CVE Alert: CVE-2025-25761
Vulnerability Summary: CVE-2025-25761 HkCms v2.3.2.240702 was discovered to contain an arbitrary file write vulnerability in the component Appcenter.php. Affected Endpoints:...
threatintel
CVE Alert: CVE-2025-0914
Vulnerability Summary: CVE-2025-0914 An improper access control issue in the VQL shell feature in Velociraptor Versions < 0.73.4 allowed authenticated...
CVE Alert: CVE-2024-56811
Vulnerability Summary: CVE-2024-56811 IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error...
CVE Alert: CVE-2025-1741
Vulnerability Summary: CVE-2025-1741 A vulnerability classified as problematic was found in b1gMail up to 7.4.1-pl1. Affected by this vulnerability is...
CVE Alert: CVE-2025-1756
Vulnerability Summary: CVE-2025-1756 mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a...
CVE Alert: CVE-2025-27157
Vulnerability Summary: CVE-2025-27157 Mastodon is a self-hosted, federated microblogging platform. Starting in version 4.2.0 and prior to versions 4.2.16 and...
CVE Alert: CVE-2024-9285
Vulnerability Summary: CVE-2024-9285 A vulnerability was found in Tu Yafeng Via Browser up to 5.9.0 on Android. It has been...
CVE Alert: CVE-2025-1755
Vulnerability Summary: CVE-2025-1755 MongoDB Compass may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on...
CVE Alert: CVE-2025-23687
Vulnerability Summary: CVE-2025-23687 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in simonhunter Woo Store Mode allows...
CVE Alert: CVE-2025-25333
Vulnerability Summary: CVE-2025-25333 An issue in IKEA CN iOS 4.13.0 allows attackers to access sensitive user information via supplying a...
CVE Alert: CVE-2025-1742
Vulnerability Summary: CVE-2025-1742 A vulnerability, which was classified as problematic, has been found in pihome-shc PiHome 2.0. Affected by this...
CVE Alert: CVE-2025-27399
Vulnerability Summary: CVE-2025-27399 Mastodon is a self-hosted, federated microblogging platform. In versions prior to 4.1.23, 4.2.16, and 4.3.4, when the...
CVE Alert: CVE-2025-24832
Vulnerability Summary: CVE-2025-24832 Arbitrary file overwrite during home directory recovery due to improper symbolic link handling. The following products are...
CVE Alert: CVE-2025-1743
Vulnerability Summary: CVE-2025-1743 A vulnerability, which was classified as critical, was found in zyx0814 Pichome 2.1.0. This affects an unknown...
CVE Alert: CVE-2025-1745
Vulnerability Summary: CVE-2025-1745 A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. This vulnerability affects unknown...
Spyzie – 518,643 breached accounts
HIBP In February 2025, the spyware service Spyzie suffered a data breach along with sibling spyware services, Spyic and Cocospy....
Orange Romania – 556,557 breached accounts
HIBP In February 2025, the Romanian arm of telecommunications company Orange suffered a data breach which was subsequently published to...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on January 28, 2025. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on January 30, 2025. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Partners with ASD’s ACSC, CCCS, NCSC-UK, and Other International and US Organizations to Release Guidance on Edge Devices
CISA Partners with ASD’s ACSC, CCCS, NCSC-UK, and Other International and US Organizations to Release Guidance on Edge Devices CISA—in...
