“We’re witnessing an urgent and active threat” — Microsoft SharePoint “ToolShell” vulnerability is being attacked globally

July 22, 2025

Two zero-day SharePoint vulnerabilities are under active attack. Microsoft released emergency patches, but some SharePoint versions remain unpatched.

Source: Read MoreÂ /

Previous ArticleCopilot+ PCs powered by Intel and AMD still trail behind Snapdragon counterparts — even with experimental features

Next Article Stop buying Steam games that are already on Game Pass — I found an extension that does the work for you

Highlights

CVE-2025-7139 – SourceCodester Best Salon Management System Cross-Site Scripting

July 7, 2025

CVE ID : CVE-2025-7139

Published : July 7, 2025, 6:15 p.m. | 4 hours, 29 minutes ago

Description : A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /panel/edit-customer-detailed.php of the component Update Customer Details Page. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

AI and its impact on the developer experience, or ‘where is the joy?’

Google launches OSS Rebuild tool to improve trust in open source packages

EcoFlow’s new portable battery stations are lighter and more powerful (DC plug included)

7 ways Linux can save you money

My favorite Kindle tablet just got a kids model, and it makes so much sense

You can turn your Google Photos into video clips now – here’s how

Blade Service Injection: Direct Service Access in Laravel Templates

Blade Service Injection: Direct Service Access in Laravel Templates

This Week in Laravel: NativePHP Mobile and AI Guidelines from Spatie

Retrieve the Currently Executing Closure in PHP 8.5

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

How to Open Control Panel in Windows 11

How to Shut Down Windows 11

“We’re witnessing an urgent and active threat” — Microsoft SharePoint “ToolShell” vulnerability is being attacked globally

EcoFlow’s new portable battery stations are lighter and more powerful (DC plug included)

7 ways Linux can save you money

Mila & Universite de Montreal Researchers Introduce the Forgetting Transformer (FoX) to Boost Long-Context Language Modeling without Sacrificing Efficiency

CVE-2025-7194 – D-Link DI-500WF Stack-Based Buffer Overflow Vulnerability

CVE-2025-30466 – “Safari Same Origin Policy Bypass”

LACT configures and monitors AMD, NVIDIA and Intel GPUs

CVE-2025-7139 – SourceCodester Best Salon Management System Cross-Site Scripting

Essential Machine Learning Concepts Animated

Innovating with MongoDB | Customer Successes, May 2025

CVE-2024-45094 – IBM DS8900F and DS8A00 HMC Stored Cross-Site Scripting Vulnerability

“We’re witnessing an urgent and active threat” — Microsoft SharePoint “ToolShell” vulnerability is being attacked globally

Related Posts