CVE

CVE Alert: CVE-2025-6037

August 2, 2025

Vulnerability Summary: CVE-2025-6037 Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured...

CVE Alert: CVE-2025-8477

August 2, 2025

Vulnerability Summary: CVE-2025-8477 Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to...

CVE Alert: CVE-2025-54424

August 2, 2025

Vulnerability Summary: CVE-2025-54424 1Panel is a web interface and MCP Server that manages websites, files, containers, databases, and LLMs on...

CVE Alert: CVE-2025-8476

August 2, 2025

Vulnerability Summary: CVE-2025-8476 Alpine iLX-507 TIDAL Improper Certificate Validation Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on...

CVE Alert: CVE-2025-54132

August 2, 2025

Vulnerability Summary: CVE-2025-54132 Cursor is a code editor built for programming with AI. In versions below 1.3, Mermaid (which is...

CVE Alert: CVE-2025-54131

August 2, 2025

Vulnerability Summary: CVE-2025-54131 Cursor is a code editor built for programming with AI. In versions below 1.3, an attacker can...

CVE Alert: CVE-2024-13978

August 2, 2025

Vulnerability Summary: CVE-2024-13978 A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by...

CVE Alert: CVE-2025-8401

August 2, 2025

Vulnerability Summary: CVE-2025-8401 The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure...

CVE Alert: CVE-2025-8068

August 2, 2025

Vulnerability Summary: CVE-2025-8068 The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized modification and...

CVE Alert: CVE-2025-8151

August 2, 2025

Vulnerability Summary: CVE-2025-8151 The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Path Traversal in...

CVE Alert: CVE-2025-8381

August 2, 2025

Vulnerability Summary: CVE-2025-8381 A vulnerability, which was classified as critical, has been found in Campcodes Online Hotel Reservation System 1.0....

CVE Alert: CVE-2025-8382

August 2, 2025

Vulnerability Summary: CVE-2025-8382 A vulnerability, which was classified as critical, was found in Campcodes Online Hotel Reservation System 1.0. Affected...

CVE Alert: CVE-2025-8213

August 2, 2025

Vulnerability Summary: CVE-2025-8213 The NinjaScanner – Virus & Malware scan plugin for WordPress is vulnerable to arbitrary file deletion due...

CVE Alert: CVE-2025-8407

August 2, 2025

Vulnerability Summary: CVE-2025-8407 A vulnerability, which was classified as critical, has been found in code-projects Vehicle Management 1.0. This issue...

CVE Alert: CVE-2024-34328

August 2, 2025

Vulnerability Summary: CVE-2024-34328 An open redirect in Sielox AnyWare v2.1.2 allows attackers to execute a man-in-the-middle attack via a crafted...

CVE Alert: CVE-2025-7738

August 2, 2025

Vulnerability Summary: CVE-2025-7738 A flaw was found in Ansible Automation Platform (AAP) where the Gateway API returns the client secret...

CVE Alert: CVE-2025-54589

August 2, 2025

Vulnerability Summary: CVE-2025-54589 Copyparty is a portable file server. In versions 1.18.6 and below, when accessing the recent uploads page...

CVE Alert: CVE-2025-50270

August 1, 2025

Vulnerability Summary: CVE-2025-50270 A stored Cross Site Scripting (xss) vulnerability in the "content management" feature in AnQiCMS v.3.4.11 allows a...

CVE Alert: CVE-2025-29557

August 1, 2025

Vulnerability Summary: CVE-2025-29557 ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control in the MailConfiguration API endpoint, where...

CVE Alert: CVE-2025-50849

August 1, 2025

Vulnerability Summary: CVE-2025-50849 CS Cart 4.18.3 is vulnerable to Insecure Direct Object Reference (IDOR). The user profile functionality allows enabling...

CVE Alert: CVE-2025-52289

August 1, 2025

Vulnerability Summary: CVE-2025-52289 A Broken Access Control vulnerability in MagnusBilling v7.8.5.3 allows newly registered users to gain escalated privileges by...

CVE Alert: CVE-2025-50475

August 1, 2025

Vulnerability Summary: CVE-2025-50475 An OS command injection vulnerability exists in Russound MBX-PRE-D67F firmware version 3.1.6, allowing unauthenticated attackers to execute...

Vulnerability Summary: CVE-2025-51569 A cross-site scripting (XSS) vulnerability exists in the LB-Link BL-CPE300M 01.01.02P42U14_06 router's web interface. The /goform/goform_get_cmd_process endpoint...

CVE Alert: CVE-2025-29556

August 1, 2025

Vulnerability Summary: CVE-2025-29556 ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control. Since version 6.3, ExaGrid enforces restrictions...

CVE

CVE Alert: CVE-2025-6037

CVE Alert: CVE-2025-8477

CVE Alert: CVE-2025-54424

CVE Alert: CVE-2025-8476

CVE Alert: CVE-2025-54132

CVE Alert: CVE-2025-54131

CVE Alert: CVE-2024-13978

CVE Alert: CVE-2025-8401

CVE Alert: CVE-2025-8068

CVE Alert: CVE-2025-8151

CVE Alert: CVE-2025-8381

CVE Alert: CVE-2025-8382

CVE Alert: CVE-2025-8213

CVE Alert: CVE-2025-8407

CVE Alert: CVE-2024-34328

CVE Alert: CVE-2025-7738

CVE Alert: CVE-2025-54589

CVE Alert: CVE-2025-50270

CVE Alert: CVE-2025-29557

CVE Alert: CVE-2025-50849

CVE Alert: CVE-2025-52289

CVE Alert: CVE-2025-50475

CVE Alert: CVE-2025-51569

CVE Alert: CVE-2025-29556

Cobalt Strike Beacon Detected – 38[.]173[.]19[.]175:8731

Cobalt Strike Beacon Detected – 8[.]219[.]76[.]168:443

Cobalt Strike Beacon Detected – 39[.]104[.]78[.]25:8443

Cobalt Strike Beacon Detected – 8[.]147[.]128[.]54:443

Cobalt Strike Beacon Detected – 43[.]138[.]30[.]109:9999

You may have missed