CVE

CVE Alert: CVE-2025-23201

January 17, 2025

Vulnerability Summary: CVE-2025-23201 librenms is a community-based GPL-licensed network monitoring system. Affected versions are subject to Cross-site Scripting (XSS) on...

CVE Alert: CVE-2025-22780

January 16, 2025

Vulnerability Summary: CVE-2025-22780 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alexey Yuzhakov wp-pano allows Stored...

CVE Alert: CVE-2025-22782

January 16, 2025

Vulnerability Summary: CVE-2025-22782 Unrestricted Upload of File with Dangerous Type vulnerability in Web Ready Now WR Price List Manager For...

CVE Alert: CVE-2025-22779

January 16, 2025

Vulnerability Summary: CVE-2025-22779 Missing Authorization vulnerability in Ugur CELIK WP News Sliders allows Exploiting Incorrectly Configured Access Control Security Levels.This...

CVE Alert: CVE-2025-22761

January 16, 2025

Vulnerability Summary: CVE-2025-22761 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Olaf Lederer Ajax Contact Form...

CVE Alert: CVE-2025-22781

January 16, 2025

Vulnerability Summary: CVE-2025-22781 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nativery Developer Nativery allows DOM-Based...

CVE Alert: CVE-2025-22776

January 16, 2025

Vulnerability Summary: CVE-2025-22776 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jay Carter WP Bulletin Board...

CVE Alert: CVE-2025-22778

January 16, 2025

Vulnerability Summary: CVE-2025-22778 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lijit Networks Inc. and Crowd...

CVE Alert: CVE-2025-22788

January 16, 2025

Vulnerability Summary: CVE-2025-22788 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Codexpert, Inc CoDesigner WooCommerce Builder...

CVE Alert: CVE-2025-22773

January 16, 2025

Vulnerability Summary: CVE-2025-22773 Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in WPChill Htaccess File Editor allows Exploiting...

CVE Alert: CVE-2025-22793

January 16, 2025

Vulnerability Summary: CVE-2025-22793 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bold Bold pagos en linea...

CVE Alert: CVE-2025-22785

January 16, 2025

Vulnerability Summary: CVE-2025-22785 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ComMotion Course Booking...

CVE Alert: CVE-2025-22786

January 16, 2025

Vulnerability Summary: CVE-2025-22786 Path Traversal vulnerability in ElementInvader ElementInvader Addons for Elementor allows PHP Local File Inclusion.This issue affects ElementInvader...

CVE Alert: CVE-2025-22787

January 16, 2025

Vulnerability Summary: CVE-2025-22787 Missing Authorization vulnerability in bPlugins LLC Button Block allows Accessing Functionality Not Properly Constrained by ACLs.This issue...

CVE Alert: CVE-2025-22784

January 16, 2025

Vulnerability Summary: CVE-2025-22784 Cross-Site Request Forgery (CSRF) vulnerability in Johan Ström Background Control allows Path Traversal.This issue affects Background Control:...

CVE Alert: CVE-2025-22799

January 16, 2025

Vulnerability Summary: CVE-2025-22799 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Vertim Coders Neon...

CVE Alert: CVE-2025-22797

January 16, 2025

Vulnerability Summary: CVE-2025-22797 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Oğulcan Özügenç Gallery and Lightbox...

CVE Alert: CVE-2025-22795

January 16, 2025

Vulnerability Summary: CVE-2025-22795 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Thorsten Krug Multilang Contact Form...

CVE Alert: CVE-2025-21083

January 16, 2025

Vulnerability Summary: CVE-2025-21083 Mattermost Mobile Apps versions

CVE Alert: CVE-2025-22798

January 16, 2025

Vulnerability Summary: CVE-2025-22798 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CHR Designer Responsive jQuery Slider...

CVE Alert: CVE-2025-20036

January 16, 2025

Vulnerability Summary: CVE-2025-20036 Mattermost Mobile Apps versions

CVE Alert: CVE-2025-23040

January 16, 2025

Vulnerability Summary: CVE-2025-23040 GitHub Desktop is an open-source Electron-based GitHub app designed for git development. An attacker convincing a user...

CVE Alert: CVE-2025-20086

January 16, 2025

Vulnerability Summary: CVE-2025-20086 Mattermost versions 10.2.x

CVE Alert: CVE-2025-0480

January 16, 2025

Vulnerability Summary: CVE-2025-0480 A vulnerability classified as problematic has been found in wuzhicms 4.1.0. This affects the function test of...

CVE

CVE Alert: CVE-2025-23201

CVE Alert: CVE-2025-22780

CVE Alert: CVE-2025-22782

CVE Alert: CVE-2025-22779

CVE Alert: CVE-2025-22761

CVE Alert: CVE-2025-22781

CVE Alert: CVE-2025-22776

CVE Alert: CVE-2025-22778

CVE Alert: CVE-2025-22788

CVE Alert: CVE-2025-22773

CVE Alert: CVE-2025-22793

CVE Alert: CVE-2025-22785

CVE Alert: CVE-2025-22786

CVE Alert: CVE-2025-22787

CVE Alert: CVE-2025-22784

CVE Alert: CVE-2025-22799

CVE Alert: CVE-2025-22797

CVE Alert: CVE-2025-22795

CVE Alert: CVE-2025-21083

CVE Alert: CVE-2025-22798

CVE Alert: CVE-2025-20036

CVE Alert: CVE-2025-23040

CVE Alert: CVE-2025-20086

CVE Alert: CVE-2025-0480

[FOG] – Ransomware Victim: Hess (hess-gmbh[.]de)

[AKIRA] – Ransomware Victim: Vicky Foods

Cobalt Strike Beacon Detected – 47[.]83[.]218[.]121:81

Cobalt Strike Beacon Detected – 1[.]94[.]140[.]47:1234

Cobalt Strike Beacon Detected – 115[.]120[.]210[.]236:7777

You may have missed