Year: 2025

CISA: Trimble Releases Security Updates to Address a Vulnerability in Cityworks Software

February 9, 2025

Trimble Releases Security Updates to Address a Vulnerability in Cityworks Software CISA is collaborating with private industry partners to respond...

CISA: CISA Releases Six Industrial Control Systems Advisories

February 9, 2025

CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on February 6, 2025. These...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

February 9, 2025

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one vulnerability to its Known Exploited Vulnerabilities Catalog, based on...

CVE Alert: CVE-2025-25153

February 8, 2025

Vulnerability Summary: CVE-2025-25153 Cross-Site Request Forgery (CSRF) vulnerability in djjmz Simple Auto Tag allows Stored XSS. This issue affects Simple...

CVE Alert: CVE-2025-25151

February 8, 2025

Vulnerability Summary: CVE-2025-25151 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes uListing allows...

CVE Alert: CVE-2025-25149

February 8, 2025

Vulnerability Summary: CVE-2025-25149 Cross-Site Request Forgery (CSRF) vulnerability in Danillo Nunes Login-box allows Stored XSS. This issue affects Login-box: from...

CVE Alert: CVE-2025-25140

February 8, 2025

Vulnerability Summary: CVE-2025-25140 Cross-Site Request Forgery (CSRF) vulnerability in Scriptonite Simple User Profile allows Stored XSS. This issue affects Simple...

CVE Alert: CVE-2025-25152

February 8, 2025

Vulnerability Summary: CVE-2025-25152 Cross-Site Request Forgery (CSRF) vulnerability in LukaszWiecek Smart DoFollow allows Stored XSS. This issue affects Smart DoFollow:...

CVE Alert: CVE-2025-25147

February 8, 2025

Vulnerability Summary: CVE-2025-25147 Cross-Site Request Forgery (CSRF) vulnerability in Phillip.Gooch Auto SEO allows Stored XSS. This issue affects Auto SEO:...

CVE Alert: CVE-2025-25148

February 8, 2025

Vulnerability Summary: CVE-2025-25148 Cross-Site Request Forgery (CSRF) vulnerability in ElbowRobo Read More Copy Link allows Stored XSS. This issue affects...

CVE Alert: CVE-2025-25163

February 8, 2025

Vulnerability Summary: CVE-2025-25163 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Zach Swetz Plugin A/B...

CVE Alert: CVE-2025-25160

February 8, 2025

Vulnerability Summary: CVE-2025-25160 Cross-Site Request Forgery (CSRF) vulnerability in Mark Barnes Style Tweaker allows Stored XSS. This issue affects Style...

CVE Alert: CVE-2025-25159

February 8, 2025

Vulnerability Summary: CVE-2025-25159 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in robert_kolatzek WP doodlez allows Stored...

CVE Alert: CVE-2025-25154

February 8, 2025

Vulnerability Summary: CVE-2025-25154 Cross-Site Request Forgery (CSRF) vulnerability in scweber Custom Comment Notifications allows Stored XSS. This issue affects Custom...

CVE Alert: CVE-2025-25167

February 8, 2025

Vulnerability Summary: CVE-2025-25167 Missing Authorization vulnerability in blackandwhitedigital BookPress – For Book Authors allows Exploiting Incorrectly Configured Access Control Security...

CVE Alert: CVE-2025-25168

February 8, 2025

Vulnerability Summary: CVE-2025-25168 Cross-Site Request Forgery (CSRF) vulnerability in blackandwhitedigital BookPress – For Book Authors allows Cross-Site Scripting (XSS). This...

CVE Alert: CVE-2025-25156

February 8, 2025

Vulnerability Summary: CVE-2025-25156 Cross-Site Request Forgery (CSRF) vulnerability in Stanko Metodiev Quote Comments allows Stored XSS. This issue affects Quote...

CVE Alert: CVE-2025-25155

February 8, 2025

Vulnerability Summary: CVE-2025-25155 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in efreja Music Sheet Viewer...

CVE Alert: CVE-2025-1108

February 8, 2025

Vulnerability Summary: CVE-2025-1108 Insufficient data authenticity verification vulnerability in Janto, versions prior to r12. This allows an unauthenticated attacker to...

CVE Alert: CVE-2025-25166

February 8, 2025

Vulnerability Summary: CVE-2025-25166 Cross-Site Request Forgery (CSRF) vulnerability in gabrieldarezzo InLocation allows Stored XSS. This issue affects InLocation: from n/a...

CVE Alert: CVE-2025-1103

February 8, 2025

Vulnerability Summary: CVE-2025-1103 A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function...

CVE Alert: CVE-2025-1107

February 8, 2025

Vulnerability Summary: CVE-2025-1107 Unverified password change vulnerability in Janto, versions prior to r12. This could allow an unauthenticated attacker to...

CVE Alert: CVE-2024-10383

February 8, 2025

Vulnerability Summary: CVE-2024-10383 An issue has been discovered in the gitlab-web-ide-vscode-fork component distributed over CDN affecting all versions prior to...

[HUNTERS] – Ransomware Victim: SAKAI SOUKEN Co[.]

February 8, 2025

Ransomware Group: HUNTERS VICTIM NAME: SAKAI SOUKEN Co NOTE: No files or stolen information are by RedPacket Security. Any legal...

Year: 2025

CISA: Trimble Releases Security Updates to Address a Vulnerability in Cityworks Software

CISA: CISA Releases Six Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CVE Alert: CVE-2025-25153

CVE Alert: CVE-2025-25151

CVE Alert: CVE-2025-25149

CVE Alert: CVE-2025-25140

CVE Alert: CVE-2025-25152

CVE Alert: CVE-2025-25147

CVE Alert: CVE-2025-25148

CVE Alert: CVE-2025-25163

CVE Alert: CVE-2025-25160

CVE Alert: CVE-2025-25159

CVE Alert: CVE-2025-25154

CVE Alert: CVE-2025-25167

CVE Alert: CVE-2025-25168

CVE Alert: CVE-2025-25156

CVE Alert: CVE-2025-25155

CVE Alert: CVE-2025-1108

CVE Alert: CVE-2025-25166

CVE Alert: CVE-2025-1103

CVE Alert: CVE-2025-1107

CVE Alert: CVE-2024-10383

[HUNTERS] – Ransomware Victim: SAKAI SOUKEN Co[.]

CVE Alert: CVE-2025-0905

CVE Alert: CVE-2025-0903

CVE Alert: CVE-2025-0904

CVE Alert: CVE-2025-0901

CVE Alert: CVE-2025-0902

You may have missed