CVE Alert: CVE-2024-13184
Vulnerability Summary: CVE-2024-13184 The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to time-based SQL Injection...
Month: January 2025
CVE Alert: CVE-2024-13392
Vulnerability Summary: CVE-2024-13392 The Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings plugin for WordPress is vulnerable to...
CVE Alert: CVE-2024-13433
Vulnerability Summary: CVE-2024-13433 The Utilities for MTG plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mtglink'...
CVE Alert: CVE-2024-13375
Vulnerability Summary: CVE-2024-13375 The Adifier System plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions...
CVE Alert: CVE-2025-0557
Vulnerability Summary: CVE-2025-0557 A vulnerability classified as problematic has been found in Hyland Alfresco Community Edition and Alfresco Enterprise Edition...
CVE Alert: CVE-2025-0559
Vulnerability Summary: CVE-2025-0559 A vulnerability, which was classified as problematic, has been found in Campcodes School Management Software 1.0. This...
CVE Alert: CVE-2025-0560
Vulnerability Summary: CVE-2025-0560 A vulnerability, which was classified as problematic, was found in CampCodes School Management Software 1.0. Affected is...
CVE Alert: CVE-2024-49338
Vulnerability Summary: CVE-2024-49338 IBM App Connect Enterprise 12.0.1.0 through 12.0.7.0and 13.0.1.0 under certain configurations could allow a privileged user to...
CVE Alert: CVE-2025-0558
Vulnerability Summary: CVE-2025-0558 A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This vulnerability affects the...
CVE Alert: CVE-2024-51448
Vulnerability Summary: CVE-2024-51448 IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a local user to...
CVE Alert: CVE-2024-47106
Vulnerability Summary: CVE-2024-47106 IBM Jazz for Service Management 1.1.3 through 1.1.3.22 could allow a remote attacker to obtain sensitive information...
CVE Alert: CVE-2024-49354
Vulnerability Summary: CVE-2024-49354 IBM Concert 1.0.0, 1.0.1, and 1.0.2 is vulnerable to sensitive information disclosure through specially crafted API Calls....
CVE Alert: CVE-2024-45662
Vulnerability Summary: CVE-2024-45662 IBM Safer Payments 6.4.0.00 through 6.4.2.07, 6.5.0.00 through 6.5.0.05, and 6.6.0.00 through 6.6.0.03 could allow a remote...
CVE Alert: CVE-2024-47113
Vulnerability Summary: CVE-2024-47113 IBM ICP - Voice Gateway 1.0.2, 1.0.2.4, 1.0.3, 1.0.4, 1.0.5, 1.0.6. 1.0.7, 1.0.7.1, and 1.0.8 could allow...
CVE Alert: CVE-2024-49824
Vulnerability Summary: CVE-2024-49824 IBM Robotic Process Automation 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 and IBM Robotic Process Automation for...
Otelier – 436,855 breached accounts
HIBP In July 2024, a threat actor gained access to the hotel management platform Otelier and retrieved customer data from...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on December 17, 2024. These...
CISA: CISA Releases Best Practice Guidance for Mobile Communications
CISA Releases Best Practice Guidance for Mobile Communications Today, CISA released Mobile Communications Best Practice Guidance. The guidance was crafted...
CISA: CISA Issues BOD 25-01, Implementing Secure Practices for Cloud Services
CISA Issues BOD 25-01, Implementing Secure Practices for Cloud Services Today, CISA issued Binding Operational Directive (BOD) 25-01, Implementing Secure...
CISA: CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure
CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure Today, CISA and the Office...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on December 19, 2024. These...
