CVE Alert: CVE-2025-31479
Vulnerability Summary: CVE-2025-31479 canonical/get-workflow-version-action is a GitHub composite action to get commit SHA that GitHub Actions reusable workflow was called...
threatintel
CVE Alert: CVE-2025-3120
Vulnerability Summary: CVE-2025-3120 A vulnerability was found in SourceCodester Apartment Visitors Management System 1.0. It has been rated as critical....
Cobalt Strike Beacon Detected – 47[.]108[.]39[.]159:4444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]111[.]117[.]176:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-30852
Vulnerability Summary: CVE-2025-30852 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in emotionalonlinestorytelling Oracle Cards Lite allows...
CVE Alert: CVE-2025-30841
Vulnerability Summary: CVE-2025-30841 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in adamskaat Countdown & Clock...
CVE Alert: CVE-2025-30853
Vulnerability Summary: CVE-2025-30853 Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images allows Exploiting Incorrectly Configured Access Control Security Levels. This...
CVE Alert: CVE-2025-30892
Vulnerability Summary: CVE-2025-30892 Deserialization of Untrusted Data vulnerability in magepeopleteam WpTravelly allows Object Injection. This issue affects WpTravelly: from n/a...
CVE Alert: CVE-2025-30844
Vulnerability Summary: CVE-2025-30844 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bob Watu Quiz allows Reflected...
CVE Alert: CVE-2025-31081
Vulnerability Summary: CVE-2025-31081 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ShortPixel Enable Media Replace allows...
CVE Alert: CVE-2025-31085
Vulnerability Summary: CVE-2025-31085 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michel - xiligroup dev xili-language...
CVE Alert: CVE-2025-31082
Vulnerability Summary: CVE-2025-31082 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in InfornWeb...
CVE Alert: CVE-2025-30825
Vulnerability Summary: CVE-2025-30825 Missing Authorization vulnerability in WPClever WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce allows Privilege...
CVE Alert: CVE-2025-31080
Vulnerability Summary: CVE-2025-31080 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Software LLC HTML Forms...
CVE Alert: CVE-2025-31446
Vulnerability Summary: CVE-2025-31446 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jiangmiao WP Cleaner allows Reflected...
CVE Alert: CVE-2025-30913
Vulnerability Summary: CVE-2025-30913 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in podpirate Access Areas allows Reflected...
CVE Alert: CVE-2025-31078
Vulnerability Summary: CVE-2025-31078 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in enituretechnology Small Package Quotes –...
CVE Alert: CVE-2025-30906
Vulnerability Summary: CVE-2025-30906 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Coffee Code Tech Plugin Oficial...
CVE Alert: CVE-2025-31445
Vulnerability Summary: CVE-2025-31445 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Pages Order allows Reflected...
CVE Alert: CVE-2025-31441
Vulnerability Summary: CVE-2025-31441 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in S WordPress Galleria allows Reflected...
CVE Alert: CVE-2025-31431
Vulnerability Summary: CVE-2025-31431 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Bookmarks allows Reflected...
CVE Alert: CVE-2025-31097
Vulnerability Summary: CVE-2025-31097 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ho3einie...
CVE Alert: CVE-2025-31089
Vulnerability Summary: CVE-2025-31089 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Fahad Mahmood Order...
CVE Alert: CVE-2025-31086
Vulnerability Summary: CVE-2025-31086 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nick McReynolds Product Table by...
