CVE-2024-48905 – Sematell ReplyOne Authentication Bypass

May 1, 2025

CVE ID : CVE-2024-48905

Published : May 1, 2025, 9:15 p.m. | 2 hours, 11 minutes ago

Description : Sematell ReplyOne 7.4.3.0 has Insecure Permissions for the /rest/sessions endpoint.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-48906 – Sematell ReplyOne Cross-Site Scripting Vulnerability

Next Article CVE-2025-46635 – Tenda RX2 Pro Router Guest Wi-Fi Network Isolation Bypass

Highlights

CVE-2024-52290 – LF Edge eKuiper Cross-Site Scripting (XSS)

May 14, 2025

CVE ID : CVE-2024-52290

Published : May 14, 2025, 8:15 a.m. | 35 minutes ago

Description : LF Edge eKuiper is a lightweight internet of things (IoT) data analytics and stream processing engine. Prior to version 2.1.0 user with rights to modificate the service (e.g. kuiperUser role) can inject a cross-site scripting payload into Connection Configuration key `Name` (`confKey`) parameter. After this setup, when any user with access to this service (e.g. admin) tries to delete this key, a payload acts in the victim’s browser. Version 2.1.0 fixes the issue.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

@ts-ignore is almost always the worst option

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Student Performance Prediction System using Python Machine Learning (ML)

DistroWatch Weekly, Issue 1140

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Hyprland Made Easy: Preconfigured Beautiful Distros

CVE-2024-48905 – Sematell ReplyOne Authentication Bypass

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Are Subscriptions Trying to Trick You with Their Pricing?

CVE-2025-3055 – WordPress User Frontend Pro File Deletion Vulnerability

Overwatch 2 gets a ‘Stadium Mode’ gameplay trailer, marking the biggest change the game has seen in years

Vivaldi 7.5 launches with colored tab stacks and sharper privacy tools

CVE-2024-52290 – LF Edge eKuiper Cross-Site Scripting (XSS)

Data-Driven Testing with Selenium WebDriver

CVE-2025-47229 – GNU PSPP Denial of Service Vulnerability

CVE-2025-24780 – Printcart Web to Print Product Designer for WooCommerce SQL Injection

CVE-2024-48905 – Sematell ReplyOne Authentication Bypass

Related Posts