVE Alert: CVE-2025-4532

May 13, 2025

Vulnerability Summary: CVE-2025-4532 A vulnerability classified as critical has been found in Shanghai Bairui Information Technology SunloginClient 15.8.3.19819. This affects...

Vulnerabilities

CVE Alert: CVE-2025-47578

CVE Alert: CVE-2025-46611

CVE Alert: CVE-2025-46737

CVE Alert: CVE-2025-46743

CVE Alert: CVE-2025-46742

CVE Alert: CVE-2025-44022

CVE Alert: CVE-2025-44830

CVE Alert: CVE-2025-3632

CVE Alert: CVE-2025-46750

CVE Alert: CVE-2025-46741

CVE Alert: CVE-2025-46739

CVE Alert: CVE-2025-46740

CVE Alert: CVE-2025-45779

CVE Alert: CVE-2025-46746

CVE Alert: CVE-2025-46749

CVE Alert: CVE-2025-46747

CVE Alert: CVE-2025-46748

CVE Alert: CVE-2025-46745

CVE Alert: CVE-2024-4981

CVE Alert: CVE-2024-4982

CVE Alert: CVE-2025-47682

CVE Alert: CVE-2025-46744

CVE Alert: CVE-2025-1079

CVE Alert: CVE-2025-4532

[INTERLOCK] – Ransomware Victim: Your Building Centers

CVE Alert: CVE-2025-27449

CVE Alert: CVE-2025-27450

CVE Alert: CVE-2025-27448

CVE Alert: CVE-2025-27451

You may have missed