Redis è un sistema di gestione di strutture dati in memoria, estremamente popolare per la sua velocità e versatilità. Ideale…
CVE-2025-2905 (CVSS 9.1): Critical XXE Vulnerability Found in WSO2 API Manager
A critical security vulnerability has been identified in WSO2 API Manager 2.0.0 and earlier, posing a significant risk to affected deployments. The vulnerability, tracked as CVE-2025-2905 (CVSS 9.1), …
Read more
Published Date:
May 06, 2025 (7 hours, 13 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-2905
CVE-2025-2605
CVE-2024-40896
CVE-2024-55875
CVE-2022-39135
CVE-2022-35741
Apple Appeals App Store Ruling in Epic Games Case
Following a court ruling that found Apple had willfully violated market competition laws and granted Epic Games’ recent motion to enforce an injunction, Apple has been compelled to revise its App Stor …
Read more
Published Date:
May 06, 2025 (5 hours, 12 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2024-44309
CVE-2024-44308
CVE-2025-27007: Critical OttoKit WordPress Plugin Flaw Exploited After Disclosure, 100K+ Sites at Risk
A newly disclosed critical vulnerability in the popular OttoKit WordPress plugin—with over 100,000 active installations—has placed countless websites at risk of full compromise. Discovered by Denver J …
Read more
Published Date:
May 06, 2025 (4 hours, 40 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-27007
Google komt met Android-updates voor aangevallen FreeType-lek
Google heeft Android-updates uitgebracht voor een actief aangevallen kwetsbaarheid in FreeType die remote code execution mogelijkt. Begin maart waarschuwde Facebook al voor het probleem. FreeType is e …
Read more
Published Date:
May 06, 2025 (2 hours, 29 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-27363
CVE ID : CVE-2025-47297
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-47298
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-47299
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-47300
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-47301
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-47302
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-47303
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4309
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-art-type.php. The manipulation of the argument arttype leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4310
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. This affects an unknown part of the file /admin/add_topic.php?category=BBS. The manipulation of the argument Cover Image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 4.7 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4311
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /admin/update_main_topic_img.php?topic_id=529. The manipulation of the argument stopic_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4312
Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago
Description : A vulnerability, which was classified as critical, has been found in SourceCodester Advanced Web Store 1.0. This issue affects some unknown processing of the file /productdetail.php. The manipulation of the argument prodid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-2802
Published : May 6, 2025, 5:15 a.m. | 2 hours, 32 minutes ago
Description : The LayoutBoxx plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 0.3.1. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4313
Published : May 6, 2025, 5:15 a.m. | 2 hours, 32 minutes ago
Description : A vulnerability, which was classified as critical, was found in SourceCodester Advanced Web Store 1.0. Affected is an unknown function of the file /admin/admin_addnew_product.php. The manipulation of the argument txtProdId leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4314
Published : May 6, 2025, 5:15 a.m. | 2 hours, 32 minutes ago
Description : A vulnerability has been found in SourceCodester Advanced Web Store 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/index.php. The manipulation of the argument txtLogin leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4323
Published : May 6, 2025, 5:15 a.m. | 2 hours, 32 minutes ago
Description : A vulnerability, which was classified as problematic, has been found in MRCMS 3.1.2. Affected by this issue is some unknown functionality of the component Edit Article Page. The manipulation of the argument Title leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 2.4 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more…