CVE-2025-39588 – Ultimate Store Kit Elementor Addons Untrusted Data Deserialization Object Injection

April 20, 2025

CVE ID : CVE-2025-39588

Published : April 17, 2025, 4:15 p.m. | 3 days, 10 hours ago

Description : Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons allows Object Injection. This issue affects Ultimate Store Kit Elementor Addons: from n/a through 2.4.0.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39595 – Quentn WP SQL Injection

Next Article Cellebrite Android Zero-Day Exploit PoC Released: CVE-2024-53104

Highlights

CVE-2025-6580 – SourceCodester Best Salon Management System SQL Injection Vulnerability

June 24, 2025

CVE ID : CVE-2025-6580

Published : June 24, 2025, 10:15 p.m. | 4 hours, 40 minutes ago

Description : A vulnerability classified as critical has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the component Login. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Building smarter interactions with MCP elicitation: From clunky tool calls to seamless user experiences

From Zero to MCP: Simplifying AI Integrations with xmcp

Distribution Release: Linux Mint 22.2

Coded Smorgasbord: Basically, a Smorgasbord

Drupal 11’s AI Features: What They Actually Mean for Your Team

Drupal 11’s AI Features: What They Actually Mean for Your Team

Why Data Governance Matters More Than Ever in 2025?

Perficient Included in the IDC Market Glance for Digital Business Professional Services, 3Q25

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

Distribution Release: Linux Mint 22.2

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

CVE-2025-39588 – Ultimate Store Kit Elementor Addons Untrusted Data Deserialization Object Injection

Critical Linux UDisks Daemon Vulnerability (CVE-2025-8067) Exposes Privileged Data to Local Attackers

Google Slapped with $381 Million Fine in France Over Gmail Ads, Cookie Consent Missteps

Fuel your creativity with new generative media models and tools

CVE-2025-1419 – Konsola Proget Stored Cross-Site Scripting Vulnerability

Chinese-Linked Hackers Targeted 70+ Global Organizations, SentinelLABS

Leadership lessons from growing 3x in 1 year

CVE-2025-6580 – SourceCodester Best Salon Management System SQL Injection Vulnerability

CVE-2025-22430 – Apache Access Control Information Disclosure Vulnerability

Could WWDC be Apple’s AI turning point? Here’s what analysts are predicting

Shadow AI Discovery: A Critical Part of Enterprise AI Governance

CVE-2025-39588 – Ultimate Store Kit Elementor Addons Untrusted Data Deserialization Object Injection

Related Posts