CVE Alert: CVE-2025-0573
Vulnerability Summary: CVE-2025-0573 Sante PACS Server DCM File Parsing Directory Traversal Arbitrary File Write Vulnerability. This vulnerability allows remote attackers...
CVE
CVE Alert: CVE-2025-24885
Vulnerability Summary: CVE-2025-24885 pwn.college is an education platform to learn about, and practice, core cybersecurity concepts in a hands-on fashion....
CVE Alert: CVE-2024-12749
Vulnerability Summary: CVE-2024-12749 The Competition Form WordPress plugin through 2.0 does not sanitise and escape a parameter before outputting it...
CVE Alert: CVE-2024-13696
Vulnerability Summary: CVE-2024-13696 The Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress is vulnerable...
CVE Alert: CVE-2024-7695
Vulnerability Summary: CVE-2024-7695 Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation,...
CVE Alert: CVE-2021-3978
Vulnerability Summary: CVE-2021-3978 When copying files with rsync, octorpki uses the "-a" flag 0, which forces rsync to copy binaries...
CVE Alert: CVE-2024-57965
Vulnerability Summary: CVE-2024-57965 In axios before 1.7.8, lib/helpers/isURLSameOrigin.js does not use a URL object when determining an origin, and has...
CVE Alert: CVE-2025-0762
Vulnerability Summary: CVE-2025-0762 Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a remote attacker to potentially...
CVE Alert: CVE-2024-13561
Vulnerability Summary: CVE-2024-13561 The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...
CVE Alert: CVE-2024-41140
Vulnerability Summary: CVE-2024-41140 Zohocorp ManageEngine Applications Manager versions 174000 and prior are vulnerable to the incorrect authorization in the update...
CVE Alert: CVE-2025-0617
Vulnerability Summary: CVE-2025-0617 An attacker with access to an HX 10.0.0 and previous versions, may send specially-crafted data to the...
CVE Alert: CVE-2025-0353
Vulnerability Summary: CVE-2025-0353 The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is...
CVE Alert: CVE-2024-57436
Vulnerability Summary: CVE-2024-57436 RuoYi v4.8.0 was discovered to allow unauthorized attackers to view the session ID of the admin in...
CVE Alert: CVE-2023-37413
Vulnerability Summary: CVE-2023-37413 IBM Aspera Faspex 5.0.0 through 5.0.10 could disclose sensitive username information due to an observable response discrepancy....
CVE Alert: CVE-2024-57439
Vulnerability Summary: CVE-2024-57439 An issue in the reset password interface of ruoyi v4.8.0 allows attackers with Admin privileges to cause...
CVE Alert: CVE-2025-24792
Vulnerability Summary: CVE-2025-24792 Snowflake PHP PDO Driver is a driver that uses the PHP Data Objects (PDO) extension to connect...
CVE Alert: CVE-2025-24374
Vulnerability Summary: CVE-2025-24374 Twig is a template language for PHP. When using the ?? operator, output escaping was missing for...
CVE Alert: CVE-2025-24791
Vulnerability Summary: CVE-2025-24791 snowflake-connector-nodejs is a NodeJS driver for Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake NodeJS...
CVE Alert: CVE-2023-37412
Vulnerability Summary: CVE-2023-37412 IBM Aspera Faspex 5.0.0 through 5.0.10 could allow a privileged user to make system changes without proper...
CVE Alert: CVE-2023-37398
Vulnerability Summary: CVE-2023-37398 IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords by default,...
CVE Alert: CVE-2023-35907
Vulnerability Summary: CVE-2023-35907 IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords by default,...
CVE Alert: CVE-2025-24527
Vulnerability Summary: CVE-2025-24527 An issue was discovered in Akamai Enterprise Application Access (EAA) before 2025-01-17. If an admin knows another...
CVE Alert: CVE-2025-24789
Vulnerability Summary: CVE-2025-24789 Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect...
CVE Alert: CVE-2024-48849
Vulnerability Summary: CVE-2024-48849 Missing Origin Validation in WebSockets vulnerability in FLXEON. Session management was not sufficient to prevent unauthorized HTTPS...
