CVE Alert: CVE-2024-10306
Vulnerability Summary: CVE-2024-10306 A vulnerability was found in mod_proxy_cluster. The issue is that the directive should be replaced by the...
CVE
CVE Alert: CVE-2025-2703
Vulnerability Summary: CVE-2025-2703 The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions...
CVE Alert: CVE-2025-45428
Vulnerability Summary: CVE-2025-45428 In Tenda ac9 v1.0 with firmware V15.03.05.14_multi, the rebootTime parameter of /goform/SetSysAutoRebbotCfg has a stack overflow vulnerability,...
CVE Alert: CVE-2025-1054
Vulnerability Summary: CVE-2025-1054 The UiCore Elements – Free Elementor widgets and templates plugin for WordPress is vulnerable to Stored Cross-Site...
CVE Alert: CVE-2025-43716
Vulnerability Summary: CVE-2025-43716 A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the...
CVE Alert: CVE-2024-47829
Vulnerability Summary: CVE-2024-47829 pnpm is a package manager. Prior to version 10.0.0, the path shortening function uses the md5 function...
CVE Alert: CVE-2025-43965
Vulnerability Summary: CVE-2025-43965 In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumFormat is used. Affected...
CVE Alert: CVE-2025-21605
Vulnerability Summary: CVE-2025-21605 Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and...
CVE Alert: CVE-2025-45427
Vulnerability Summary: CVE-2025-45427 In Tenda AC9 v1.0 with firmware V15.03.05.14_multi, the security parameter of /goform/WifiBasicSet has a stack overflow vulnerability,...
CVE Alert: CVE-2025-46393
Vulnerability Summary: CVE-2025-46393 In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (related to the rendering of...
CVE Alert: CVE-2025-1047
Vulnerability Summary: CVE-2025-1047 Luxion KeyShot PVS File Parsing Access of Uninitialized Pointer Remote Code Execution Vulnerability. This vulnerability allows remote...
CVE Alert: CVE-2025-46394
Vulnerability Summary: CVE-2025-46394 In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through...
CVE Alert: CVE-2025-1049
Vulnerability Summary: CVE-2025-1049 Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute...
CVE Alert: CVE-2025-1048
Vulnerability Summary: CVE-2025-1048 Sonos Era 300 Speaker libsmb2 Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute...
CVE Alert: CVE-2025-45429
Vulnerability Summary: CVE-2025-45429 In the Tenda ac9 v1.0 router with firmware V15.03.05.14_multi, there is a stack overflow vulnerability in /goform/WifiWpsStart,...
CVE Alert: CVE-2025-1521
Vulnerability Summary: CVE-2025-1521 PostHog slack_incoming_webhook Server-Side Request Forgery Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information...
CVE Alert: CVE-2025-1520
Vulnerability Summary: CVE-2025-1520 PostHog ClickHouse Table Functions SQL Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute...
CVE Alert: CVE-2025-1522
Vulnerability Summary: CVE-2025-1522 PostHog database_schema Server-Side Request Forgery Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information...
CVE Alert: CVE-2025-1046
Vulnerability Summary: CVE-2025-1046 Luxion KeyShot SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...
CVE Alert: CVE-2025-1045
Vulnerability Summary: CVE-2025-1045 Luxion KeyShot Viewer KSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote...
CVE Alert: CVE-2025-2768
Vulnerability Summary: CVE-2025-2768 Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate...
CVE Alert: CVE-2025-29526
Vulnerability Summary: CVE-2025-29526 A Cross-Site Scripting (XSS) vulnerability in the search function of Q4 Inc Investor Relations Platform v5.147.1.2 allows...
CVE Alert: CVE-2025-2760
Vulnerability Summary: CVE-2025-2760 GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...
CVE Alert: CVE-2025-2769
Vulnerability Summary: CVE-2025-2769 Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate...
