Security

CVE ID : CVE-2025-5604

Published : June 4, 2025, 7:15 p.m. | 21 minutes ago

Description : A vulnerability was found in Campcodes Hospital Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user-login.php. The manipulation of the argument Username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419)

Google has fixed two Chrome vulnerabilities, including a zero-day flaw (CVE-2025-5419) with an in-the-wild exploit.
About CVE-2025-5419
CVE-2025-5419 is a high-severity out of bounds read and write vu …
Read more

Published Date:
Jun 04, 2025 (4 hours, 24 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-5419

IBM QRadar Vulnerabilities Let Attackers Access Sensitive Configuration Files

Multiple severe vulnerabilities in IBM QRadar Suite Software that could allow attackers to access sensitive configuration files and compromise enterprise security infrastructures.
The most severe vuln …
Read more

Published Date:
Jun 04, 2025 (1 hour, 37 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-25022

CVE-2025-25021

CVE-2025-25020

CVE-2025-25019

CVE-2025-1334

CVE ID : CVE-2025-30415

Published : June 4, 2025, 12:15 p.m. | 1 hour, 57 minutes ago

Description : Denial of service due to improper handling of malformed input. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 40077.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-48959

Published : June 4, 2025, 12:15 p.m. | 1 hour, 57 minutes ago

Description : Local privilege escalation due to insecure file permissions. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 40077.

Severity: 6.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5597

Published : June 4, 2025, 12:15 p.m. | 1 hour, 57 minutes ago

Description : Improper Authentication vulnerability in WF Steuerungstechnik GmbH airleader MASTER allows Authentication Bypass.This issue affects airleader MASTER: 3.00571.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5598

Published : June 4, 2025, 12:15 p.m. | 1 hour, 57 minutes ago

Description : Path Traversal vulnerability in WF Steuerungstechnik GmbH airleader MASTER allows Retrieve Embedded Sensitive Data.This issue affects airleader MASTER: 3.0046.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

In episode 53 of The AI Fix, our hosts suspect the CEO of Duolingo has been kidnapped by an AI,…

Several malicious packages have been uncovered across the npm, Python, and Ruby package repositories that drain funds from cryptocurrency wallets,…

Traditional data leakage prevention (DLP) tools aren’t keeping pace with the realities of how modern businesses use SaaS applications. Companies…

CISA Releases ICS Advisories Covering Vulnerabilities & Exploits

CISA issued three critical Industrial Control Systems (ICS) advisories on June 3, 2025, warning organizations about severe vulnerabilities affecting Schneider Electric and Mitsubishi Electric industri …
Read more

Published Date:
Jun 04, 2025 (3 hours, 35 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-3755

CVE-2025-3916

CVE-2023-4041

WWDC 2025: Apple to Revamp SwiftUI for Richer App Experiences

During the upcoming WWDC 2025, in addition to unveiling updates to its major operating systems, Apple is also expected to introduce a revised SwiftUI framework aimed at streamlining the development pr …
Read more

Published Date:
Jun 04, 2025 (3 hours, 18 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2022-23494

Asus adviseert fabrieksreset voor verwijderen van SSH-backdoor

Asus adviseert duizenden eigenaren van een gecompromitteerde router om een fabrieksreset uit te voeren en vervolgens een adminwachtwoord van minimaal tien karakters in te stellen. Dat is de enige meth …
Read more

Published Date:
Jun 04, 2025 (3 hours, 15 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2023-39780

CVE ID : CVE-2025-27444

Published : June 4, 2025, 8:15 a.m. | 3 hours, 19 minutes ago

Description : A reflected XSS vulnerability in RSform!Pro component 3.0.0 – 3.3.13 for Joomla was discovered. The issue arises from the improper handling of the filter[dateFrom] GET parameter, which is reflected unescaped in the administrative backend interface. This allows an authenticated attacker with admin or editor privileges to inject arbitrary JavaScript code by crafting a malicious URL.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2024-13967

Published : June 4, 2025, 8:15 a.m. | 2 hours, 44 minutes ago

Description : This vulnerability allows the successful attacker to gain unauthorized access to a
configuration web page delivered by the integrated web Server of EIBPORT.

This issue affects EIBPORT V3 KNX: through 3.9.8; EIBPORT V3 KNX GSM: through 3.9.8.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-47724

Published : June 4, 2025, 8:15 a.m. | 3 hours, 19 minutes ago

Description : Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5482

Published : June 4, 2025, 8:15 a.m. | 2 hours, 44 minutes ago

Description : The Sunshine Photo Cart: Free Client Photo Galleries for Photographers plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.4.11. This is due to the plugin not properly validating a user-supplied key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user’s passwords through the password reset functionality, including administrators, and leverage that to reset the user’s password and gain access to their account.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-47726

Published : June 4, 2025, 8:15 a.m. | 3 hours, 19 minutes ago

Description : Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-47727

Published : June 4, 2025, 8:15 a.m. | 3 hours, 19 minutes ago

Description : Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5576

Published : June 4, 2025, 8:15 a.m. | 3 hours, 19 minutes ago

Description : A vulnerability, which was classified as critical, has been found in PHPGurukul Dairy Farm Shop Management System 1.3. This issue affects some unknown processing of the file /bwdate-report-details.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…