CVE Alert: CVE-2025-32358
Vulnerability Summary: CVE-2025-32358 In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which...
threatintel
CVE Alert: CVE-2025-32364
Vulnerability Summary: CVE-2025-32364 A floating-point exception in the PSStack::roll function of Poppler before 25.04.0 can cause an application to crash...
CVE Alert: CVE-2025-3305
Vulnerability Summary: CVE-2025-3305 A vulnerability has been found in 1902756969/code-projects IKUN_Library 1.0 and classified as problematic. This vulnerability affects the...
CVE Alert: CVE-2025-32248
Vulnerability Summary: CVE-2025-32248 Cross-Site Request Forgery (CSRF) vulnerability in SwiftXR SwiftXR (3D/AR/VR) Viewer allows Cross Site Request Forgery. This issue...
CVE Alert: CVE-2025-32247
Vulnerability Summary: CVE-2025-32247 Cross-Site Request Forgery (CSRF) vulnerability in ABCdatos AI Content Creator allows Cross Site Request Forgery. This issue...
CVE Alert: CVE-2025-32232
Vulnerability Summary: CVE-2025-32232 Missing Authorization vulnerability in ERA404 StaffList allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-32231
Vulnerability Summary: CVE-2025-32231 Missing Authorization vulnerability in Bookingor Bookingor allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-32229
Vulnerability Summary: CVE-2025-32229 Missing Authorization vulnerability in Bowo Variable Inspector allows Exploiting Incorrectly Configured Access Control Security Levels. This issue...
CVE Alert: CVE-2025-32239
Vulnerability Summary: CVE-2025-32239 Missing Authorization vulnerability in Joao Romao Social Share Buttons & Analytics Plugin – GetSocial.io allows Exploiting Incorrectly...
CVE Alert: CVE-2025-32238
Vulnerability Summary: CVE-2025-32238 Generation of Error Message Containing Sensitive Information vulnerability in vcita Online Booking & Scheduling Calendar for WordPress...
CVE Alert: CVE-2025-32237
Vulnerability Summary: CVE-2025-32237 Missing Authorization vulnerability in Stylemix MasterStudy LMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue...
CVE Alert: CVE-2025-32241
Vulnerability Summary: CVE-2025-32241 Cross-Site Request Forgery (CSRF) vulnerability in CleverReach® Official CleverReach Plugin for WooCommerce allows Cross Site Request Forgery....
CVE Alert: CVE-2025-32246
Vulnerability Summary: CVE-2025-32246 Missing Authorization vulnerability in Tim Nguyen 1-Click Backup & Restore Database allows Exploiting Incorrectly Configured Access Control...
Cobalt Strike Beacon Detected – 47[.]96[.]136[.]148:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 122[.]10[.]15[.]130:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 15[.]229[.]22[.]115:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-32250
Vulnerability Summary: CVE-2025-32250 Cross-Site Request Forgery (CSRF) vulnerability in rollbar Rollbar allows Cross Site Request Forgery. This issue affects Rollbar:...
CVE Alert: CVE-2025-32251
Vulnerability Summary: CVE-2025-32251 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in J. Tyler Wiest Jetpack Feedback...
CVE Alert: CVE-2025-32252
Vulnerability Summary: CVE-2025-32252 Missing Authorization vulnerability in blackandwhitedigital WP Genealogy – Your Family History Website allows Exploiting Incorrectly Configured Access...
CVE Alert: CVE-2025-32254
Vulnerability Summary: CVE-2025-32254 Missing Authorization vulnerability in Iqonic Design WPBookit allows Accessing Functionality Not Properly Constrained by ACLs. This issue...
CVE Alert: CVE-2025-32253
Vulnerability Summary: CVE-2025-32253 Missing Authorization vulnerability in ComMotion Course Booking System allows Accessing Functionality Not Properly Constrained by ACLs. This...
CVE Alert: CVE-2025-32255
Vulnerability Summary: CVE-2025-32255 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ERA404 StaffList allows Retrieve Embedded...
CVE Alert: CVE-2025-32249
Vulnerability Summary: CVE-2025-32249 Cross-Site Request Forgery (CSRF) vulnerability in designinvento DirectoryPress allows Cross Site Request Forgery. This issue affects DirectoryPress:...
CVE Alert: CVE-2025-32256
Vulnerability Summary: CVE-2025-32256 Missing Authorization vulnerability in devsoftbaltic SurveyJS allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects...
