CVE

CVE Alert: CVE-2025-0362

April 11, 2025

Vulnerability Summary: CVE-2025-0362 An issue has been discovered in GitLab CE/EE affecting all versions from 7.7 before 17.8.7, 17.9 before...

CVE Alert: CVE-2025-32391

April 11, 2025

Vulnerability Summary: CVE-2025-32391 HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to 1.10.3, a malicious SVG file...

CVE Alert: CVE-2025-32383

April 11, 2025

Vulnerability Summary: CVE-2025-32383 MaxKB (Max Knowledge Base) is an open source knowledge base question-answering system based on a large language...

CVE Alert: CVE-2025-32743

April 11, 2025

Vulnerability Summary: CVE-2025-32743 In ConnMan through 1.44, the lookup string in ns_resolv in dnsproxy.c can be NULL or an empty...

CVE Alert: CVE-2025-29150

April 11, 2025

Vulnerability Summary: CVE-2025-29150 BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request. Affected Endpoints:...

CVE Alert: CVE-2025-24866

April 11, 2025

Vulnerability Summary: CVE-2025-24866 Mattermost versions 9.11.x

CVE Alert: CVE-2025-23010

April 11, 2025

Vulnerability Summary: CVE-2025-23010 An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64...

CVE Alert: CVE-2025-32027

April 11, 2025

Vulnerability Summary: CVE-2025-32027 Yii is an open source PHP web framework. Prior to 1.1.31, yiisoft/yii is vulnerable to Reflected XSS...

CVE Alert: CVE-2025-23009

April 11, 2025

Vulnerability Summary: CVE-2025-23009 A local privilege escalation vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an...

CVE Alert: CVE-2025-22232

April 11, 2025

Vulnerability Summary: CVE-2025-22232 Spring Cloud Config Server may not use Vault token sent by clients using a X-CONFIG-TOKEN header when...

CVE Alert: CVE-2025-23008

April 11, 2025

Vulnerability Summary: CVE-2025-23008 An improper privilege management vulnerability in the SonicWall NetExtender Windows (32 and 64 bit) client allows a...

CVE Alert: CVE-2025-29916

April 11, 2025

Vulnerability Summary: CVE-2025-29916 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Datasets declared...

CVE Alert: CVE-2025-29918

April 11, 2025

Vulnerability Summary: CVE-2025-29918 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE...

CVE Alert: CVE-2025-29917

April 11, 2025

Vulnerability Summary: CVE-2025-29917 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The bytes...

CVE Alert: CVE-2025-29915

April 11, 2025

Vulnerability Summary: CVE-2025-29915 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AF_PACKET...

CVE Alert: CVE-2025-32694

April 11, 2025

Vulnerability Summary: CVE-2025-32694 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Rustaurius Ultimate WP Mail allows Phishing. This issue...

CVE Alert: CVE-2025-32692

April 11, 2025

Vulnerability Summary: CVE-2025-32692 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP...

CVE Alert: CVE-2025-32691

April 11, 2025

Vulnerability Summary: CVE-2025-32691 Server-Side Request Forgery (SSRF) vulnerability in Angelo Mandato PowerPress Podcasting allows Server Side Request Forgery. This issue...

CVE Alert: CVE-2025-32695

April 11, 2025

Vulnerability Summary: CVE-2025-32695 Incorrect Privilege Assignment vulnerability in Mestres do WP Checkout Mestres WP allows Privilege Escalation. This issue affects...

CVE Alert: CVE-2025-32693

April 11, 2025

Vulnerability Summary: CVE-2025-32693 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WPWebinarSystem WebinarPress allows Phishing. This issue affects WebinarPress:...

CVE Alert: CVE-2025-2630

April 11, 2025

Vulnerability Summary: CVE-2025-2630 There is a DLL hijacking vulnerability due to an uncontrolled search path that exists in NI LabVIEW....

CVE Alert: CVE-2025-3131

April 11, 2025

Vulnerability Summary: CVE-2025-3131 Cross-Site Request Forgery (CSRF) vulnerability in Drupal ECA: Event - Condition - Action allows Cross Site Request...

CVE Alert: CVE-2025-3475

April 11, 2025

Vulnerability Summary: CVE-2025-3475 Allocation of Resources Without Limits or Throttling, Incorrect Authorization vulnerability in Drupal WEB-T allows Excessive Allocation, Content...

CVE Alert: CVE-2025-32690

April 11, 2025

Vulnerability Summary: CVE-2025-32690 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Angelo Mandato PowerPress Podcasting allows...

CVE

CVE Alert: CVE-2025-0362

CVE Alert: CVE-2025-32391

CVE Alert: CVE-2025-32383

CVE Alert: CVE-2025-32743

CVE Alert: CVE-2025-29150

CVE Alert: CVE-2025-24866

CVE Alert: CVE-2025-23010

CVE Alert: CVE-2025-32027

CVE Alert: CVE-2025-23009

CVE Alert: CVE-2025-22232

CVE Alert: CVE-2025-23008

CVE Alert: CVE-2025-29916

CVE Alert: CVE-2025-29918

CVE Alert: CVE-2025-29917

CVE Alert: CVE-2025-29915

CVE Alert: CVE-2025-32694

CVE Alert: CVE-2025-32692

CVE Alert: CVE-2025-32691

CVE Alert: CVE-2025-32695

CVE Alert: CVE-2025-32693

CVE Alert: CVE-2025-2630

CVE Alert: CVE-2025-3131

CVE Alert: CVE-2025-3475

CVE Alert: CVE-2025-32690

Cobalt Strike Beacon Detected – 123[.]249[.]34[.]118:80

Cobalt Strike Beacon Detected – 23[.]95[.]230[.]147:443

Cobalt Strike Beacon Detected – 47[.]92[.]108[.]229:9999

CVE Alert: CVE-2025-27929

CVE Alert: CVE-2025-30982

You may have missed