CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CVE Alert: CVE-2025-1561
Vulnerability Summary: CVE-2025-1561 The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
CVE Alert: CVE-2020-36843
Vulnerability Summary: CVE-2020-36843 The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0.3.0 exhibits signature malleability and does not satisfy...
CVE Alert: CVE-2024-7296
Vulnerability Summary: CVE-2024-7296 An issue was discovered in GitLab EE affecting all versions from 16.5 prior to 17.7.7, 17.8 prior...
CVE Alert: CVE-2025-2104
Vulnerability Summary: CVE-2025-2104 The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to unauthorized...
CVE Alert: CVE-2024-13054
Vulnerability Summary: CVE-2024-13054 An issue was discovered in GitLab CE/EE affecting all versions before 17.7.7, 17.8 prior to 17.8.5, and...
CVE Alert: CVE-2024-12380
Vulnerability Summary: CVE-2024-12380 An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions...
CVE Alert: CVE-2025-1119
Vulnerability Summary: CVE-2025-1119 The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to arbitrary...
CVE Alert: CVE-2024-8402
Vulnerability Summary: CVE-2024-8402 An issue was discovered in GitLab EE affecting all versions starting from 17.2 before 17.7.7, all versions...
CVE Alert: CVE-2025-0652
Vulnerability Summary: CVE-2025-0652 An issue has been discovered in GitLab EE/CE affecting all versions starting from 16.9 before 17.7.7, all...
CVE Alert: CVE-2025-1257
Vulnerability Summary: CVE-2025-1257 An issue was discovered in GitLab EE affecting all versions starting with 12.3 before 17.7.7, 17.8 prior...
HackerOne Bug Bounty Disclosure: stored-cross-site-scripting-found-in-custom-integration-app-on-hxxps-admin-b-autodesk-com-the-white-evil
Company Name: Autodesk Company HackerOne URL: https://hackerone.com/autodesk Submitted By:the-white-evilLink to Submitters Profile:https://hackerone.com/the-white-evil Report Title:Stored Cross-Site Scripting found in custom integration...
HackerOne Bug Bounty Disclosure: -fa-bypass-leads-to-impersonation-of-legimate-users-dedoxd
Company Name: Drugs.com Company HackerOne URL: https://hackerone.com/drugs_com Submitted By:dedoxd2Link to Submitters Profile:https://hackerone.com/dedoxd2 Report Title:2FA Bypass leads to impersonation of legimate...
Microsoft Edge Multiple Vulnerabilities
Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution,...
Google Chrome Multiple Vulnerabilities
Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger remote code...
Apple Products Remote Code Execution Vulnerability
A vulnerability has been identified in Apple Products. A remote attacker could exploit this vulnerability to trigger remote code execution...
Juniper Junos OS Remote Code Execution Vulnerability
A vulnerability has been identified in Juniper Junos OS. An attacker could exploit this vulnerability to trigger remote code execution...
CVE Alert: CVE-2024-10942
Vulnerability Summary: CVE-2024-10942 The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to PHP Object Injection in all...
CVE Alert: CVE-2025-2271
Vulnerability Summary: CVE-2025-2271 A vulnerability exists in Issuetrak v17.2.2 and prior that allows a low-privileged user to access audit results...
CVE Alert: CVE-2025-25175
Vulnerability Summary: CVE-2025-25175 A vulnerability has been identified in Simcenter Femap V2401 (All versions < V2401.0003), Simcenter Femap V2406 (All...
CVE Alert: CVE-2025-21104
Vulnerability Summary: CVE-2025-21104 Dell NetWorker, 19.11.0.3 and below versions, contain(s) an Open Redirect Vulnerability in NMC. An unauthenticated attacker with...
CVE Alert: CVE-2025-1785
Vulnerability Summary: CVE-2025-1785 The Download Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and...
CVE Alert: CVE-2024-9042
Vulnerability Summary: CVE-2024-9042 This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it...
CVE Alert: CVE-2025-1428
Vulnerability Summary: CVE-2025-1428 A maliciously crafted CATPART file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A...
