CVE Alert: CVE-2025-25045
Vulnerability Summary: CVE-2025-25045 IBM InfoSphere Information 11.7 Server authenticated user to obtain sensitive information when a detailed technical error message...
CVE Alert: CVE-2025-25046
Vulnerability Summary: CVE-2025-25046 IBM InfoSphere Information Server 11.7 DataStage Flow Designer transmits sensitive information via URL or query parameters that...
CVE Alert: CVE-2025-46252
Vulnerability Summary: CVE-2025-46252 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in kofimokome Message Filter...
CVE Alert: CVE-2025-46245
Vulnerability Summary: CVE-2025-46245 Cross-Site Request Forgery (CSRF) vulnerability in CreativeMindsSolutions CM Ad Changer allows Cross Site Request Forgery. This issue...
CVE Alert: CVE-2025-46242
Vulnerability Summary: CVE-2025-46242 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bob Watu Quiz...
CVE Alert: CVE-2025-46244
Vulnerability Summary: CVE-2025-46244 Missing Authorization vulnerability in Dotstore Advanced Linked Variations for Woocommerce allows Exploiting Incorrectly Configured Access Control Security...
CVE Alert: CVE-2025-46243
Vulnerability Summary: CVE-2025-46243 Cross-Site Request Forgery (CSRF) vulnerability in sonalsinha21 Recover abandoned cart for WooCommerce allows Cross Site Request Forgery....
CVE Alert: CVE-2025-46247
Vulnerability Summary: CVE-2025-46247 Missing Authorization vulnerability in codepeople Appointment Booking Calendar allows Accessing Functionality Not Properly Constrained by ACLs. This...
CVE Alert: CVE-2025-46251
Vulnerability Summary: CVE-2025-46251 Cross-Site Request Forgery (CSRF) vulnerability in e4jvikwp VikRestaurants Table Reservations and Take-Away allows Cross Site Request Forgery....
CVE Alert: CVE-2025-46250
Vulnerability Summary: CVE-2025-46250 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vikas Ratudi VForm allows Stored...
CVE Alert: CVE-2025-46249
Vulnerability Summary: CVE-2025-46249 Cross-Site Request Forgery (CSRF) vulnerability in Michael Simple calendar for Elementor allows Cross Site Request Forgery. This...
CVE Alert: CVE-2025-46254
Vulnerability Summary: CVE-2025-46254 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visual Composer Visual Composer Website...
CVE Alert: CVE-2024-11299
Vulnerability Summary: CVE-2024-11299 The Memberpress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and...
CVE Alert: CVE-2025-3458
Vulnerability Summary: CVE-2025-3458 The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ocean_gallery_id’ parameter in...
CVE Alert: CVE-2025-46253
Vulnerability Summary: CVE-2025-46253 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ataur R GutenKit allows Stored...
CVE Alert: CVE-2025-3457
Vulnerability Summary: CVE-2025-3457 The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'oceanwp_icon' shortcode...
CVE Alert: CVE-2025-3472
Vulnerability Summary: CVE-2025-3472 The Ocean Extra plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to,...
CVE Alert: CVE-2025-23175
Vulnerability Summary: CVE-2025-23175 Multiple XSS (CWE-79) Affected Endpoints: No affected endpoints listed. Published Date: 4/22/2025, 1:15:42 PM ⚠️ CVSS Score:...
CVE Alert: CVE-2025-23176
Vulnerability Summary: CVE-2025-23176 CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Affected Endpoints: No affected...
CVE Alert: CVE-2024-46546
Vulnerability Summary: CVE-2024-46546 NEXTU FLETA AX1500 WIFI6 Router v1.0.3 was discovered to contain a stack overflow via the url parameter...
CVE Alert: CVE-2025-1951
Vulnerability Summary: CVE-2025-1951 IBM Hardware Management Console - Power Systems V10.2.1030.0 and V10.3.1050.0 could allow a local user to execute...
CVE Alert: CVE-2024-40445
Vulnerability Summary: CVE-2024-40445 Directory Traversal vulnerability in forkosh Mime Tex before v.1.77 allows an attacker to execute arbitrary code via...
[LYNX] – Ransomware Victim: Farmo Res
Ransomware Group: LYNX VICTIM NAME: Farmo Res NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
HackerOne Bug Bounty Disclosure: remote-memory-exhaustion-in-epee-rpc-stack-under-zero-receive-window-sagewilder
Company Name: Monero Company HackerOne URL: https://hackerone.com/monero Submitted By:sagewilder2022Link to Submitters Profile:https://hackerone.com/sagewilder2022 Report Title:Remote memory exhaustion in Epee RPC stack...
