CVE Alert: CVE-2025-4288
Vulnerability Summary: CVE-2025-4288 A vulnerability classified as critical has been found in PCMan FTP Server 2.0.7. This affects an unknown...
CVE Alert: CVE-2025-0915
Vulnerability Summary: CVE-2025-0915 IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through...
CVE Alert: CVE-2025-1493
Vulnerability Summary: CVE-2025-1493 IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 12.1.0 through 12.1.1 could allow an...
CVE Alert: CVE-2025-4291
Vulnerability Summary: CVE-2025-4291 A vulnerability, which was classified as critical, was found in IdeaCMS up to 1.6. Affected is the...
CVE Alert: CVE-2025-4290
Vulnerability Summary: CVE-2025-4290 A vulnerability, which was classified as critical, has been found in PCMan FTP Server 2.0.7. This issue...
CVE Alert: CVE-2025-4293
Vulnerability Summary: CVE-2025-4293 A vulnerability was found in MRCMS 3.1.3 and classified as problematic. Affected by this issue is some...
CVE Alert: CVE-2025-4297
Vulnerability Summary: CVE-2025-4297 A vulnerability was found in PHPGurukul Men Salon Management System 2.0. It has been classified as critical....
CVE Alert: CVE-2025-4292
Vulnerability Summary: CVE-2025-4292 A vulnerability has been found in MRCMS 3.1.3 and classified as problematic. Affected by this vulnerability is...
CVE Alert: CVE-2025-3746
Vulnerability Summary: CVE-2025-3746 The OTP-less one tap Sign in plugin for WordPress is vulnerable to privilege escalation via account takeover...
CVE Alert: CVE-2025-4177
Vulnerability Summary: CVE-2025-4177 The Flynax Bridge plugin for WordPress is vulnerable to unauthorized loss of data due to a missing...
CVE Alert: CVE-2025-3670
Vulnerability Summary: CVE-2025-3670 The KiwiChat NextClient plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in...
CVE Alert: CVE-2025-2880
Vulnerability Summary: CVE-2025-2880 The Yame | Link In Bio plugin for WordPress is vulnerable to Sensitive Information Exposure in all...
CVE Alert: CVE-2025-4179
Vulnerability Summary: CVE-2025-4179 The Flynax Bridge plugin for WordPress is vulnerable to limited Privilege Escalation due to a missing capability...
CVE Alert: CVE-2024-13322
Vulnerability Summary: CVE-2024-13322 The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to SQL Injection...
CVE Alert: CVE-2025-4131
Vulnerability Summary: CVE-2025-4131 The GmapsMania plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's gmap shortcode in...
CVE Alert: CVE-2024-13419
Vulnerability Summary: CVE-2024-13419 Multiple plugins and/or themes for WordPress using Smart Framework are vulnerable to Stored Cross-Site Scripting due to...
CVE Alert: CVE-2024-12023
Vulnerability Summary: CVE-2024-12023 The FULL – Cliente plugin for WordPress is vulnerable to SQL Injection via the 'formId' parameter in...
CVE Alert: CVE-2024-13418
Vulnerability Summary: CVE-2024-13418 Multiple plugins and/or themes for WordPress are vulnerable to Arbitrary File Uploads due to a missing capability...
CVE Alert: CVE-2024-13420
Vulnerability Summary: CVE-2024-13420 Multiple plugins and/or themes for WordPress are vulnerable to unauthorized access due to a missing capability check...
CVE Alert: CVE-2025-1326
Vulnerability Summary: CVE-2025-1326 The Homey theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability...
CVE Alert: CVE-2025-3510
Vulnerability Summary: CVE-2025-3510 The tagDiv Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple shortcodes in all...
CVE Alert: CVE-2025-1327
Vulnerability Summary: CVE-2025-1327 The Homey theme for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to,...
CVE Alert: CVE-2024-13344
Vulnerability Summary: CVE-2024-13344 The Advance Seat Reservation Management for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2025-3708
Vulnerability Summary: CVE-2025-3708 Le-show medical practice management system from Le-yan has a SQL Injection vulnerability, allowing unauthenticated remote attackers to...
