CVE Alert: CVE-2025-29223
Vulnerability Summary: CVE-2025-29223 Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the pt parameter in the...
CVE
CVE Alert: CVE-2025-25035
Vulnerability Summary: CVE-2025-25035 Improper Neutralization of Input During Web Page Generation Cross-site Scripting vulnerability in Jalios JPlatform 10 allows for...
CVE Alert: CVE-2025-2606
Vulnerability Summary: CVE-2025-2606 A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been declared as critical....
CVE Alert: CVE-2025-25036
Vulnerability Summary: CVE-2025-25036 Improper Restriction of XML External Entity Reference vulnerability in Jalios JPlatform allows XML Injection.This issue affects all...
CVE Alert: CVE-2025-2603
Vulnerability Summary: CVE-2025-2603 A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical....
CVE Alert: CVE-2025-2607
Vulnerability Summary: CVE-2025-2607 A vulnerability was found in phplaozhang LzCMS-LaoZhangBoKeXiTong up to 1.1.4. It has been rated as critical. Affected...
CVE Alert: CVE-2025-2604
Vulnerability Summary: CVE-2025-2604 A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. It has been classified...
CVE Alert: CVE-2025-26500
Vulnerability Summary: CVE-2025-26500 : Uncontrolled Resource Consumption vulnerability in Wind River Systems VxWorks 7 on VxWorks allows Excessive Allocation. Specifically...
CVE Alert: CVE-2025-2609
Vulnerability Summary: CVE-2025-2609 Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users...
CVE Alert: CVE-2025-2608
Vulnerability Summary: CVE-2025-2608 A vulnerability classified as critical has been found in PHPGurukul Banquet Booking System 1.2. This affects an...
CVE Alert: CVE-2025-2610
Vulnerability Summary: CVE-2025-2610 Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling (Alarm Module modules) allows authenticated...
CVE Alert: CVE-2025-30204
Vulnerability Summary: CVE-2025-30204 golang-jwt is a Go implementation of JSON Web Tokens. Prior to 5.2.2 and 4.5.2, the function parse.ParseUnverified...
CVE Alert: CVE-2025-0454
Vulnerability Summary: CVE-2025-0454 A Server-Side Request Forgery (SSRF) vulnerability was identified in the Requests utility of significant-gravitas/autogpt versions prior to...
CVE Alert: CVE-2025-0508
Vulnerability Summary: CVE-2025-0508 A vulnerability in the SageMaker Workflow component of aws/sagemaker-python-sdk allows for the possibility of MD5 hash collisions...
CVE Alert: CVE-2025-0655
Vulnerability Summary: CVE-2025-0655 A vulnerability in man-group/dtale versions 3.15.1 allows an attacker to override global state settings to enable the...
CVE Alert: CVE-2025-0628
Vulnerability Summary: CVE-2025-0628 An improper authorization vulnerability exists in the main-latest version of BerriAI/litellm. When a user with the role...
CVE Alert: CVE-2025-1040
Vulnerability Summary: CVE-2025-1040 AutoGPT versions 0.3.4 and earlier are vulnerable to a Server-Side Template Injection (SSTI) that could lead to...
CVE Alert: CVE-2025-0453
Vulnerability Summary: CVE-2025-0453 In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker...
CVE Alert: CVE-2025-1474
Vulnerability Summary: CVE-2025-1474 In mlflow/mlflow version 2.18, an admin is able to create a new user account without setting a...
CVE Alert: CVE-2025-1796
Vulnerability Summary: CVE-2025-1796 A vulnerability in langgenius/dify v0.10.1 allows an attacker to take over any account, including administrator accounts, by...
CVE Alert: CVE-2024-13922
Vulnerability Summary: CVE-2024-13922 The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to arbitrary file deletion...
CVE Alert: CVE-2024-13923
Vulnerability Summary: CVE-2024-13923 The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery...
CVE Alert: CVE-2025-2311
Vulnerability Summary: CVE-2025-2311 Incorrect Use of Privileged APIs, Cleartext Transmission of Sensitive Information, Insufficiently Protected Credentials vulnerability in Nebula Informatics...
CVE Alert: CVE-2024-13558
Vulnerability Summary: CVE-2024-13558 The NP Quote Request for WooCommerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in...
