CVE Alert: CVE-2024-13899
Vulnerability Summary: CVE-2024-13899 The Mambo Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up to,...
CVE Alert: CVE-2024-45674
Vulnerability Summary: CVE-2024-45674 IBM Security Verify Bridge Directory Sync 1.0.1 through 1.0.12, IBM Security Verify Gateway for Windows Login 1.0.1...
CVE Alert: CVE-2024-22341
Vulnerability Summary: CVE-2024-22341 IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 4.5.0 through 4.5.3, 4.6.0 through 4.6.6,...
CVE Alert: CVE-2024-13474
Vulnerability Summary: CVE-2024-13474 The LTL Freight Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2025-1510
Vulnerability Summary: CVE-2025-1510 The The Custom Post Type Date Archives plugin for WordPress is vulnerable to arbitrary shortcode execution in...
CVE Alert: CVE-2024-12038
Vulnerability Summary: CVE-2024-12038 The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for...
CVE Alert: CVE-2024-12467
Vulnerability Summary: CVE-2024-12467 The Pago por Redsys plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'Ds_MerchantParameters' parameter...
CVE Alert: CVE-2024-13798
Vulnerability Summary: CVE-2024-13798 The Post Grid and Gutenberg Blocks – ComboBlocks plugin for WordPress is vulnerable to unauthorized order creation...
Cobalt Strike Beacon Detected – 185[.]102[.]75[.]120:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2024-13564
Vulnerability Summary: CVE-2024-13564 The Rife Elementor Extensions & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
CVE Alert: CVE-2025-1361
Vulnerability Summary: CVE-2025-1361 The IP2Location Country Blocker plugin for WordPress is vulnerable to Regular Information Exposure in all versions up...
CVE Alert: CVE-2024-13869
Vulnerability Summary: CVE-2024-13869 The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary file...
CVE Alert: CVE-2025-1553
Vulnerability Summary: CVE-2025-1553 A vulnerability was found in pankajindevops scale up to 3633544a00245d3df88b6d13d9b3dd0f411be7f6. It has been classified as problematic. Affected...
CVE Alert: CVE-2025-0953
Vulnerability Summary: CVE-2025-0953 The SMTP for Sendinblue – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions...
CVE Alert: CVE-2025-1556
Vulnerability Summary: CVE-2025-1556 A vulnerability, which was classified as problematic, has been found in westboy CicadasCMS 1.0. This issue affects...
CVE Alert: CVE-2025-26764
Vulnerability Summary: CVE-2025-26764 Missing Authorization vulnerability in enituretechnology Distance Based Shipping Calculator allows Exploiting Incorrectly Configured Access Control Security Levels....
CVE Alert: CVE-2025-0918
Vulnerability Summary: CVE-2025-0918 The SMTP for SendGrid – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions...
CVE Alert: CVE-2025-1557
Vulnerability Summary: CVE-2025-1557 A vulnerability, which was classified as problematic, was found in OFCMS 1.1.3. Affected is an unknown function....
CVE Alert: CVE-2025-0957
Vulnerability Summary: CVE-2025-0957 The SMTP for Amazon SES – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in...
CVE Alert: CVE-2025-26757
Vulnerability Summary: CVE-2025-26757 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FULL...
CVE Alert: CVE-2025-26760
Vulnerability Summary: CVE-2025-26760 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Wow-Company...
CVE Alert: CVE-2025-26750
Vulnerability Summary: CVE-2025-26750 Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-26756
Vulnerability Summary: CVE-2025-26756 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grimdonkey Magic the Gathering Card...
CVE Alert: CVE-2025-26763
Vulnerability Summary: CVE-2025-26763 Deserialization of Untrusted Data vulnerability in MetaSlider Responsive Slider by MetaSlider allows Object Injection. This issue affects...
