Vulnerabilities

CVE Alert: CVE-2025-25429

March 1, 2025

Vulnerability Summary: CVE-2025-25429 Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the r_name variable inside the have_same_name...

CVE Alert: CVE-2025-24843

March 1, 2025

Vulnerability Summary: CVE-2025-24843 Insecure file retrieval process that facilitates potential for file manipulation to affect product stability and confidentiality, integrity,...

CVE Alert: CVE-2025-24849

March 1, 2025

Vulnerability Summary: CVE-2025-24849 Lack of encryption in transit for cloud infrastructure facilitating potential for sensitive data manipulation or exposure. Affected...

CVE Alert: CVE-2025-20049

March 1, 2025

Vulnerability Summary: CVE-2025-20049 The Dario Health portal service application is vulnerable to XSS, which could allow an attacker to obtain...

CVE Alert: CVE-2025-27408

March 1, 2025

Vulnerability Summary: CVE-2025-27408 Manifest offers users a one-file micro back end. Prior to version 4.9.1, Manifest employs a weak password...

CVE Alert: CVE-2025-0159

March 1, 2025

Vulnerability Summary: CVE-2025-0159 IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0...

CVE Alert: CVE-2025-26466

March 1, 2025

Vulnerability Summary: CVE-2025-26466 A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a...

CVE Alert: CVE-2025-0160

March 1, 2025

Vulnerability Summary: CVE-2025-0160 IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0...

CVE Alert: CVE-2025-27413

March 1, 2025

Vulnerability Summary: CVE-2025-27413 PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality allows an...

CVE Alert: CVE-2025-27410

March 1, 2025

Vulnerability Summary: CVE-2025-27410 PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality is vulnerable...

CVE Alert: CVE-2025-1450

February 28, 2025

Vulnerability Summary: CVE-2025-1450 The Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button, WhatsApp...

CVE Alert: CVE-2025-1690

February 28, 2025

Vulnerability Summary: CVE-2025-1690 The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode...

CVE Alert: CVE-2024-13734

February 28, 2025

Vulnerability Summary: CVE-2024-13734 The Card Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2025-1282

February 28, 2025

Vulnerability Summary: CVE-2025-1282 The Car Dealer Automotive WordPress Theme – Responsive theme for WordPress is vulnerable to arbitrary file deletion...

CVE Alert: CVE-2024-10918

February 28, 2025

Vulnerability Summary: CVE-2024-10918 Stack-based Buffer Overflow vulnerability in libmodbus v3.1.10 allows to overflow the buffer allocated for the Modbus response...

CVE Alert: CVE-2025-1738

February 28, 2025

Vulnerability Summary: CVE-2025-1738 A Password Transmitted over Query String vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity,...

CVE Alert: CVE-2024-13402

February 28, 2025

Vulnerability Summary: CVE-2024-13402 The Buddyboss Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link_title’ parameter in...

CVE Alert: CVE-2025-1751

February 28, 2025

Vulnerability Summary: CVE-2025-1751 A SQL Injection vulnerability has been found in Ciges 2.15.5 from ATISoluciones. This vulnerability allows an attacker...

CVE Alert: CVE-2024-13217

February 28, 2025

Vulnerability Summary: CVE-2024-13217 The Jeg Elementor Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up...

CVE Alert: CVE-2025-1739

February 28, 2025

Vulnerability Summary: CVE-2025-1739 An Authentication Bypass vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity. This vulnerability allows...

CVE Alert: CVE-2024-9334

February 28, 2025

Vulnerability Summary: CVE-2024-9334 Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent...

CVE Alert: CVE-2025-1691

February 28, 2025

Vulnerability Summary: CVE-2025-1691 The MongoDB Shell may be susceptible to control character injection where an attacker with control of the...

CVE Alert: CVE-2025-22280

February 28, 2025

Vulnerability Summary: CVE-2025-22280 Missing Authorization vulnerability in revmakx DefendWP Firewall allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects...

CVE Alert: CVE-2025-1692

February 28, 2025

Vulnerability Summary: CVE-2025-1692 The MongoDB Shell may be susceptible to control character injection where an attacker with control of the...

Vulnerabilities

CVE Alert: CVE-2025-25429

CVE Alert: CVE-2025-24843

CVE Alert: CVE-2025-24849

CVE Alert: CVE-2025-20049

CVE Alert: CVE-2025-27408

CVE Alert: CVE-2025-0159

CVE Alert: CVE-2025-26466

CVE Alert: CVE-2025-0160

CVE Alert: CVE-2025-27413

CVE Alert: CVE-2025-27410

CVE Alert: CVE-2025-1450

CVE Alert: CVE-2025-1690

CVE Alert: CVE-2024-13734

CVE Alert: CVE-2025-1282

CVE Alert: CVE-2024-10918

CVE Alert: CVE-2025-1738

CVE Alert: CVE-2024-13402

CVE Alert: CVE-2025-1751

CVE Alert: CVE-2024-13217

CVE Alert: CVE-2025-1739

CVE Alert: CVE-2024-9334

CVE Alert: CVE-2025-1691

CVE Alert: CVE-2025-22280

CVE Alert: CVE-2025-1692

[LYNX] – Ransomware Victim: La Unión

[FLOCKER] – Ransomware Victim: K**d[.]edu

[FOG] – Ransomware Victim: Central McGowan (centralmcgowan[.]com)

[FLOCKER] – Ransomware Victim: S********e[.]com

[FOG] – Ransomware Victim: Klesk Metal Stamping Co (kleskmetalstamping[.]com)

You may have missed