CVE Alert: CVE-2025-51088
Vulnerability Summary: CVE-2025-51088 Tenda AC8V4 V16.03.34.06` was discovered to contain stack overflow at /goform/WifiGuestSet. The manipulation of the argument `shareSpeed`...
Vulnerabilities
CVE Alert: CVE-2025-51082
Vulnerability Summary: CVE-2025-51082 Tenda AC8V4 V16.03.34.06` was discovered to contain stack overflow at /goform/fast_setting_wifi_set. The manipulation of the argument `timeZone`...
CVE Alert: CVE-2025-25214
Vulnerability Summary: CVE-2025-25214 A race condition vulnerability exists in the aVideoEncoder.json.php unzip functionality of WWBN AVideo 14.4 and dev master...
CVE Alert: CVE-2025-47061
Vulnerability Summary: CVE-2025-47061 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that...
CVE Alert: CVE-2025-8114
Vulnerability Summary: CVE-2025-8114 A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session...
CVE Alert: CVE-2025-46996
Vulnerability Summary: CVE-2025-46996 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that...
CVE Alert: CVE-2025-46993
Vulnerability Summary: CVE-2025-46993 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that...
CVE Alert: CVE-2025-41420
Vulnerability Summary: CVE-2025-41420 A cross-site scripting (xss) vulnerability exists in the userLogin cancelUri parameter functionality of WWBN AVideo 14.4 and...
CVE Alert: CVE-2025-36548
Vulnerability Summary: CVE-2025-36548 A cross-site scripting (xss) vulnerability exists in the LoginWordPress loginForm cancelUri parameter functionality of WWBN AVideo 14.4...
CVE Alert: CVE-2025-53084
Vulnerability Summary: CVE-2025-53084 A cross-site scripting (xss) vulnerability exists in the videosList page parameter functionality of WWBN AVideo 14.4 and...
CVE Alert: CVE-2025-46410
Vulnerability Summary: CVE-2025-46410 A cross-site scripting (xss) vulnerability exists in the managerPlaylists PlaylistOwnerUsersId parameter functionality of WWBN AVideo 14.4 and...
CVE Alert: CVE-2025-50128
Vulnerability Summary: CVE-2025-50128 A cross-site scripting (xss) vulnerability exists in the videoNotFound 404ErrorMsg parameter functionality of WWBN AVideo 14.4 and...
CVE Alert: CVE-2025-31955
Vulnerability Summary: CVE-2025-31955 HCL iAutomate is affected by a sensitive data exposure vulnerability. This issue may allow unauthorized access to...
CVE Alert: CVE-2025-5039
Vulnerability Summary: CVE-2025-5039 A maliciously crafted binary file, when present while loading files in certain Autodesk applications, could lead to...
CVE Alert: CVE-2025-45702
Vulnerability Summary: CVE-2025-45702 SoftPerfect Pty Ltd Connection Quality Monitor v1.1 was discovered to store all credentials in plaintext. Affected Endpoints:...
CVE Alert: CVE-2025-48732
Vulnerability Summary: CVE-2025-48732 An incomplete blacklist exists in the .htaccess sample of WWBN AVideo 14.4 and dev master commit 8a8954ff....
CVE Alert: CVE-2025-8115
Vulnerability Summary: CVE-2025-8115 A vulnerability has been found in PHPGurukul Taxi Stand Management System 1.0 and classified as problematic. Affected...
CVE Alert: CVE-2025-31952
Vulnerability Summary: CVE-2025-31952 HCL iAutomate is affected by an insufficient session expiration. This allows tokens to remain valid indefinitely unless...
CVE Alert: CVE-2025-31953
Vulnerability Summary: CVE-2025-31953 HCL iAutomate includes hardcoded credentials which may result in potential exposure of confidential data if intercepted or...
CVE Alert: CVE-2025-8123
Vulnerability Summary: CVE-2025-8123 A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been classified as critical. Affected...
CVE Alert: CVE-2025-3614
Vulnerability Summary: CVE-2025-3614 The ElementsKit Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
CVE Alert: CVE-2025-6260
Vulnerability Summary: CVE-2025-6260 The embedded web server on the thermostat listed version ranges contain a vulnerability that allows unauthenticated attackers,...
CVE Alert: CVE-2025-54453
Vulnerability Summary: CVE-2025-54453 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9...
CVE Alert: CVE-2025-54441
Vulnerability Summary: CVE-2025-54441 Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This...
