CVE

CVE Alert: CVE-2025-41392

August 19, 2025

Vulnerability Summary: CVE-2025-41392 In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204, the affected applications lack...

CVE Alert: CVE-2025-53705

August 19, 2025

Vulnerability Summary: CVE-2025-53705 In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204, the affected applications lack...

CVE Alert: CVE-2025-46269

August 19, 2025

Vulnerability Summary: CVE-2025-46269 In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204, the affected applications lack...

CVE Alert: CVE-2025-54156

August 19, 2025

Vulnerability Summary: CVE-2025-54156 The Sante PACS Server Web Portal sends credential information without encryption. Affected Endpoints: No affected endpoints listed....

CVE Alert: CVE-2025-54759

August 19, 2025

Vulnerability Summary: CVE-2025-54759 Sante PACS Server is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting...

CVE Alert: CVE-2025-54862

August 19, 2025

Vulnerability Summary: CVE-2025-54862 Sante PACS Server web portal is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML...

CVE Alert: CVE-2025-53948

August 19, 2025

Vulnerability Summary: CVE-2025-53948 The Sante PACS Server allows a remote attacker to crash the main thread by sending a crafted...

CVE Alert: CVE-2025-52584

August 19, 2025

Vulnerability Summary: CVE-2025-52584 In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204, the affected applications lack...

CVE Alert: CVE-2025-9090

August 18, 2025

Vulnerability Summary: CVE-2025-9090 A vulnerability was identified in Tenda AC20 16.03.08.12. Affected is the function websFormDefine of the file /goform/telnet...

CVE Alert: CVE-2025-9089

August 18, 2025

Vulnerability Summary: CVE-2025-9089 A vulnerability was determined in Tenda AC20 16.03.08.12. This issue affects the function sub_48E628 of the file...

CVE Alert: CVE-2025-9091

August 18, 2025

Vulnerability Summary: CVE-2025-9091 A security flaw has been discovered in Tenda AC20 16.03.08.12. Affected by this vulnerability is an unknown...

CVE Alert: CVE-2025-9094

August 18, 2025

Vulnerability Summary: CVE-2025-9094 A vulnerability was detected in ThingsBoard 4.1. This vulnerability affects unknown code of the component Add Gateway...

CVE Alert: CVE-2025-9093

August 18, 2025

Vulnerability Summary: CVE-2025-9093 A security vulnerability has been detected in BuzzFeed App 2024.9 on Android. This affects an unknown part...

CVE Alert: CVE-2025-7342

August 18, 2025

Vulnerability Summary: CVE-2025-7342 A security issue was discovered in the Kubernetes Image Builder where default credentials are enabled during the...

CVE Alert: CVE-2025-9095

August 18, 2025

Vulnerability Summary: CVE-2025-9095 A flaw has been found in ExpressGateway express-gateway up to 1.16.10. This issue affects some unknown processing...

CVE Alert: CVE-2017-20199

August 17, 2025

Vulnerability Summary: CVE-2017-20199 A vulnerability was found in Buttercup buttercup-browser-extension up to 0.14.2. Affected by this vulnerability is an unknown...

CVE Alert: CVE-2025-49895

August 17, 2025

Vulnerability Summary: CVE-2025-49895 Cross-Site Request Forgery (CSRF) vulnerability in iThemes ServerBuddy by PluginBuddy.Com allows Object Injection.This issue affects ServerBuddy by...

CVE Alert: CVE-2025-3671

August 17, 2025

Vulnerability Summary: CVE-2025-3671 The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to Local File Inclusion in...

CVE Alert: CVE-2024-12575

August 17, 2025

Vulnerability Summary: CVE-2024-12575 The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to Basic...

CVE Alert: CVE-2024-8393

August 17, 2025

Vulnerability Summary: CVE-2024-8393 The Woocommerce Blocks – Woolook plugin for WordPress is vulnerable to Local File Inclusion in all versions...

CVE Alert: CVE-2024-12612

August 17, 2025

Vulnerability Summary: CVE-2024-12612 The School Management System for Wordpress plugin for WordPress is vulnerable to SQL Injection via several parameters...

CVE Alert: CVE-2025-6080

August 17, 2025

Vulnerability Summary: CVE-2025-6080 The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to unauthorized admin account creation...

CVE Alert: CVE-2025-7440

August 17, 2025

Vulnerability Summary: CVE-2025-7440 The Anber Elementor Addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the $item parameter...

CVE Alert: CVE-2025-6079

August 17, 2025

Vulnerability Summary: CVE-2025-6079 The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file uploads due to...

CVE

CVE Alert: CVE-2025-41392

CVE Alert: CVE-2025-53705

CVE Alert: CVE-2025-46269

CVE Alert: CVE-2025-54156

CVE Alert: CVE-2025-54759

CVE Alert: CVE-2025-54862

CVE Alert: CVE-2025-53948

CVE Alert: CVE-2025-52584

CVE Alert: CVE-2025-9090

CVE Alert: CVE-2025-9089

CVE Alert: CVE-2025-9091

CVE Alert: CVE-2025-9094

CVE Alert: CVE-2025-9093

CVE Alert: CVE-2025-7342

CVE Alert: CVE-2025-9095

CVE Alert: CVE-2017-20199

CVE Alert: CVE-2025-49895

CVE Alert: CVE-2025-3671

CVE Alert: CVE-2024-12575

CVE Alert: CVE-2024-8393

CVE Alert: CVE-2024-12612

CVE Alert: CVE-2025-6080

CVE Alert: CVE-2025-7440

CVE Alert: CVE-2025-6079

HackerOne Bug Bounty Disclosure: stack-buffer-overflow-in-curl-cookie-parsing-leads-to-rce-batuhanilgarr

BugCrowd Bug Bounty Disclosure: P3 – Publicly Editable Google Docs Linked from NASA SnowEx PPT –

BugCrowd Bug Bounty Disclosure: P3 – Details of the collaboration between NASA and Inmarsat Government and the type of contract –

Apple Products Multiple Vulnerabilities

Miljödata – 870,108 breached accounts

You may have missed