Vulnerabilities

CVE Alert: CVE-2025-1743

February 28, 2025

Vulnerability Summary: CVE-2025-1743 A vulnerability, which was classified as critical, was found in zyx0814 Pichome 2.1.0. This affects an unknown...

CVE Alert: CVE-2025-1745

February 28, 2025

Vulnerability Summary: CVE-2025-1745 A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. This vulnerability affects unknown...

CVE Alert: CVE-2024-13571

February 27, 2025

Vulnerability Summary: CVE-2024-13571 The Post Timeline WordPress plugin before 2.3.10 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-10483

February 27, 2025

Vulnerability Summary: CVE-2024-10483 The Simple:Press Forum WordPress plugin before 6.10.11 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-12878

February 27, 2025

Vulnerability Summary: CVE-2024-12878 The Custom Block Builder WordPress plugin before 3.8.3 does not sanitise and escape a parameter before outputting...

CVE Alert: CVE-2024-13560

February 27, 2025

Vulnerability Summary: CVE-2024-13560 The Subscriptions & Memberships for PayPal plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...

CVE Alert: CVE-2024-13113

February 27, 2025

Vulnerability Summary: CVE-2024-13113 The Countdown Timer for Elementor WordPress plugin before 1.3.7 does not sanitise and escape some parameters when...

CVE Alert: CVE-2024-13678

February 27, 2025

Vulnerability Summary: CVE-2024-13678 The R3W InstaFeed WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-12434

February 27, 2025

Vulnerability Summary: CVE-2024-12434 The SureMembers plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and...

CVE Alert: CVE-2024-13634

February 27, 2025

Vulnerability Summary: CVE-2024-13634 The Post Sync WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-12737

February 27, 2025

Vulnerability Summary: CVE-2024-12737 The WP BASE Booking of Appointments, Services and Events WordPress plugin before 5.0.0 does not sanitise and...

CVE Alert: CVE-2024-13669

February 27, 2025

Vulnerability Summary: CVE-2024-13669 The CalendApp WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back...

CVE Alert: CVE-2024-13630

February 27, 2025

Vulnerability Summary: CVE-2024-13630 The NewsTicker WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back...

CVE Alert: CVE-2024-13629

February 27, 2025

Vulnerability Summary: CVE-2024-13629 The pushBIZ WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back...

CVE Alert: CVE-2024-13632

February 27, 2025

Vulnerability Summary: CVE-2024-13632 The WP Extra Fields WordPress plugin through 1.0.1 does not sanitise and escape a parameter before outputting...

CVE Alert: CVE-2024-13633

February 27, 2025

Vulnerability Summary: CVE-2024-13633 The Simple catalogue WordPress plugin through 1.0.2 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-13631

February 27, 2025

Vulnerability Summary: CVE-2024-13631 The Om Stripe WordPress plugin through 02.00.00 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-13624

February 27, 2025

Vulnerability Summary: CVE-2024-13624 The WPMovieLibrary WordPress plugin through 2.1.4.8 does not sanitise and escape a parameter before outputting it back...

CVE Alert: CVE-2024-47051

February 27, 2025

Vulnerability Summary: CVE-2024-47051 This advisory addresses two critical security vulnerabilities present in Mautic versions before 5.2.3. These vulnerabilities could be...

CVE Alert: CVE-2024-13803

February 27, 2025

Vulnerability Summary: CVE-2024-13803 The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to...

CVE Alert: CVE-2024-39441

February 27, 2025

Vulnerability Summary: CVE-2024-39441 In wifi display, there is a possible missing permission check. This could lead to local escalation of...

CVE Alert: CVE-2024-13628

February 27, 2025

Vulnerability Summary: CVE-2024-13628 The WP Pricing Table WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting...

CVE Alert: CVE-2025-1517

February 27, 2025

Vulnerability Summary: CVE-2025-1517 The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets &...

CVE Alert: CVE-2024-47053

February 27, 2025

Vulnerability Summary: CVE-2024-47053 This advisory addresses an authorization vulnerability in Mautic's HTTP Basic Authentication implementation. This flaw could allow unauthorized...

Vulnerabilities

CVE Alert: CVE-2025-1743

CVE Alert: CVE-2025-1745

CVE Alert: CVE-2024-13571

CVE Alert: CVE-2024-10483

CVE Alert: CVE-2024-12878

CVE Alert: CVE-2024-13560

CVE Alert: CVE-2024-13113

CVE Alert: CVE-2024-13678

CVE Alert: CVE-2024-12434

CVE Alert: CVE-2024-13634

CVE Alert: CVE-2024-12737

CVE Alert: CVE-2024-13669

CVE Alert: CVE-2024-13630

CVE Alert: CVE-2024-13629

CVE Alert: CVE-2024-13632

CVE Alert: CVE-2024-13633

CVE Alert: CVE-2024-13631

CVE Alert: CVE-2024-13624

CVE Alert: CVE-2024-47051

CVE Alert: CVE-2024-13803

CVE Alert: CVE-2024-39441

CVE Alert: CVE-2024-13628

CVE Alert: CVE-2025-1517

CVE Alert: CVE-2024-47053

[LYNX] – Ransomware Victim: La Unión

[FLOCKER] – Ransomware Victim: K**d[.]edu

[FOG] – Ransomware Victim: Central McGowan (centralmcgowan[.]com)

[FLOCKER] – Ransomware Victim: S********e[.]com

[FOG] – Ransomware Victim: Klesk Metal Stamping Co (kleskmetalstamping[.]com)

You may have missed