CVE Alert: CVE-2023-42007
Vulnerability Summary: CVE-2023-42007 IBM Sterling Control Center 6.2.1, 6.3.1, and 6.4.0 is vulnerable to cross-site scripting. This vulnerability allows users...
OSINT
CVE Alert: CVE-2025-2469
Vulnerability Summary: CVE-2025-2469 An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 17.9.6, and 17.10...
CVE Alert: CVE-2025-0362
Vulnerability Summary: CVE-2025-0362 An issue has been discovered in GitLab CE/EE affecting all versions from 7.7 before 17.8.7, 17.9 before...
CVE Alert: CVE-2025-32391
Vulnerability Summary: CVE-2025-32391 HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to 1.10.3, a malicious SVG file...
CVE Alert: CVE-2025-32383
Vulnerability Summary: CVE-2025-32383 MaxKB (Max Knowledge Base) is an open source knowledge base question-answering system based on a large language...
CVE Alert: CVE-2025-32743
Vulnerability Summary: CVE-2025-32743 In ConnMan through 1.44, the lookup string in ns_resolv in dnsproxy.c can be NULL or an empty...
CVE Alert: CVE-2025-29150
Vulnerability Summary: CVE-2025-29150 BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request. Affected Endpoints:...
CVE Alert: CVE-2025-32027
Vulnerability Summary: CVE-2025-32027 Yii is an open source PHP web framework. Prior to 1.1.31, yiisoft/yii is vulnerable to Reflected XSS...
CVE Alert: CVE-2025-24866
Vulnerability Summary: CVE-2025-24866 Mattermost versions 9.11.x
CVE Alert: CVE-2025-23010
Vulnerability Summary: CVE-2025-23010 An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64...
CVE Alert: CVE-2025-22232
Vulnerability Summary: CVE-2025-22232 Spring Cloud Config Server may not use Vault token sent by clients using a X-CONFIG-TOKEN header when...
CVE Alert: CVE-2025-23009
Vulnerability Summary: CVE-2025-23009 A local privilege escalation vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an...
CVE Alert: CVE-2025-23008
Vulnerability Summary: CVE-2025-23008 An improper privilege management vulnerability in the SonicWall NetExtender Windows (32 and 64 bit) client allows a...
CVE Alert: CVE-2025-29916
Vulnerability Summary: CVE-2025-29916 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Datasets declared...
CVE Alert: CVE-2025-29918
Vulnerability Summary: CVE-2025-29918 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE...
CVE Alert: CVE-2025-29917
Vulnerability Summary: CVE-2025-29917 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The bytes...
CVE Alert: CVE-2025-29915
Vulnerability Summary: CVE-2025-29915 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AF_PACKET...
Boulanger – 2,077,078 breached accounts
HIBP In September 2024, French electronics retailer Boulanger suffered a data breach that exposed over 27M rows of data. The...
Cobalt Strike Beacon Detected – 83[.]229[.]124[.]173:82
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-32694
Vulnerability Summary: CVE-2025-32694 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Rustaurius Ultimate WP Mail allows Phishing. This issue...
CVE Alert: CVE-2025-32692
Vulnerability Summary: CVE-2025-32692 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP...
CVE Alert: CVE-2025-32691
Vulnerability Summary: CVE-2025-32691 Server-Side Request Forgery (SSRF) vulnerability in Angelo Mandato PowerPress Podcasting allows Server Side Request Forgery. This issue...
CVE Alert: CVE-2025-32695
Vulnerability Summary: CVE-2025-32695 Incorrect Privilege Assignment vulnerability in Mestres do WP Checkout Mestres WP allows Privilege Escalation. This issue affects...
CVE Alert: CVE-2025-32693
Vulnerability Summary: CVE-2025-32693 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WPWebinarSystem WebinarPress allows Phishing. This issue affects WebinarPress:...
