tracker is a terminal-based real-time satellite tracking and orbit prediction application. It’s written in Rust. The post tracker offers real-time…
Il panorama della sicurezza informatica in ambito open-source sta vivendo una fase di allarme crescente, come evidenziato dai più recenti…
Vpn-accounts op SonicWall-gateways sinds januari doelwit van aanvallen
Vpn-accounts op SonicWall-gateways zijn sinds januari het doelwit van aanvallen, zo stelt securitybedrijf Arctic Wolf. Mogelijk combineren de aanvallers gecompromitteerde vpn-accounts met een vier jaa …
Read more
Published Date:
Apr 19, 2025 (1 day, 20 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2021-20035
Critical Erlang/OTP SSH RCE bug now has public exploits, patch now
Public exploits are now available for a critical Erlang/OTP SSH vulnerability tracked as CVE-2025-32433, allowing unauthenticated attackers to remotely execute code on impacted devices.
Researchers at …
Read more
Published Date:
Apr 19, 2025 (1 day, 16 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-32433
CVE-2025-32445 Privilege Escalation Flaw in Argo Events
CVE-2025-32445 is a critical privilege escalation vulnerability affecting Argo Events, an event-driven workflow automation framework designed for Kubernetes environments. The flaw enables users with p …
Read more
Published Date:
Apr 19, 2025 (1 day, 16 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-32445
Operation ForumTroll Detailed out
Operation ForumTroll is a sophisticated Advanced Persistent Threat (APT) campaign that exploits a zero-day vulnerability (CVE-2025-2783) in Google Chrome. This operation was uncovered in March 2025 an …
Read more
Published Date:
Apr 19, 2025 (1 day, 16 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-32445
CVE-2025-2783
Chinese APT IronHusky Deploys Updated MysterySnail RAT on Russia
Kaspersky researchers report the reappearance of MysterySnail RAT, a malware linked to Chinese IronHusky APT, targeting Mongolia and Russia after years of silence. Learn about its new tactics and modu …
Read more
Published Date:
Apr 19, 2025 (1 day, 9 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2021-40449
Cyber Security News Letter: Key Updates on Attacks, Vulnerabilities, & Data Breaches
Welcome to this week’s Cybersecurity Newsletter, where we provide the latest updates and critical insights from the swiftly changing realm of cybersecurity.This edition focuses on new threats and the …
Read more
Published Date:
Apr 21, 2025 (6 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-31201
CVE-2025-31200
CVE-2025-20236
CVE-2025-30100
CVE-2025-24859
CVE-2025-24076
CVE-2025-24054
CVE-2021-20035
GitHub Enterprise Server Vulnerabilities Allows Arbitrary Code Execution
GitHub has issued urgent security updates for its Enterprise Server product after discovering multiple high-severity vulnerabilities, including a critical flaw (CVE-2025-3509) that allows attackers to …
Read more
Published Date:
Apr 21, 2025 (4 hours, 25 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-3509
CVE-2025-3246
CVE-2025-3124
CVE ID : CVE-2024-53591
Published : April 18, 2025, 9:15 p.m. | 2 days, 9 hours ago
Description : An issue in the login page of Seclore v3.27.5.0 allows attackers to bypass authentication via a brute force attack.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-29058
Published : April 18, 2025, 9:15 p.m. | 2 days, 9 hours ago
Description : An issue in Qimou CMS v.3.34.0 allows a remote attacker to execute arbitrary code via the upgrade.php component.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-3821
Published : April 20, 2025, 4:15 a.m. | 1 day, 2 hours ago
Description : A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file add-admin.php. The manipulation of the argument txtpassword/txtfullname/txtemail leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 2.4 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-0632
Published : April 21, 2025, 6:15 a.m. | 40 minutes ago
Description : Local File Inclusion (LFI) vulnerability in a Render function of Formulatrix Rock Maker Web (RMW) allows a remote attacker to obtain sensitive data via arbitrary code execution. A malicious actor could execute malicious scripts to automatically download configuration files in known locations to exfiltrate data including credentials, and with no rate limiting a malicious actor could enumerate the filesystem of the host machine and potentially lead to full host compromise.
This issue affects Rock Maker Web: from 3.2.1.1 and later
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
A common class of bad code is the code which mixes server side code with client side code. This kind…
From dead-end jobs to intuition, this guide explains why a ‘no’ doesn’t lead to a negative experience. Easy to Use…
Zentyal Server is a unified network server that offers easy computer network administration for small and medium-size businesses. The post…
Asus waarschuwt voor kritieke AiCloud-kwetsbaarheid in wifi-routers
Asus waarschuwt voor een kritieke AiCloud-kwetsbaarheid die in verschillende wifi-routers aanwezig is en heeft firmware-updates uitgebracht om het probleem te verhelpen. Via AiCloud kunnen gebruikers …
Read more
Published Date:
Apr 19, 2025 (1 day, 15 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-2492
Critical Meshtastic RCE Vulnerability (CVE-2025-24797) Requires Urgent Update
A critical security vulnerability has been disclosed in Meshtastic, the open-source LoRa mesh networking platform known for enabling long-range, low-power communication without cellular or internet co …
Read more
Published Date:
Apr 21, 2025 (1 hour, 34 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-24797
APT41/RedGolf Infrastructure Briefly Exposed: Fortinet Zero-Days Targeted Shiseido
In a rare window into the operations of an advanced persistent threat, a KeyPlug-linked infrastructure briefly went live, exposing tools and scripts tied to APT41/RedGolf operations. The server, activ …
Read more
Published Date:
Apr 21, 2025 (1 hour, 24 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-24797
CVE-2025-31103
CVE-2025-0108
CVE-2024-23109
CVE-2024-23108
CVE-2025-42599: Critical Buffer Overflow in Active! mail Exploited in the Wild
A severe security vulnerability has been identified in Active! mail, a product of QUALITIA CO., LTD., posing a significant risk to affected systems. The Japan Computer Emergency Response Team (JPCERT) …
Read more
Published Date:
Apr 21, 2025 (1 hour, 19 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-42599