CVE Alert: CVE-2025-25461
Vulnerability Summary: CVE-2025-25461 A Stored Cross-Site Scripting (XSS) vulnerability exists in SeedDMS 6.0.29. A user or rogue admin with the...
CVE
CVE Alert: CVE-2025-1747
Vulnerability Summary: CVE-2025-1747 HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify...
CVE Alert: CVE-2025-0985
Vulnerability Summary: CVE-2025-0985 IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD stores potentially sensitive information in environment...
CVE Alert: CVE-2025-23405
Vulnerability Summary: CVE-2025-23405 Unauthenticated log effects metrics gathering incident response efforts and potentially exposes risk of injection attacks (ex log...
CVE Alert: CVE-2025-20060
Vulnerability Summary: CVE-2025-20060 An attacker could expose cross-user personal identifiable information (PII) and personal health information transmitted to the Android...
CVE Alert: CVE-2025-24316
Vulnerability Summary: CVE-2025-24316 The Dario Health Internet-based server infrastructure is vulnerable due to exposure of development environment details, which could...
CVE Alert: CVE-2025-24318
Vulnerability Summary: CVE-2025-24318 Cookie policy is observable via built-in browser tools. In the presence of XSS, this could lead to...
CVE Alert: CVE-2024-54175
Vulnerability Summary: CVE-2024-54175 IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow a local user to...
CVE Alert: CVE-2025-25429
Vulnerability Summary: CVE-2025-25429 Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the r_name variable inside the have_same_name...
CVE Alert: CVE-2025-20049
Vulnerability Summary: CVE-2025-20049 The Dario Health portal service application is vulnerable to XSS, which could allow an attacker to obtain...
CVE Alert: CVE-2025-27408
Vulnerability Summary: CVE-2025-27408 Manifest offers users a one-file micro back end. Prior to version 4.9.1, Manifest employs a weak password...
CVE Alert: CVE-2025-24843
Vulnerability Summary: CVE-2025-24843 Insecure file retrieval process that facilitates potential for file manipulation to affect product stability and confidentiality, integrity,...
CVE Alert: CVE-2025-24849
Vulnerability Summary: CVE-2025-24849 Lack of encryption in transit for cloud infrastructure facilitating potential for sensitive data manipulation or exposure. Affected...
CVE Alert: CVE-2025-0159
Vulnerability Summary: CVE-2025-0159 IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0...
CVE Alert: CVE-2025-26466
Vulnerability Summary: CVE-2025-26466 A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a...
CVE Alert: CVE-2025-0160
Vulnerability Summary: CVE-2025-0160 IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0...
CVE Alert: CVE-2025-27413
Vulnerability Summary: CVE-2025-27413 PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality allows an...
CVE Alert: CVE-2025-27410
Vulnerability Summary: CVE-2025-27410 PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality is vulnerable...
CVE Alert: CVE-2024-10918
Vulnerability Summary: CVE-2024-10918 Stack-based Buffer Overflow vulnerability in libmodbus v3.1.10 allows to overflow the buffer allocated for the Modbus response...
CVE Alert: CVE-2025-1450
Vulnerability Summary: CVE-2025-1450 The Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button, WhatsApp...
CVE Alert: CVE-2025-1690
Vulnerability Summary: CVE-2025-1690 The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode...
CVE Alert: CVE-2024-13734
Vulnerability Summary: CVE-2024-13734 The Card Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...
CVE Alert: CVE-2025-1282
Vulnerability Summary: CVE-2025-1282 The Car Dealer Automotive WordPress Theme – Responsive theme for WordPress is vulnerable to arbitrary file deletion...
CVE Alert: CVE-2025-1738
Vulnerability Summary: CVE-2025-1738 A Password Transmitted over Query String vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity,...
