Vulnerabilities

CVE Alert: CVE-2025-25604

February 22, 2025

Vulnerability Summary: CVE-2025-25604 Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable function in mtkwifi.lua. Affected Endpoints: No...

CVE Alert: CVE-2025-27108

February 22, 2025

Vulnerability Summary: CVE-2025-27108 dom-expressions is a Fine-Grained Runtime for Performant DOM Rendering. In affected versions the use of javascript's `.replace()`...

CVE Alert: CVE-2025-1555

February 22, 2025

Vulnerability Summary: CVE-2025-1555 A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. This vulnerability affects...

CVE Alert: CVE-2025-25282

February 22, 2025

Vulnerability Summary: CVE-2025-25282 RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine based on deep document understanding. An authenticated user can...

CVE Alert: CVE-2024-13849

February 21, 2025

Vulnerability Summary: CVE-2024-13849 The Cookie Notice Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up...

CVE Alert: CVE-2025-0866

February 21, 2025

Vulnerability Summary: CVE-2025-0866 The Legoeso PDF Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘checkedVals’ parameter...

CVE Alert: CVE-2024-13802

February 21, 2025

Vulnerability Summary: CVE-2024-13802 The Bandsintown Events plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bandsintown_events' shortcode...

CVE Alert: CVE-2024-6432

February 21, 2025

Vulnerability Summary: CVE-2024-6432 The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2024-13855

February 21, 2025

Vulnerability Summary: CVE-2024-13855 The Prime Addons for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all...

CVE Alert: CVE-2024-49779

February 21, 2025

Vulnerability Summary: CVE-2024-49779 IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages could allow a remote attacker to bypass security...

CVE Alert: CVE-2025-1328

February 21, 2025

Vulnerability Summary: CVE-2025-1328 The Typed JS: A typewriter style animation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...

CVE Alert: CVE-2024-49337

February 21, 2025

Vulnerability Summary: CVE-2024-49337 IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages is vulnerable to HTML injection, caused by improper...

CVE Alert: CVE-2024-49781

February 21, 2025

Vulnerability Summary: CVE-2024-49781 IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages is vulnerable to an XML external entity injection...

CVE Alert: CVE-2025-1483

February 21, 2025

Vulnerability Summary: CVE-2025-1483 The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized modification of data...

Vulnerabilities

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

February 21, 2025

Palo Alto Networks Security Advisories /CVE-2025-0110CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability in OpenConfig PluginUrgencyMODERATE047910Severity7.3 ·HIGHExploit MaturityPOCResponse EffortMODERATERecoveryUSERValue DensityCONCENTRATEDAttack VectorNETWORKAttack...

Vulnerabilities

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

February 21, 2025

Vulnerabilities

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

February 21, 2025

Vulnerabilities

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

February 21, 2025

Vulnerabilities

CVE Alert: CVE-2025-25604

CVE Alert: CVE-2025-27108

CVE Alert: CVE-2025-1555

CVE Alert: CVE-2025-25282

CVE Alert: CVE-2024-13849

CVE Alert: CVE-2025-0866

CVE Alert: CVE-2024-13802

CVE Alert: CVE-2024-6432

CVE Alert: CVE-2024-13855

CVE Alert: CVE-2024-49779

CVE Alert: CVE-2025-1328

CVE Alert: CVE-2024-49337

CVE Alert: CVE-2024-49781

CVE Alert: CVE-2025-1483

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

CVE Alert: CVE-2025-1043

CVE Alert: CVE-2024-49344

CVE Alert: CVE-2025-1039

CVE Alert: CVE-2025-21106

CVE Alert: CVE-2025-21105

CVE Alert: CVE-2023-51306

CVE Alert: CVE-2024-51952

CVE Alert: CVE-2024-51954

CVE Alert: CVE-2024-51950

CVE Alert: CVE-2024-51953

CVE Alert: CVE-2024-51951

You may have missed