CVE

CVE Alert: CVE-2024-7419

February 8, 2025

Vulnerability Summary: CVE-2024-7419 The WP ALL Export Pro plugin for WordPress is vulnerable to Remote Code Execution in all versions...

CVE Alert: CVE-2024-9661

February 8, 2025

Vulnerability Summary: CVE-2024-9661 The WP All Import Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...

CVE Alert: CVE-2021-27017

February 8, 2025

Vulnerability Summary: CVE-2021-27017 Utilization of a module presented a security risk by allowing the deserialization of untrusted/user supplied data. This...

CVE Alert: CVE-2025-1105

February 8, 2025

Vulnerability Summary: CVE-2025-1105 A vulnerability was found in SiberianCMS 4.20.6. It has been rated as problematic. Affected by this issue...

CVE Alert: CVE-2025-1106

February 8, 2025

Vulnerability Summary: CVE-2025-1106 A vulnerability classified as critical has been found in CmsEasy 7.7.7.9. This affects the function deletedir_action/restore_action in...

CVE Alert: CVE-2024-7425

February 8, 2025

Vulnerability Summary: CVE-2024-7425 The WP ALL Export Pro plugin for WordPress is vulnerable to unauthorized modification of data that can...

CVE Alert: CVE-2025-1104

February 8, 2025

Vulnerability Summary: CVE-2025-1104 A vulnerability has been found in D-Link DHP-W310AV 1.04 and classified as critical. This vulnerability affects unknown...

CVE Alert: CVE-2025-25183

February 8, 2025

Vulnerability Summary: CVE-2025-25183 vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Maliciously constructed statements can lead...

CVE Alert: CVE-2025-24366

February 8, 2025

Vulnerability Summary: CVE-2025-24366 SFTPGo is an open source, event-driven file transfer solution. SFTPGo supports execution of a defined set of...

CVE Alert: CVE-2024-57279

February 8, 2025

Vulnerability Summary: CVE-2024-57279 A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the LDAP User Manager

CVE Alert: CVE-2024-57278

February 8, 2025

Vulnerability Summary: CVE-2024-57278 A reflected Cross-Site Scripting (XSS) vulnerability exists in /webscan/sqlmap/index.html in QingScan

CVE Alert: CVE-2024-57357

February 8, 2025

Vulnerability Summary: CVE-2024-57357 An issue in TPLINK TL-WPA 8630 TL-WPA8630(US)_V2_2.0.4 Build 20230427 allows a remote attacker to execute arbitrary code...

CVE Alert: CVE-2025-24028

February 8, 2025

Vulnerability Summary: CVE-2025-24028 Joplin is a free, open source note taking and to-do application, which can handle a large number...

CVE Alert: CVE-2024-55630

February 8, 2025

Vulnerability Summary: CVE-2024-55630 Joplin is a free, open source note taking and to-do application, which can handle a large number...

CVE Alert: CVE-2025-25187

February 8, 2025

Vulnerability Summary: CVE-2025-25187 Joplin is a free, open source note taking and to-do application, which can handle a large number...

CVE Alert: CVE-2025-1113

February 8, 2025

Vulnerability Summary: CVE-2025-1113 A vulnerability was found in taisan tarzan-cms up to 1.0.0. It has been rated as critical. This...

CVE Alert: CVE-2025-1114

February 8, 2025

Vulnerability Summary: CVE-2025-1114 A vulnerability classified as problematic has been found in newbee-mall 1.0. Affected is the function save of...

CVE Alert: CVE-2024-57428

February 7, 2025

Vulnerability Summary: CVE-2024-57428 A stored cross-site scripting (XSS) vulnerability in PHPJabbers Cinema Booking System v2.0 exists due to unsanitized input...

CVE Alert: CVE-2024-57429

February 7, 2025

Vulnerability Summary: CVE-2024-57429 A cross-site request forgery (CSRF) vulnerability in the pjActionUpdate function of PHPJabbers Cinema Booking System v2.0 allows...

CVE Alert: CVE-2024-57430

February 7, 2025

Vulnerability Summary: CVE-2024-57430 An SQL injection vulnerability in the pjActionGetUser function of PHPJabbers Cinema Booking System v2.0 allows attackers to...

CVE Alert: CVE-2025-1078

February 7, 2025

Vulnerability Summary: CVE-2025-1078 A vulnerability has been found in AppHouseKitchen AlDente Charge Limiter up to 1.29 on macOS and classified...

CVE Alert: CVE-2024-57427

February 7, 2025

Vulnerability Summary: CVE-2024-57427 PHPJabbers Cinema Booking System v2.0 is vulnerable to reflected cross-site scripting (XSS). Multiple endpoints improperly handle user...

CVE Alert: CVE-2024-57523

February 7, 2025

Vulnerability Summary: CVE-2024-57523 Cross Site Request Forgery (CSRF) in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers...

CVE Alert: CVE-2024-13416

February 7, 2025

Vulnerability Summary: CVE-2024-13416 Using API in the 2N OS device, authorized user can enable logging, which discloses valid authentication tokens...

CVE

CVE Alert: CVE-2024-7419

CVE Alert: CVE-2024-9661

CVE Alert: CVE-2021-27017

CVE Alert: CVE-2025-1105

CVE Alert: CVE-2025-1106

CVE Alert: CVE-2024-7425

CVE Alert: CVE-2025-1104

CVE Alert: CVE-2025-25183

CVE Alert: CVE-2025-24366

CVE Alert: CVE-2024-57279

CVE Alert: CVE-2024-57278

CVE Alert: CVE-2024-57357

CVE Alert: CVE-2025-24028

CVE Alert: CVE-2024-55630

CVE Alert: CVE-2025-25187

CVE Alert: CVE-2025-1113

CVE Alert: CVE-2025-1114

CVE Alert: CVE-2024-57428

CVE Alert: CVE-2024-57429

CVE Alert: CVE-2024-57430

CVE Alert: CVE-2025-1078

CVE Alert: CVE-2024-57427

CVE Alert: CVE-2024-57523

CVE Alert: CVE-2024-13416

US-CERT Vulnerability Summary for the Week of February 3, 2025

CVE Alert: CVE-2024-13440

HackerOne Bug Bounty Disclosure: clickjacking-in-main-domain-hxxps-topechelon-com-genz

HackerOne Bug Bounty Disclosure: improper-cache-handling-allows-access-to-post-logout-pages-victim-of-life

CISA: Ivanti Releases Security Updates for Multiple Products

You may have missed