CVE Alert: CVE-2025-44115
Vulnerability Summary: CVE-2025-44115 A vulnerability has been found in Cotonti Siena v0.9.25. Affected by this vulnerability is the file /admin.php?m=config&n=edit&o=core&p=title....
CVE
CVE Alert: CVE-2025-48940
Vulnerability Summary: CVE-2025-48940 MyBB is free and open source forum software. Prior to version 1.8.39, the upgrade component does not...
CVE Alert: CVE-2024-1440
Vulnerability Summary: CVE-2024-1440 An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL...
CVE Alert: CVE-2024-3509
Vulnerability Summary: CVE-2024-3509 A stored cross-site scripting (XSS) vulnerability exists in the Management Console of multiple WSO2 products due to...
CVE Alert: CVE-2025-48941
Vulnerability Summary: CVE-2025-48941 MyBB is free and open source forum software. Prior to version 1.8.39, the search component does not...
CVE Alert: CVE-2025-5036
Vulnerability Summary: CVE-2025-5036 A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerability....
CVE Alert: CVE-2025-23104
Vulnerability Summary: CVE-2025-23104 An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free in the...
CVE Alert: CVE-2024-7074
Vulnerability Summary: CVE-2024-7074 An arbitrary file upload vulnerability exists in multiple WSO2 products due to improper validation of user input...
CVE Alert: CVE-2024-8008
Vulnerability Summary: CVE-2024-8008 A reflected cross-site scripting (XSS) vulnerability exists in multiple products due to insufficient output encoding in error...
CVE Alert: CVE-2024-7073
Vulnerability Summary: CVE-2024-7073 A server-side request forgery (SSRF) vulnerability exists in multiple WSO2 products due to improper input validation in...
CVE Alert: CVE-2025-5086
Vulnerability Summary: CVE-2025-5086 A deserialization of untrusted data vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025Â could lead...
CVE Alert: CVE-2025-27956
Vulnerability Summary: CVE-2025-27956 Directory Traversal vulnerability in WebLaudos 24.2 (04) allows a remote attacker to obtain sensitive information via the...
CVE Alert: CVE-2025-20297
Vulnerability Summary: CVE-2025-20297 In Splunk Enterprise versions below 9.4.2, 9.3.4 and 9.2.6, and Splunk Cloud Platform versions below 9.3.2411.102, 9.3.2408.111...
CVE Alert: CVE-2025-20298
Vulnerability Summary: CVE-2025-20298 In Universal Forwarder for Windows versions below 9.4.2, 9.3.4, 9.2.6, and 9.1.9, a new installation of or...
CVE Alert: CVE-2025-45387
Vulnerability Summary: CVE-2025-45387 osTicket prior to v1.17.6 and v1.18.2 are vulnerable to Broken Access Control Vulnerability in /scp/ajax.php. Affected Endpoints:...
CVE Alert: CVE-2025-3919
Vulnerability Summary: CVE-2025-3919 The WordPress Comments Import & Export plugin for WordPress is vulnerable to unauthorized modification of data due...
CVE Alert: CVE-2025-47585
Vulnerability Summary: CVE-2025-47585 Missing Authorization vulnerability in Mage people team Booking and Rental Manager allows Accessing Functionality Not Properly Constrained...
CVE Alert: CVE-2025-48996
Vulnerability Summary: CVE-2025-48996 HAX open-apis provides microservice apis for HAX webcomponents repo that are shared infrastructure calls. An unauthenticated information...
CVE Alert: CVE-2025-49069
Vulnerability Summary: CVE-2025-49069 Cross-Site Request Forgery (CSRF) vulnerability in Cimatti Consulting Contact Forms by Cimatti allows Cross Site Request Forgery.This...
CVE Alert: CVE-2025-1051
Vulnerability Summary: CVE-2025-1051 Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute...
CVE Alert: CVE-2025-5400
Vulnerability Summary: CVE-2025-5400 A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been classified as critical. Affected...
CVE Alert: CVE-2025-1499
Vulnerability Summary: CVE-2025-1499 IBM InfoSphere Information Server 11.7 stores credential information for database authentication in a cleartext parameter file that...
CVE Alert: CVE-2025-33005
Vulnerability Summary: CVE-2025-33005 IBM Planning Analytics Local 2.0 and 2.1 does not invalidate session after a logout which could allow...
CVE Alert: CVE-2025-2896
Vulnerability Summary: CVE-2025-2896 IBM Planning Analytics Local 2.0 and 2.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated...
