CVE Alert: CVE-2025-12211 – Tenda – O3
CVE-2025-12211 HIGHNo exploitation known A security flaw has been discovered in Tenda O3 1.0.0.10(2478). Affected by this issue is the...
CVE
CVE Alert: CVE-2025-12208 – SourceCodester – Best House Rental Management System
CVE-2025-12208 HIGHNo exploitation known A vulnerability was found in SourceCodester Best House Rental Management System 1.0. This impacts the function...
CVE Alert: CVE-2025-12209 – Tenda – O3
CVE-2025-12209 HIGHNo exploitation known A vulnerability was determined in Tenda O3 1.0.0.10(2478). Affected is the function SetValue/GetValue of the file...
CVE Alert: CVE-2025-8416 – woobewoo – Product Filter by WBW
CVE-2025-8416 HIGHNo exploitation known The Product Filter by WBW plugin for WordPress is vulnerable to SQL Injection via the 'filtersDataBackend'...
CVE Alert: CVE-2025-9322 – themeisle – Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions
CVE-2025-9322 HIGHNo exploitation known The Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions...
CVE Alert: CVE-2025-4203 – tomdever – wpForo Forum
CVE-2025-4203 HIGHNo exploitation known The wpForo Forum plugin for WordPress is vulnerable to error‐based or time-based SQL Injection via the...
CVE Alert: CVE-2025-11893 – smub – Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More
CVE-2025-11893 HIGHNo exploitation known The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More plugin for...
CVE Alert: CVE-2025-10488 – wpwax – Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings
CVE-2025-10488 HIGHNo exploitation known The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to...
CVE Alert: CVE-2025-12095 – astoundify – Simple Registration for WooCommerce
CVE-2025-12095 HIGHNo exploitation known The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
CVE Alert: CVE-2025-11238 – prasunsen – Watu Quiz
CVE-2025-11238 HIGHNo exploitation known The Watu Quiz plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the HTTP Referer...
CVE Alert: CVE-2025-11145 – CBK Soft Software Hardware Electronic Computer Systems Industry and Trade Inc. – enVision
CVE-2025-11145 HIGHNo exploitation known Observable Discrepancy, Exposure of Sensitive Information to an Unauthorized Actor, Exposure of Private Personal Information to...
CVE Alert: CVE-2025-59287 – Microsoft – Windows Server 2019
CVE-2025-59287 CRITICALExploitation active Deserialization of untrusted data in Windows Server Update Service allows an unauthorized attacker to execute code over...
CVE Alert: CVE-2025-54236 – Adobe – Adobe Commerce
CVE-2025-54236 CRITICALExploitation active Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input...
CVE Alert: CVE-2025-10861 – roxnor – Popup builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers
CVE-2025-10861 HIGHNo exploitation known The Popup builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers plugin for WordPress is...
CVE Alert: CVE-2025-11504 – quickcreator – Quickcreator – AI Blog Writer
CVE-2025-11504 HIGHNo exploitation known The Quickcreator – AI Blog Writer plugin for WordPress is vulnerable to Sensitive Information Exposure in...
CVE Alert: CVE-2025-11889 – edgarrojas – AIO Forms – Craft Complex Forms Easily
CVE-2025-11889 HIGHNo exploitation known The AIO Forms – Craft Complex Forms Easily plugin for WordPress is vulnerable to arbitrary file...
CVE Alert: CVE-2025-12028 – indieweb – IndieAuth
CVE-2025-12028 HIGHNo exploitation known The IndieAuth plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,...
CVE Alert: CVE-2025-59500 – Microsoft – Azure Notification Service
CVE-2025-59500 HIGHNo exploitation known Improper access control in Azure Notification Service allows an authorized attacker to elevate privileges over a...
CVE Alert: CVE-2025-59273 – Microsoft – Azure Event Grid System
CVE-2025-59273 HIGHNo exploitation known Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a...
CVE Alert: CVE-2025-60341 – n/a – n/a
CVE-2025-60341 UnknownNo exploitation known Tenda AC6 V2.0 15.03.06.50 was discovered to contain a stack overflow in the ssid parameter in...
CVE Alert: CVE-2025-60338 – n/a – n/a
CVE-2025-60338 UnknownNo exploitation known Tenda AC6 V2.0 15.03.06.50 was discovered to contain a stack overflow in the page parameter in...
CVE Alert: CVE-2025-60342 – n/a – n/a
CVE-2025-60342 UnknownNo exploitation known Tenda AC6 V2.0 15.03.06.50 was discovered to contain a stack overflow in the page parameter in...
CVE Alert: CVE-2025-60337 – n/a – n/a
CVE-2025-60337 UnknownNo exploitation known Tenda AC6 V2.0 15.03.06.50 was discovered to contain a buffer overflow in the speed_dir parameter in...
CVE Alert: CVE-2025-12105 – Red Hat – Red Hat Enterprise Linux 10
CVE-2025-12105 HIGHNo exploitation known A flaw was found in the asynchronous message queue handling of the libsoup library, widely used...
