CVE Alert: CVE-2025-3907
Vulnerability Summary: CVE-2025-3907 Cross-Site Request Forgery (CSRF) vulnerability in Drupal Search API Solr allows Cross Site Request Forgery.This issue affects...
threatintel
[NIGHTSPIRE] – Ransomware Victim: MFR CULTIVONS LES REUSSITES, France
Ransomware Group: NIGHTSPIRE VICTIM NAME: MFR CULTIVONS LES REUSSITES, France NOTE: No files or stolen information are by RedPacket Security....
[SILENT] – Ransomware Victim: Versa Networks
Ransomware Group: SILENT VICTIM NAME: Versa Networks NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-46398
Vulnerability Summary: CVE-2025-46398 Stack-overflow in fig2dev in version 3.2.9a allows an attacker possible code execution via local input manipulation via...
CVE Alert: CVE-2024-58251
Vulnerability Summary: CVE-2024-58251 In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv containing...
CVE Alert: CVE-2025-3903
Vulnerability Summary: CVE-2025-3903 Vulnerability in Drupal UEditor - 百度编辑器.This issue affects UEditor - 百度编辑器: *.*. Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2025-32818
Vulnerability Summary: CVE-2025-32818 A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker...
CVE Alert: CVE-2025-46397
Vulnerability Summary: CVE-2025-46397 Stack-overflow in fig2dev in version 3.2.9a allows an attacker possible code execution via local input manipulation via...
CVE Alert: CVE-2025-25045
Vulnerability Summary: CVE-2025-25045 IBM InfoSphere Information 11.7 Server authenticated user to obtain sensitive information when a detailed technical error message...
CVE Alert: CVE-2024-22351
Vulnerability Summary: CVE-2024-22351 IBM InfoSphere Information 11.7 Server does not invalidate session after logout which could allow an authenticated user...
CVE Alert: CVE-2025-46399
Vulnerability Summary: CVE-2025-46399 Segmentation fault in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via...
CVE Alert: CVE-2025-46400
Vulnerability Summary: CVE-2025-46400 Segmentation fault in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via...
CVE Alert: CVE-2025-25046
Vulnerability Summary: CVE-2025-25046 IBM InfoSphere Information Server 11.7 DataStage Flow Designer transmits sensitive information via URL or query parameters that...
CVE Alert: CVE-2025-46243
Vulnerability Summary: CVE-2025-46243 Cross-Site Request Forgery (CSRF) vulnerability in sonalsinha21 Recover abandoned cart for WooCommerce allows Cross Site Request Forgery....
CVE Alert: CVE-2025-46244
Vulnerability Summary: CVE-2025-46244 Missing Authorization vulnerability in Dotstore Advanced Linked Variations for Woocommerce allows Exploiting Incorrectly Configured Access Control Security...
CVE Alert: CVE-2025-46242
Vulnerability Summary: CVE-2025-46242 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bob Watu Quiz...
CVE Alert: CVE-2025-46245
Vulnerability Summary: CVE-2025-46245 Cross-Site Request Forgery (CSRF) vulnerability in CreativeMindsSolutions CM Ad Changer allows Cross Site Request Forgery. This issue...
CVE Alert: CVE-2025-46252
Vulnerability Summary: CVE-2025-46252 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in kofimokome Message Filter...
CVE Alert: CVE-2025-46249
Vulnerability Summary: CVE-2025-46249 Cross-Site Request Forgery (CSRF) vulnerability in Michael Simple calendar for Elementor allows Cross Site Request Forgery. This...
CVE Alert: CVE-2025-46250
Vulnerability Summary: CVE-2025-46250 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vikas Ratudi VForm allows Stored...
CVE Alert: CVE-2025-46251
Vulnerability Summary: CVE-2025-46251 Cross-Site Request Forgery (CSRF) vulnerability in e4jvikwp VikRestaurants Table Reservations and Take-Away allows Cross Site Request Forgery....
CVE Alert: CVE-2025-46247
Vulnerability Summary: CVE-2025-46247 Missing Authorization vulnerability in codepeople Appointment Booking Calendar allows Accessing Functionality Not Properly Constrained by ACLs. This...
CVE Alert: CVE-2025-46254
Vulnerability Summary: CVE-2025-46254 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visual Composer Visual Composer Website...
CVE Alert: CVE-2025-3472
Vulnerability Summary: CVE-2025-3472 The Ocean Extra plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to,...
