CVE Alert: CVE-2025-54589
Vulnerability Summary: CVE-2025-54589 Copyparty is a portable file server. In versions 1.18.6 and below, when accessing the recent uploads page...
CVE
CVE Alert: CVE-2025-50270
Vulnerability Summary: CVE-2025-50270 A stored Cross Site Scripting (xss) vulnerability in the "content management" feature in AnQiCMS v.3.4.11 allows a...
CVE Alert: CVE-2025-29557
Vulnerability Summary: CVE-2025-29557 ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control in the MailConfiguration API endpoint, where...
CVE Alert: CVE-2025-52289
Vulnerability Summary: CVE-2025-52289 A Broken Access Control vulnerability in MagnusBilling v7.8.5.3 allows newly registered users to gain escalated privileges by...
CVE Alert: CVE-2025-50475
Vulnerability Summary: CVE-2025-50475 An OS command injection vulnerability exists in Russound MBX-PRE-D67F firmware version 3.1.6, allowing unauthenticated attackers to execute...
CVE Alert: CVE-2025-50849
Vulnerability Summary: CVE-2025-50849 CS Cart 4.18.3 is vulnerable to Insecure Direct Object Reference (IDOR). The user profile functionality allows enabling...
CVE Alert: CVE-2025-50848
Vulnerability Summary: CVE-2025-50848 A file upload vulnerability was discovered in CS Cart 4.18.3, allows attackers to execute arbitrary code. CS...
CVE Alert: CVE-2025-51569
Vulnerability Summary: CVE-2025-51569 A cross-site scripting (XSS) vulnerability exists in the LB-Link BL-CPE300M 01.01.02P42U14_06 router's web interface. The /goform/goform_get_cmd_process endpoint...
CVE Alert: CVE-2025-29556
Vulnerability Summary: CVE-2025-29556 ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control. Since version 6.3, ExaGrid enforces restrictions...
CVE Alert: CVE-2025-50847
Vulnerability Summary: CVE-2025-50847 Cross Site Request Forgery (CSRF) vulnerability in CS Cart 4.18.3, allows attackers to add products to a...
CVE Alert: CVE-2025-8408
Vulnerability Summary: CVE-2025-8408 A vulnerability, which was classified as critical, was found in code-projects Vehicle Management 1.0. Affected is an...
CVE Alert: CVE-2025-50867
Vulnerability Summary: CVE-2025-50867 A SQL Injection vulnerability exists in the takeassessment2.php endpoint of the CloudClassroom-PHP-Project 1.0, where the Q5 POST...
CVE Alert: CVE-2025-50850
Vulnerability Summary: CVE-2025-50850 An issue was discovered in CS Cart 4.18.3 allows the vendor login functionality lacks essential security controls...
CVE Alert: CVE-2025-46809
Vulnerability Summary: CVE-2025-46809 A Insertion of Sensitive Information into Log File vulnerability in SUSE Multi Linux Manager exposes the HTTP...
CVE Alert: CVE-2025-8409
Vulnerability Summary: CVE-2025-8409 A vulnerability has been found in code-projects Vehicle Management 1.0 and classified as critical. Affected by this...
CVE Alert: CVE-2025-52203
Vulnerability Summary: CVE-2025-52203 A stored cross-site scripting (XSS) vulnerability exists in DevaslanPHP project-management v1.2.4. The vulnerability resides in the Ticket...
CVE Alert: CVE-2025-50866
Vulnerability Summary: CVE-2025-50866 CloudClassroom-PHP-Project 1.0 contains a reflected Cross-site Scripting (XSS) vulnerability in the email parameter of the postquerypublic endpoint....
CVE Alert: CVE-2025-51383
Vulnerability Summary: CVE-2025-51383 D-LINK DI-8200 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_road_asp function via the host_ip parameter. Affected...
CVE Alert: CVE-2025-54832
Vulnerability Summary: CVE-2025-54832 OPEXUS FOIAXpress Public Access Link (PAL), version v11.1.0, allows an authenticated user to add entries to the...
CVE Alert: CVE-2024-34327
Vulnerability Summary: CVE-2024-34327 Sielox AnyWare v2.1.2 was discovered to contain a SQL injection vulnerability via the email address field of...
CVE Alert: CVE-2025-51384
Vulnerability Summary: CVE-2025-51384 D-LINK DI-8200 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_net_asp function via the remot_ip parameter. Affected...
CVE Alert: CVE-2025-51503
Vulnerability Summary: CVE-2025-51503 A Stored Cross-Site Scripting (XSS) vulnerability in Microweber CMS 2.0 allows attackers to inject malicious scripts into...
CVE Alert: CVE-2025-51385
Vulnerability Summary: CVE-2025-51385 D-LINK DI-8200 16.07.26A1 is vulnerable to Buffer Overflow in the yyxz_dlink_asp function via the id parameter. Affected...
CVE Alert: CVE-2025-8426
Vulnerability Summary: CVE-2025-8426 Marvell QConvergeConsole compressConfigFiles Directory Traversal Information Disclosure and Denial-of-Service Vulnerability. This vulnerability allows remote attackers to disclose...
