CVE Alert: CVE-2025-2604
Vulnerability Summary: CVE-2025-2604 A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. It has been classified...
CVE
CVE Alert: CVE-2025-2608
Vulnerability Summary: CVE-2025-2608 A vulnerability classified as critical has been found in PHPGurukul Banquet Booking System 1.2. This affects an...
CVE Alert: CVE-2025-2610
Vulnerability Summary: CVE-2025-2610 Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling (Alarm Module modules) allows authenticated...
CVE Alert: CVE-2025-30204
Vulnerability Summary: CVE-2025-30204 golang-jwt is a Go implementation of JSON Web Tokens. Prior to 5.2.2 and 4.5.2, the function parse.ParseUnverified...
CVE Alert: CVE-2025-26500
Vulnerability Summary: CVE-2025-26500 : Uncontrolled Resource Consumption vulnerability in Wind River Systems VxWorks 7 on VxWorks allows Excessive Allocation. Specifically...
CVE Alert: CVE-2025-2609
Vulnerability Summary: CVE-2025-2609 Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users...
CVE Alert: CVE-2025-0454
Vulnerability Summary: CVE-2025-0454 A Server-Side Request Forgery (SSRF) vulnerability was identified in the Requests utility of significant-gravitas/autogpt versions prior to...
CVE Alert: CVE-2025-0628
Vulnerability Summary: CVE-2025-0628 An improper authorization vulnerability exists in the main-latest version of BerriAI/litellm. When a user with the role...
CVE Alert: CVE-2025-1040
Vulnerability Summary: CVE-2025-1040 AutoGPT versions 0.3.4 and earlier are vulnerable to a Server-Side Template Injection (SSTI) that could lead to...
CVE Alert: CVE-2025-0508
Vulnerability Summary: CVE-2025-0508 A vulnerability in the SageMaker Workflow component of aws/sagemaker-python-sdk allows for the possibility of MD5 hash collisions...
CVE Alert: CVE-2025-0655
Vulnerability Summary: CVE-2025-0655 A vulnerability in man-group/dtale versions 3.15.1 allows an attacker to override global state settings to enable the...
CVE Alert: CVE-2025-0453
Vulnerability Summary: CVE-2025-0453 In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker...
CVE Alert: CVE-2025-1474
Vulnerability Summary: CVE-2025-1474 In mlflow/mlflow version 2.18, an admin is able to create a new user account without setting a...
CVE Alert: CVE-2025-1796
Vulnerability Summary: CVE-2025-1796 A vulnerability in langgenius/dify v0.10.1 allows an attacker to take over any account, including administrator accounts, by...
CVE Alert: CVE-2024-13922
Vulnerability Summary: CVE-2024-13922 The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to arbitrary file deletion...
CVE Alert: CVE-2024-13923
Vulnerability Summary: CVE-2024-13923 The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery...
CVE Alert: CVE-2024-13558
Vulnerability Summary: CVE-2024-13558 The NP Quote Request for WooCommerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in...
CVE Alert: CVE-2024-13920
Vulnerability Summary: CVE-2024-13920 The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in...
CVE Alert: CVE-2025-2539
Vulnerability Summary: CVE-2025-2539 The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing...
CVE Alert: CVE-2024-13921
Vulnerability Summary: CVE-2024-13921 The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection...
CVE Alert: CVE-2025-2311
Vulnerability Summary: CVE-2025-2311 Incorrect Use of Privileged APIs, Cleartext Transmission of Sensitive Information, Insufficiently Protected Credentials vulnerability in Nebula Informatics...
CVE Alert: CVE-2025-2548
Vulnerability Summary: CVE-2025-2548 A vulnerability, which was classified as problematic, was found in D-Link DIR-618 and DIR-605L 2.02/3.02. Affected is...
CVE Alert: CVE-2025-2546
Vulnerability Summary: CVE-2025-2546 A vulnerability classified as problematic was found in D-Link DIR-618 and DIR-605L 2.02/3.02. This vulnerability affects unknown...
CVE Alert: CVE-2025-1802
Vulnerability Summary: CVE-2025-1802 The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
