CVE-2025-28169 – BYD QIN PLUS DM-i Dilink OS Unencrypted Broadcast Vulnerability

April 23, 2025

CVE ID : CVE-2025-28169

Published : April 23, 2025, 8:15 p.m. | 2 hours, 43 minutes ago

Description : BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to cend broadcasts to the manufacturer’s cloud server unencrypted, allowing attackers to execute a man-in-the-middle attack.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-32818 – SonicWall SonicOS SSLVPN Null Pointer Dereference DoS

Next Article CVE-2025-3673 – Apache HTTP Server Remote Code Execution Vulnerability

Highlights

CVE-2025-8142 – Soledad Theme for WordPress Local File Inclusion Vulnerability

August 16, 2025

CVE ID : CVE-2025-8142

Published : Aug. 16, 2025, 12:15 p.m. | 13 hours, 54 minutes ago

Description : The Soledad theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.6.7 via the ‘header_layout’ parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary .php files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where .php file types can be uploaded and included.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Distribution Release: Q4OS 6.1

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

Right way to record and share our Terminal sessions

CVE-2025-28169 – BYD QIN PLUS DM-i Dilink OS Unencrypted Broadcast Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-27558 – Wi-Fi Protected Access (WPA, WPA2, WPA3) and Wired Equivalent Privacy (WEP) Mesh Network FragAttacks

Distribution Release: Linux Mint 22.2

PC shipments surge as Windows 11 adoption rises, but the trade war threatens momentum

CISA Orders Immediate Patch of Critical Sitecore Vulnerability Under Active Exploitation

CVE-2025-8142 – Soledad Theme for WordPress Local File Inclusion Vulnerability

CVE-2025-23100 – Samsung Exynos NULL Check Denial of Service Vulnerability

CVE-2025-27242 – OpenHarmony Denial of Service Vulnerability

CodeSOD: The XML Dating Service

CVE-2025-28169 – BYD QIN PLUS DM-i Dilink OS Unencrypted Broadcast Vulnerability

Related Posts