CVE Alert: CVE-2025-6485
Vulnerability Summary: CVE-2025-6485 A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been classified as critical. This affects the...
CVE
CVE Alert: CVE-2025-6487
Vulnerability Summary: CVE-2025-6487 A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been rated as critical. This issue affects...
CVE Alert: CVE-2025-6482
Vulnerability Summary: CVE-2025-6482 A vulnerability, which was classified as critical, was found in code-projects Simple Pizza Ordering System 1.0. Affected...
CVE Alert: CVE-2025-6494
Vulnerability Summary: CVE-2025-6494 A vulnerability was found in sparklemotion nokogiri up to 1.18.7. It has been classified as problematic. This...
CVE Alert: CVE-2025-6489
Vulnerability Summary: CVE-2025-6489 A vulnerability has been found in itsourcecode Agri-Trading Online Shopping System 1.0 and classified as critical. This...
CVE Alert: CVE-2025-6492
Vulnerability Summary: CVE-2025-6492 A vulnerability has been found in MarkText up to 0.17.1 and classified as problematic. Affected by this...
CVE Alert: CVE-2025-6493
Vulnerability Summary: CVE-2025-6493 A vulnerability was found in CodeMirror up to 5.17.0 and classified as problematic. Affected by this issue...
CVE Alert: CVE-2025-6490
Vulnerability Summary: CVE-2025-6490 A vulnerability was found in sparklemotion nokogiri up to 1.18.7 and classified as problematic. This issue affects...
CVE Alert: CVE-2024-38822
Vulnerability Summary: CVE-2024-38822 Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another...
CVE Alert: CVE-2025-5815
Vulnerability Summary: CVE-2025-5815 The Traffic Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing...
CVE Alert: CVE-2025-22236
Vulnerability Summary: CVE-2025-22236 Minion event bus authorization bypass. An attacker with access to a minion key can craft a message...
CVE Alert: CVE-2025-5282
Vulnerability Summary: CVE-2025-5282 The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is vulnerable...
CVE Alert: CVE-2025-5938
Vulnerability Summary: CVE-2025-5938 The Digital Marketing and Agency Templates Addons for Elementor plugin for WordPress is vulnerable to Cross-Site Request...
CVE Alert: CVE-2025-22242
Vulnerability Summary: CVE-2025-22242 Worker process denial of service through file read operation. .A vulnerability exists in the Master's “pub_ret” method...
CVE Alert: CVE-2024-38825
Vulnerability Summary: CVE-2024-38825 The salt.auth.pki module does not properly authenticate callers. The "password" field contains a public certificate which is...
CVE Alert: CVE-2025-22240
Vulnerability Summary: CVE-2025-22240 Arbitrary directory creation or file deletion. In the find_file method of the GitFS class, a path is...
CVE Alert: CVE-2024-38823
Vulnerability Summary: CVE-2024-38823 Salt's request server is vulnerable to replay attacks when not using a TLS encrypted transport. Affected Endpoints:...
CVE Alert: CVE-2025-22241
Vulnerability Summary: CVE-2025-22241 File contents overwrite the VirtKey class is called when “on-demand pillar” data is requested and uses un-validated...
CVE Alert: CVE-2025-22237
Vulnerability Summary: CVE-2025-22237 An attacker with access to a minion key can exploit the 'on demand' pillar functionality with a...
CVE Alert: CVE-2025-22238
Vulnerability Summary: CVE-2025-22238 Directory traversal attack in minion file cache creation. The master's default cache is vulnerable to a directory...
CVE Alert: CVE-2025-5923
Vulnerability Summary: CVE-2025-5923 The Game Review Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘className’ parameter...
CVE Alert: CVE-2025-22239
Vulnerability Summary: CVE-2025-22239 Arbitrary event injection on Salt Master. The master's "_minion_event" method can be used by and authorized minion...
CVE Alert: CVE-2024-38824
Vulnerability Summary: CVE-2024-38824 Directory traversal vulnerability in recv_file method allows arbitrary files to be written to the master cache directory....
CVE Alert: CVE-2025-6012
Vulnerability Summary: CVE-2025-6012 The Auto Attachments plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all...
