CVE Alert: CVE-2025-49319
Vulnerability Summary: CVE-2025-49319 Missing Authorization vulnerability in WPFactory Wishlist for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This...
CVE
CVE Alert: CVE-2025-52777
Vulnerability Summary: CVE-2025-52777 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cmsMinds Pay with Contact Form...
CVE Alert: CVE-2025-48291
Vulnerability Summary: CVE-2025-48291 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wasiliy Strecker / ContestGallery developer...
CVE Alert: CVE-2025-52779
Vulnerability Summary: CVE-2025-52779 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in karimmughal Dot html,php,xml etc pages...
CVE Alert: CVE-2025-48300
Vulnerability Summary: CVE-2025-48300 Unrestricted Upload of File with Dangerous Type vulnerability in Adrian Tobey Groundhogg allows Upload a Web Shell...
CVE Alert: CVE-2025-48339
Vulnerability Summary: CVE-2025-48339 Missing Authorization vulnerability in activity-log.com Profiler - What Slowing Down Your WP allows Exploiting Incorrectly Configured Access...
CVE Alert: CVE-2025-52714
Vulnerability Summary: CVE-2025-52714 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in shinetheme Traveler allows...
CVE Alert: CVE-2025-49888
Vulnerability Summary: CVE-2025-49888 Missing Authorization vulnerability in pimwick PW WooCommerce On Sale! allows Exploiting Incorrectly Configured Access Control Security Levels....
CVE Alert: CVE-2025-50028
Vulnerability Summary: CVE-2025-50028 Missing Authorization vulnerability in CodeSolz Ultimate Push Notifications allows Exploiting Incorrectly Configured Access Control Security Levels. This...
CVE Alert: CVE-2025-49884
Vulnerability Summary: CVE-2025-49884 Missing Authorization vulnerability in alexvtn Internal Linking of Related Contents allows Exploiting Incorrectly Configured Access Control Security...
CVE Alert: CVE-2025-49876
Vulnerability Summary: CVE-2025-49876 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid allows...
CVE Alert: CVE-2025-52819
Vulnerability Summary: CVE-2025-52819 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in pakkemx Pakke Envíos...
CVE Alert: CVE-2025-52803
Vulnerability Summary: CVE-2025-52803 Missing Authorization vulnerability in uxper Sala allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects...
CVE Alert: CVE-2025-52836
Vulnerability Summary: CVE-2025-52836 Incorrect Privilege Assignment vulnerability in Unity Business Technology Pty Ltd The E-Commerce ERP allows Privilege Escalation. This...
CVE Alert: CVE-2025-52804
Vulnerability Summary: CVE-2025-52804 Missing Authorization vulnerability in uxper Nuss allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects...
CVE Alert: CVE-2025-52787
Vulnerability Summary: CVE-2025-52787 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EZiHosting Tennis Court Bookings allows...
CVE Alert: CVE-2025-52786
Vulnerability Summary: CVE-2025-52786 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kingdom Creation Media Folder allows...
CVE Alert: CVE-2025-40919
Vulnerability Summary: CVE-2025-40919 Authen::DigestMD5 versions 0.01 through 0.02 for Perl generate the cnonce insecurely. The cnonce (client nonce) is generated...
CVE Alert: CVE-2025-40923
Vulnerability Summary: CVE-2025-40923 Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a...
CVE Alert: CVE-2025-3871
Vulnerability Summary: CVE-2025-3871 Broken access control in Fortra's GoAnywhere MFT prior to 7.8.1 allows an attacker to create a denial...
CVE Alert: CVE-2025-40918
Vulnerability Summary: CVE-2025-40918 Authen::SASL::Perl::DIGEST_MD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. The cnonce (client nonce) is generated...
CVE Alert: CVE-2025-40913
Vulnerability Summary: CVE-2025-40913 Net::Dropbear versions through 0.16 for Perl contains a dependency that may be susceptible to an integer overflow....
CVE Alert: CVE-2025-53840
Vulnerability Summary: CVE-2025-53840 Icinga DB Web provides a graphical interface for Icinga monitoring. Starting in version 1.2.0 and prior to...
CVE Alert: CVE-2025-40776
Vulnerability Summary: CVE-2025-40776 A `named` caching resolver that is configured to send ECS (EDNS Client Subnet) options may be vulnerable...
