CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

July 17, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting Citrix NetScaler ADC and Gateway to its Known Exploited Vulnerabilities (KEV) catalog, officially confirming the vulnerability has been weaponized in the wild.
The shortcoming in question is CVE-2025-5777 (CVSS score: 9.3), an instance of insufficient input validation that could

Source: Read More

Previous ArticleUNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Next Article Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

Highlights

CVE-2024-13427 – WordPress Pagelayer Stored Cross-Site Scripting

May 24, 2025

CVE ID : CVE-2024-13427

Published : May 24, 2025, 3:15 a.m. | 1 hour, 38 minutes ago

Description : The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s Button widget in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. NOTE: This vulnerability was partially fixed in version 1.9.9 and completely fixed in version 2.0.1.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Kong AI Gateway 3.11 introduces new method for reducing token costs

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

The wireless gaming mouse I’ve used for 5 years is down to $30 — that’s less than 2 cents a day (and it’s still my favorite)

Researchers from OpenAI, Anthropic, Meta, and Google issue joint AI safety warning – here’s why

You’ll soon be able to chat with Copilot and attend Teams meetings while driving your Mercedes-Benz — now there’s no excuse to miss your meetings

The details of TC39’s last meeting

The details of TC39’s last meeting

Tinkerwell v5 is now released

Tinkerwell v5 is now released

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

The wireless gaming mouse I’ve used for 5 years is down to $30 — that’s less than 2 cents a day (and it’s still my favorite)

You’ll soon be able to chat with Copilot and attend Teams meetings while driving your Mercedes-Benz — now there’s no excuse to miss your meetings

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Scaling Up Reinforcement Learning for Traffic Smoothing: A 100-AV Highway Deployment

Repurposing Protein Folding Models for Generation with Latent Diffusion

Why We Wrote a Code Review Guide. And What Actually Worked.

CVE-2024-22654 – “tcpreplay Infinite Loop Vulnerability”

CVE-2025-52488 – DNN NTLM Hash Exposure Vulnerability

CVE-2025-22157 – Atlassian Jira Privilege Escalation Vulnerability

CVE-2024-13427 – WordPress Pagelayer Stored Cross-Site Scripting

CVE-2025-2102 – HYPR Passwordless Link Following Privilege Escalation Vulnerability

AI-Native Product Development: 5 Pillars That Matter

rmsramos/activitylog

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Related Posts