CVE Alert: CVE-2025-30606
Vulnerability Summary: CVE-2025-30606 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Logan Carlile Easy Page Transition...
Month: March 2025
CVE Alert: CVE-2025-30621
Vulnerability Summary: CVE-2025-30621 Cross-Site Request Forgery (CSRF) vulnerability in kornelly Translator allows Stored XSS. This issue affects Translator: from n/a...
CVE Alert: CVE-2025-30620
Vulnerability Summary: CVE-2025-30620 Cross-Site Request Forgery (CSRF) vulnerability in coderscom WP Odoo Form Integrator allows Stored XSS. This issue affects...
CVE Alert: CVE-2025-30605
Vulnerability Summary: CVE-2025-30605 Missing Authorization vulnerability in ldwin79 sourceplay-navermap allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-30623
Vulnerability Summary: CVE-2025-30623 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rachel Cherry wA11y – The...
CVE Alert: CVE-2025-30619
Vulnerability Summary: CVE-2025-30619 Cross-Site Request Forgery (CSRF) vulnerability in SpeakPipe SpeakPipe allows Cross Site Request Forgery. This issue affects SpeakPipe:...
CVE Alert: CVE-2025-30617
Vulnerability Summary: CVE-2025-30617 Cross-Site Request Forgery (CSRF) vulnerability in takien Rewrite allows Cross Site Request Forgery. This issue affects Rewrite:...
CVE Alert: CVE-2021-26105
Vulnerability Summary: CVE-2021-26105 A stack-based buffer overflow vulnerability (CWE-121) in the profile parser of FortiSandbox version 3.2.2 and below, version...
CVE Alert: CVE-2025-30615
Vulnerability Summary: CVE-2025-30615 Cross-Site Request Forgery (CSRF) vulnerability in Jacob Schwartz WP e-Commerce Style Email allows Code Injection. This issue...
CVE Alert: CVE-2025-1558
Vulnerability Summary: CVE-2025-1558 Mattermost Mobile Apps versions
CVE Alert: CVE-2024-9103
Vulnerability Summary: CVE-2024-9103 Improper Neutralization of Script in Attributes in a Web Page vulnerability in Forcepoint Email Security (Blocked Messages...
CVE Alert: CVE-2021-26091
Vulnerability Summary: CVE-2021-26091 A use of a cryptographically weak pseudo-random number generator vulnerability in the authenticator of the Identity Based...
CVE Alert: CVE-2025-0256
Vulnerability Summary: CVE-2025-0256 HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other...
CVE Alert: CVE-2023-25610
Vulnerability Summary: CVE-2023-25610 A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3,...
CVE Alert: CVE-2025-23204
Vulnerability Summary: CVE-2025-23204 API Platform Core is a system to create hypermedia-driven REST and GraphQL APIs. Starting in version 3.3.8,...
CVE Alert: CVE-2025-29778
Vulnerability Summary: CVE-2025-29778 Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to version 1.14.0-alpha.1, Kyverno...
CVE Alert: CVE-2025-2705
Vulnerability Summary: CVE-2025-2705 A vulnerability classified as critical has been found in Digiwin ERP 5.1. Affected is the function DoUpload/DoWebUpload...
CVE Alert: CVE-2025-30208
Vulnerability Summary: CVE-2025-30208 Vite, a provider of frontend development tooling, has a vulnerability in versions prior to 6.2.3, 6.1.2, 6.0.12,...
CVE Alert: CVE-2025-0255
Vulnerability Summary: CVE-2025-0255 HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands...
CVE Alert: CVE-2025-30205
Vulnerability Summary: CVE-2025-30205 kanidim-provision is a helper utility that uses kanidm's API to provision users, groups and oauth2 systems. Prior...
CVE Alert: CVE-2025-2707
Vulnerability Summary: CVE-2025-2707 A vulnerability, which was classified as critical, has been found in zhijiantianya ruoyi-vue-pro 2.4.1. Affected by this...
CVE Alert: CVE-2025-30112
Vulnerability Summary: CVE-2025-30112 On 70mai Dash Cam 1S devices, by connecting directly to the dashcam's network and accessing the API...
CVE Alert: CVE-2025-2747
Vulnerability Summary: CVE-2025-2747 An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server component password...
CVE Alert: CVE-2025-22223
Vulnerability Summary: CVE-2025-22223 Spring Security 6.4.0 - 6.4.3 may not correctly locate method security annotations on parameterized types or methods....
