CVE-2025-6218 WinRAR Directory Traversal Vulnerability
Skip to content🔍 OverviewCVE-2025-6218 is a directory traversal vulnerability discovered in WinRAR, the widely used file archiving tool for Windows. The flaw allows attackers to craft malicious archiv …
Read more
Published Date:
Jun 30, 2025 (5 hours, 8 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-6218
Android 16 Unleashes Stingray Protection: New Security Features Combat Network Impersonation
Google has announced that Android 16 will introduce an array of new security features, including real-time alerts designed to protect users from rogue cell towers—commonly known as Stingrays—and insec …
Read more
Published Date:
Jun 30, 2025 (3 hours, 11 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2023-42115
CVE-2023-36460
CVE ID : CVE-2025-53076
Published : June 30, 2025, 3:15 a.m. | 2 hours, 52 minutes ago
Description : Improper Input Validation vulnerability in Samsung Open Source rLottie allows Overread Buffers.This issue affects rLottie: V0.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-53074
Published : June 30, 2025, 3:15 a.m. | 2 hours, 52 minutes ago
Description : Out-of-bounds Read vulnerability in Samsung Open Source rLottie allows Overflow Buffers.This issue affects rLottie: V0.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6882
Published : June 30, 2025, 3:15 a.m. | 2 hours, 52 minutes ago
Description : A vulnerability classified as critical has been found in D-Link DIR-513 1.0. This affects an unknown part of the file /goform/formSetWanPPTP. The manipulation of the argument curTime leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6884
Published : June 30, 2025, 3:15 a.m. | 2 hours, 52 minutes ago
Description : A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /search_index.php. The manipulation of the argument Search leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6883
Published : June 30, 2025, 3:15 a.m. | 2 hours, 52 minutes ago
Description : A vulnerability classified as critical was found in code-projects Staff Audit System 1.0. This vulnerability affects unknown code of the file /update_index.php. The manipulation of the argument updateid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6885
Published : June 30, 2025, 4:15 a.m. | 1 hour, 51 minutes ago
Description : A vulnerability, which was classified as critical, was found in PHPGurukul Teachers Record Management System 2.1. Affected is an unknown function of the file /admin/edit-teacher-detail.php. The manipulation of the argument tid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6886
Published : June 30, 2025, 5:15 a.m. | 51 minutes ago
Description : A vulnerability has been found in Tenda AC5 15.03.06.47 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/openSchedWifi. The manipulation of the argument schedStartTime/schedEndTime leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6888
Published : June 30, 2025, 5:15 a.m. | 51 minutes ago
Description : A vulnerability was found in PHPGurukul Teachers Record Management System 2.1. It has been classified as critical. This affects an unknown part of the file /admin/changeimage.php. The manipulation of the argument tid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6887
Published : June 30, 2025, 5:15 a.m. | 51 minutes ago
Description : A vulnerability was found in Tenda AC5 15.03.06.47 and classified as critical. Affected by this issue is some unknown functionality of the file /goform/SetSysTimeCfg. The manipulation of the argument time/timeZone leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
Synology ABM Flaw (CVE-2025-4679) Leaks Global Client Secret, Exposing ALL Microsoft 365 Tenants
A security vulnerability in Synology’s Active Backup for Microsoft 365 (ABM) software has exposed countless organizations’ cloud data to unauthorized access. Tracked as CVE-2025-4679, the flaw allowed …
Read more
Published Date:
Jun 30, 2025 (3 hours, 12 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-4679
D-Link DIR-816 Router Alert: 6 Critical Flaws (CVSS 9.8) Allow Remote Code Execution, NO PATCHES
In a recent security advisory, D-Link confirmed the discovery of multiple critical vulnerabilities in its now End-of-Life (EOL) DIR-816 wireless routers. These flaws affect all hardware revisions and …
Read more
Published Date:
Jun 30, 2025 (3 hours, 2 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-5630
CVE-2025-5624
CVE-2025-5623
CVE-2025-5622
CVE-2025-5621
CVE-2025-5620
Citrix Bleed 2: ReliaQuest Warns of Active Exploitation in NetScaler Gateway Vulnerability
A newly discovered vulnerability—CVE-2025-5777, now dubbed Citrix Bleed 2—is raising serious security alarms. According to ReliaQuest, attackers are actively exploiting this vulnerability in the wild …
Read more
Published Date:
Jun 30, 2025 (3 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-6543
CVE-2025-5777
CVE-2025-31324
CVE-2024-6235
CVE-2023-4966
CVE ID : CVE-2025-6873
Published : June 29, 2025, 10:15 p.m. | 5 hours, 11 minutes ago
Description : A vulnerability, which was classified as critical, has been found in SourceCodester Simple Company Website 1.0. This issue affects some unknown processing of the file /classes/Users.php?f=save. The manipulation of the argument img leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 4.7 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6874
Published : June 29, 2025, 10:15 p.m. | 5 hours, 11 minutes ago
Description : A vulnerability, which was classified as critical, was found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/add_subscribe.php. The manipulation of the argument user_id/plan_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6875
Published : June 29, 2025, 11:15 p.m. | 4 hours, 11 minutes ago
Description : A vulnerability has been found in SourceCodester Best Salon Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /panel/edit-subscription.php. The manipulation of the argument editid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6876
Published : June 29, 2025, 11:15 p.m. | 4 hours, 11 minutes ago
Description : A vulnerability was found in SourceCodester Best Salon Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /panel/add-category.php. The manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6877
Published : June 30, 2025, 12:15 a.m. | 3 hours, 11 minutes ago
Description : A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been classified as critical. This affects an unknown part of the file /panel/edit-category.php. The manipulation of the argument editid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6878
Published : June 30, 2025, 1:15 a.m. | 2 hours, 11 minutes ago
Description : A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /panel/search-appointment.php. The manipulation of the argument searchdata leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…