RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2025-2587

March 22, 2025

Vulnerability Summary: CVE-2025-2587 A vulnerability, which was classified as critical, was found in Jinher OA C6 1.0. This affects an...

HackerOne Bug Bounty Disclosure: cache-poisoning-allows-zero-interaction-store-xss-samark

March 22, 2025

Company Name: Trendyol Company HackerOne URL: https://hackerone.com/trendyol Submitted By:samark19Link to Submitters Profile:https://hackerone.com/samark19 Report Title:Cache Poisoning Allows Zero Interaction Store XSSReport...

CVE Alert: CVE-2025-2590

March 22, 2025

Vulnerability Summary: CVE-2025-2590 A vulnerability was found in code-projects Human Resource Management System 1.0.1. It has been classified as problematic....

CVE Alert: CVE-2025-2591

March 22, 2025

Vulnerability Summary: CVE-2025-2591 A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects...

CVE Alert: CVE-2025-2589

March 22, 2025

Vulnerability Summary: CVE-2025-2589 A vulnerability was found in code-projects Human Resource Management System 1.0.1 and classified as critical. This issue...

CVE Alert: CVE-2025-2592

March 22, 2025

Vulnerability Summary: CVE-2025-2592 A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3....

CVE Alert: CVE-2025-2593

March 22, 2025

Vulnerability Summary: CVE-2025-2593 A vulnerability has been found in FastCMS up to 0.1.5 and classified as critical. Affected by this...

CVE Alert: CVE-2025-29927

March 22, 2025

Vulnerability Summary: CVE-2025-29927 Next.js is a React framework for building full-stack web applications. Prior to 14.2.25 and 15.2.3, it is...

CVE Alert: CVE-2025-27612

March 22, 2025

Vulnerability Summary: CVE-2025-27612 libcontainer is a library for container control. Prior to libcontainer 0.5.3, while creating a tenant container, the...

CVE Alert: CVE-2025-30157

March 22, 2025

Vulnerability Summary: CVE-2025-30157 Envoy is a cloud-native high-performance edge/middle/service proxy. Prior to 1.33.1, 1.32.4, 1.31.6, and 1.30.10, Envoy's ext_proc HTTP...

CVE Alert: CVE-2025-24915

March 22, 2025

Vulnerability Summary: CVE-2025-24915 When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions prior to...

CVE Alert: CVE-2025-30168

March 22, 2025

Vulnerability Summary: CVE-2025-30168 Parse Server is an open source backend that can be deployed to any infrastructure that can run...