CVE Alert: CVE-2025-9018 – germanpearls – Time Tracker
CVE-2025-9018 HIGHNo exploitation known The Time Tracker plugin for WordPress is vulnerable to unauthorized modification and loss of data due...
CVE-2025-9018 HIGHNo exploitation known The Time Tracker plugin for WordPress is vulnerable to unauthorized modification and loss of data due...
CVE-2025-9874 HIGHNo exploitation known The Ultimate Classified Listings plugin for WordPress is vulnerable to Local File Inclusion in all versions...
CVE-2025-8425 HIGHNo exploitation known The My WP Translate plugin for WordPress is vulnerable to unauthorized modification of data that can...
CVE-2025-9073 HIGHNo exploitation known The All in one Minifier plugin for WordPress is vulnerable to SQL Injection via the 'post_id'...
CVE-2025-8422 HIGHNo exploitation known The Propovoice: All-in-One Client Management System plugin for WordPress is vulnerable to Arbitrary File Read in...
CVE-2025-9693 HIGHNo exploitation known The User Meta – User Profile Builder and User management plugin plugin for WordPress is vulnerable...
CVE-2025-8417 HIGHNo exploitation known The Catalog Importer, Scraper & Crawler plugin for WordPress is vulnerable to PHP code injection in...
CVE-2025-8696 HIGHNo exploitation known If an unauthenticated user sends a large amount of data to the Stork UI, it may...
CVE-2025-7049 HIGHNo exploitation known The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to privilege escalation in...
CVE-2025-7718 HIGHNo exploitation known The Resideo Plugin for Resideo - Real Estate WordPress Theme plugin for WordPress is vulnerable to...
CVE-2025-20340 HIGHNo exploitation known A vulnerability in the Address Resolution Protocol (ARP) implementation of Cisco IOS XR Software could allow...
CVE-2025-41714 HIGHNo exploitation known The upload endpoint insufficiently validates the 'Upload-Key' request header. By supplying path traversal sequences, an authenticated...
CVE-2025-10049 HIGHNo exploitation known The Responsive Filterable Portfolio plugin for WordPress is vulnerable to arbitrary file uploads due to missing...
CVE-2025-54259 HIGHNo exploitation known Substance3D - Modeler versions 1.22.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability...
CVE-2025-10001 HIGHNo exploitation known The Import any XML, CSV or Excel File to WordPress plugin for WordPress is vulnerable to...
CVE-2025-10040 HIGHNo exploitation known The WP Import – Ultimate CSV XML Importer for WordPress plugin for WordPress is vulnerable to...
CVE-2025-54258 HIGHNo exploitation known Substance3D - Modeler versions 1.22.2 and earlier are affected by a Use After Free vulnerability that...
CVE-2025-54260 HIGHNo exploitation known Substance3D - Modeler versions 1.22.2 and earlier are affected by an out-of-bounds read vulnerability when parsing...
CVE-2025-10171 HIGHNo exploitation known A vulnerability was detected in UTT 1250GW up to 3.2.2-200710. This vulnerability affects the function sub_453DC...
CVE-2025-54244 HIGHNo exploitation known Substance3D - Viewer versions 0.25.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that...
CVE-2025-54257 HIGHNo exploitation known Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Use After Free vulnerability...
CVE-2025-54243 HIGHNo exploitation known Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerability that could...
CVE-2025-54245 HIGHNo exploitation known Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerability that could...
Palo Alto Networks Security Advisories /PAN-SA-2025-0015PAN-SA-2025-0015 Chromium: Monthly Vulnerability Update (September 2025)UrgencyMODERATE047910Severity6.1 ·MEDIUMExploit MaturityUNREPORTEDResponse EffortMODERATERecoveryUSERValue DensityDIFFUSEAttack VectorNETWORKAttack ComplexityLOWAttack RequirementsNONEAutomatableNOUser InteractionACTIVEProduct...