CVE Alert: CVE-2025-21380
Vulnerability Summary: CVE-2025-21380 Improper access control in Azure SaaS Resources allows an authorized attacker to disclose information over a network....
Vulnerabilities
CVE Alert: CVE-2024-56377
Vulnerability Summary: CVE-2024-56377 A stored cross-site scripting (XSS) vulnerability in survey titles of REDCap 14.9.6 allows authenticated users to inject...
CVE Alert: CVE-2024-55494
Vulnerability Summary: CVE-2024-55494 A cross-site scripting (XSS) vulnerability in Opencode Mobile Collect Call v5.4.7 allows attackers to execute arbitrary web...
CVE Alert: CVE-2024-13185
Vulnerability Summary: CVE-2024-13185 The MinigameCenter module has insufficient restrictions on loading URLs, which may lead to some information leakage. Affected...
CVE Alert: CVE-2024-54676
Vulnerability Summary: CVE-2024-54676 Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.1.0 before 8.0.0 Description: Default clustering instructions...
CVE Alert: CVE-2024-9939
Vulnerability Summary: CVE-2024-9939 The WordPress File Upload plugin for WordPress is vulnerable to Path Traversal in all versions up to,...
CVE Alert: CVE-2024-13186
Vulnerability Summary: CVE-2024-13186 The MinigameCenter module has insufficient restrictions on loading URLs, which may lead to some information leakage. Affected...
CVE Alert: CVE-2024-45033
Vulnerability Summary: CVE-2024-45033 Insufficient Session Expiration vulnerability in Apache Airflow Fab Provider. This issue affects Apache Airflow Fab Provider: before...
CVE Alert: CVE-2024-11830
Vulnerability Summary: CVE-2024-11830 The PDF Flipbook, 3D Flipbook—DearFlip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via outline settings...
CVE Alert: CVE-2024-12712
Vulnerability Summary: CVE-2024-12712 The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to unauthorized modification of data due...
CVE Alert: CVE-2024-12337
Vulnerability Summary: CVE-2024-12337 The Shipping via Planzer for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the...
CVE Alert: CVE-2024-12853
Vulnerability Summary: CVE-2024-12853 The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...
CVE Alert: CVE-2024-12854
Vulnerability Summary: CVE-2024-12854 The Garden Gnome Package plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...
CVE Alert: CVE-2024-51737
Vulnerability Summary: CVE-2024-51737 RediSearch is a Redis module that provides querying, secondary indexing, and full-text search for Redis. An authenticated...
CVE Alert: CVE-2024-11423
Vulnerability Summary: CVE-2024-11423 The Ultimate Gift Cards for WooCommerce – Create WooCommerce Gift Cards, Gift Vouchers, Redeem & Manage Digital...
CVE Alert: CVE-2024-51480
Vulnerability Summary: CVE-2024-51480 RedisTimeSeries is a time-series database (TSDB) module for Redis, by Redis. Executing one of these commands TS.QUERYINDEX,...
CVE Alert: CVE-2024-55656
Vulnerability Summary: CVE-2024-55656 RedisBloom adds a set of probabilistic data structures to Redis. There is an integer overflow vulnerability in...
CVE Alert: CVE-2025-21102
Vulnerability Summary: CVE-2025-21102 Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. A high privileged...
CVE Alert: CVE-2024-55459
Vulnerability Summary: CVE-2024-55459 An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading...
CVE Alert: CVE-2025-20123
Vulnerability Summary: CVE-2025-20123 Multiple vulnerabilities in the web-based management interface of Cisco Crosswork Network Controller could allow an authenticated, remote...
CVE Alert: CVE-2024-55517
Vulnerability Summary: CVE-2024-55517 An issue was discovered in the Interllect Core Search in Polaris FT Intellect Core Banking 9.5. Input...
CVE Alert: CVE-2025-22137
Vulnerability Summary: CVE-2025-22137 Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an...
CVE Alert: CVE-2025-20126
Vulnerability Summary: CVE-2025-20126 A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could allow...
CVE Alert: CVE-2025-20167
Vulnerability Summary: CVE-2025-20167 A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an...
