Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:cyph3r_nitroLink to Submitters Profile:https://hackerone.com/cyph3r_nitro Report Title:Vulnerability Report: Public Exposure of Security Audit...
Vulnerability Summary: CVE-2025-8103 The WPeMatico RSS Feed Fetcher plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...
Vulnerability Summary: CVE-2025-6895 The Melapress Login Security plugin for WordPress is vulnerable to Authentication Bypass due to missing authorization within...
Vulnerability Summary: CVE-2025-8178 A vulnerability classified as critical has been found in Tenda AC10 16.03.10.13. Affected is an unknown function...
Vulnerability Summary: CVE-2025-54416 tj-actions/branch-names is a Github actions repository that contains workflows to retrieve branch or tag names with support...
Vulnerability Summary: CVE-2025-8179 A vulnerability classified as critical was found in PHPGurukul Local Services Search Engine Management System 2.1. Affected...
Vulnerability Summary: CVE-2025-8097 The WoodMart theme for WordPress is vulnerable to Improper Input Validation in all versions up to, and...
Vulnerability Summary: CVE-2025-8181 A vulnerability, which was classified as critical, was found in TOTOLINK N600R and X2000R 1.0.0.1. This affects...
Vulnerability Summary: CVE-2025-6987 The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode...
Vulnerability Summary: CVE-2025-8180 A vulnerability, which was classified as critical, has been found in Tenda CH22 1.0.0.1. Affected by this...
Vulnerability Summary: CVE-2025-8198 The MinimogWP – The High Converting eCommerce WordPress Theme theme for WordPress is vulnerable to price manipulation...
Vulnerability Summary: CVE-2025-8182 A vulnerability has been found in Tenda AC18 15.03.05.19 and classified as problematic. This vulnerability affects unknown...
Vulnerability Summary: CVE-2025-7501 The Wonder Slider Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via image title and...
Vulnerability Summary: CVE-2025-6989 The Kallyas theme for WordPress is vulnerable to arbitrary folder deletion due to insufficient file path validation...
Vulnerability Summary: CVE-2025-6991 The kallyas theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and...
Vulnerability Summary: CVE-2025-5529 The Educenter theme for WordPress is vulnerable to Stored Cross-Site Scripting via the Circle Counter Block in...
Vulnerability Summary: CVE-2025-8186 A vulnerability was found in Campcodes Courier Management System 1.0. It has been declared as critical. Affected...
Vulnerability Summary: CVE-2025-8184 A vulnerability was found in D-Link DIR-513 up to 1.10 and classified as critical. This issue affects...
Vulnerability Summary: CVE-2025-8185 A vulnerability was found in 1000 Projects ABC Courier Management System 1.0. It has been classified as...
Vulnerability Summary: CVE-2025-8187 A vulnerability was found in Campcodes Courier Management System 1.0. It has been rated as critical. Affected...
Vulnerability Summary: CVE-2025-8188 A vulnerability classified as critical has been found in Campcodes Courier Management System 1.0. This affects an...
Venerable Linux distribution Debian is side-stepping the Y2K38 bug – also known as the Unix Epochalypse – by switching to...
Vulnerability Summary: CVE-2025-8191 A vulnerability, which was classified as problematic, was found in macrozheng mall up to 1.0.3. Affected is...
Vulnerability Summary: CVE-2025-8190 A vulnerability, which was classified as critical, has been found in Campcodes Courier Management System 1.0. This...
