CVE-2025-46690 – Ververica Platform SQL Connector Unauthorized Access Vulnerability

April 27, 2025

CVE ID : CVE-2025-46690

Published : April 27, 2025, 10:15 p.m. | 49 minutes ago

Description : Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors via a direct namespaces/default/formats request.

Severity: 5.0 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleBSD Release: OpenBSD 7.7

Next Article CVE-2025-3988 – TOTOLINK N150RT Buffer Overflow Vulnerability

Highlights

CVE-2025-5325 – Zhilink ADP Application Developer Platform Template Engine Code Injection Vulnerability

May 29, 2025

CVE ID : CVE-2025-5325

Published : May 29, 2025, 8:15 p.m. | 1 hour, 18 minutes ago

Description : A vulnerability has been found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /adpweb/a/ica/api/service/rfa/testService. The manipulation leads to improper neutralization of special elements used in a template engine. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-49181 – Apache Log Service Unauthenticated API Endpoint Information Disclosure and Configuration Modification Vulnerability

June 12, 2025

Laravel’s AsHtmlString Cast for Elegant HTML Attribute Management

April 24, 2025

CVE-2025-3813 – WordPress Royal Elementor Stored Cross-Site Scripting (XSS)

May 31, 2025

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

6 registry tweaks every tech-savvy user must apply on Windows 11

Here’s why network infrastructure is vital to maximizing your company’s AI adoption

The AI video tool behind the most viral social trends right now

Got a new password manager? How to clean up the password mess you left in the cloud

Right Invoicing App for iPhone: InvoiceTemple

Right Invoicing App for iPhone: InvoiceTemple

Tunnel Run game in 170 lines of pure JS

Integrating Drupal with Salesforce SSO via SAML and Dynamic User Sync

6 registry tweaks every tech-savvy user must apply on Windows 11

6 registry tweaks every tech-savvy user must apply on Windows 11

Is Chrome Copying Edge? ‘Omnibox Tools’ Bring Edge-Style Address Bar Shortcuts

Windows 11 24H2’s new Start Menu auto-changes size based on screen resolution

CVE-2025-46690 – Ververica Platform SQL Connector Unauthorized Access Vulnerability

CVE-2025-4187 – UserPro – Community and User Profile WordPress Plugin Directory Traversal Vulnerability

CVE-2025-4592 – WordPress Free AI Image Generator CSRF Vulnerability

CVE-2025-3200: Wiesemann & Theis Com-Server Devices Exposed by Deprecated TLS Protocols

HCL Commerce V9.1 – Coexistence of the Headless Next.js Ruby & Aurora Storefronts

Self-Serve Advertising Platform Architecture: A Developer’s Roadmap

CVE-2025-46538 – Webplanetsoft Inline Text Popup Cross-site Scripting Vulnerability

CVE-2025-5325 – Zhilink ADP Application Developer Platform Template Engine Code Injection Vulnerability

CVE-2025-49181 – Apache Log Service Unauthenticated API Endpoint Information Disclosure and Configuration Modification Vulnerability

Laravel’s AsHtmlString Cast for Elegant HTML Attribute Management

CVE-2025-3813 – WordPress Royal Elementor Stored Cross-Site Scripting (XSS)

CVE-2025-46690 – Ververica Platform SQL Connector Unauthorized Access Vulnerability

Related Posts