CVE-2025-4186 – SecGate 3600 Wangshen Path Traversal Vulnerability

May 2, 2025

CVE ID : CVE-2025-4186

Published : May 2, 2025, 12:15 a.m. | 3 hours, 12 minutes ago

Description : A vulnerability, which was classified as critical, was found in Wangshen SecGate 3600 2024. Affected is an unknown function of the file /?g=route_ispinfo_export_save. The manipulation of the argument file_name leads to path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4191 – PHPGurukul Employee Record Management System SQL Injection

Next Article CVE-2025-4184 – PCMan FTP Server Buffer Overflow Vulnerability

Highlights

CVE-2025-6976 – WordPress Events Manager – Stored Cross-Site Scripting Vulnerability

July 10, 2025

CVE ID : CVE-2025-6976

Published : July 9, 2025, 11:15 p.m. | 4 hours, 49 minutes ago

Description : The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s shortcodes in all versions up to, and including, 7.0.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

5 ways business leaders can transform workplace culture – and it starts by listening

My 4 favorite image editing apps on Linux – and two are free Photoshop alternatives

How Google’s Genie 3 could change AI video – and let you build your own interactive worlds

How you’re charging your tablet is slowly killing it – 3 methods to avoid (and the right way)

Establishing Consistent Data Foundations with Laravel’s Database Population System

Establishing Consistent Data Foundations with Laravel’s Database Population System

Generate Postman Collections from Laravel Routes

This Week in Laravel: Free Laravel Idea, Laracon News, and More

Lenovo Legion Go 2 vs Legion Go — How Do These Gaming Handhelds Compare Based on Rumored Specs?

Lenovo Legion Go 2 vs Legion Go — How Do These Gaming Handhelds Compare Based on Rumored Specs?

9 Default Settings in Windows 11 You Didn’t Know Could Affect Performance and Privacy

DICE Responds to Battlefield 6 Community: Key Updates on Map Flow and Class Mechanics

CVE-2025-4186 – SecGate 3600 Wangshen Path Traversal Vulnerability

Black Hat USA 2025: Does successful cybersecurity today increase cyber-risk tomorrow?

Black Hat USA 2025: Policy compliance and the myth of the silver bullet

CVE-2024-41797 – Siemens SCALANCE and RUGGEDCOM Authentication Bypass Vulnerability

How AI is Transforming the World

CVE-2025-51052 – Vedo Suite Path Traversal Vulnerability

Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month

CVE-2025-6976 – WordPress Events Manager – Stored Cross-Site Scripting Vulnerability

Shift-Right Testing Isn’t Optional Here’s How AI and Real Users Are Making It Work

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

DistroWatch Weekly, Issue 1125

CVE-2025-4186 – SecGate 3600 Wangshen Path Traversal Vulnerability

Related Posts