CVE-2025-22478 – Dell Storage Center – Dell Storage Manager XML External Entity Reference Vulnerability

May 6, 2025

CVE ID : CVE-2025-22478

Published : May 6, 2025, 4:15 p.m. | 1 hour, 59 minutes ago

Description : Dell Storage Center – Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Restriction of XML External Entity Reference vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure and Information tampering.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-45487 – Linksys E5600 Command Injection Vulnerability

Next Article CVE-2025-22477 – Dell Storage Center Dell Storage Manager Authentication Bypass

Highlights

CVE-2025-52487 – DNN Bypass Login IP Filter Vulnerability

June 21, 2025

CVE ID : CVE-2025-52487

Published : June 21, 2025, 3:15 a.m. | 3 hours ago

Description : DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 7.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted request or proxy to be created that could bypass the design of DNN Login IP Filters allowing login attempts from IP Addresses not in the allow list. This issue has been patched in version 10.0.1.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

Borderlands 4 is killing off a tired “FOMO” trend — I hope other developers follow suit

Dr. Axel’s JavaScript flashcards

Dr. Axel’s JavaScript flashcards

Syntax-Highlight – Custom Element For Syntax Highlighting Content

WelsonJS – Build a Windows app on the Windows built-in JavaScript engine

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

CVE-2025-22478 – Dell Storage Center – Dell Storage Manager XML External Entity Reference Vulnerability

CVE-2025-49763: Apache Traffic Server Vulnerability Enables Memory Exhaustion Attacks

Critical Mattermost Flaw (CVE-2025-4981, CVSS 9.9) Allows RCE Via Path Traversal

CVE-2025-27207 – Adobe Commerce Improper Access Control Vulnerability

CVE-2025-48753 – “Anode SpinLock Data Race Vulnerability”

Node.js vs Django: Discover the Top Backend Framework for 2025

How the GitHub billing team uses the coding agent in GitHub Copilot to continuously burn down technical debt

CVE-2025-52487 – DNN Bypass Login IP Filter Vulnerability

Qilin Ransomware Ranked Highest in April 2025 with Over 45 Data Leak Disclosures

SEIKO EPSON Printer Vulnerabilities Let Attackers Execute Arbitrary Code

What might Microsoft announce at its 50th anniversary Copilot event?

CVE-2025-22478 – Dell Storage Center – Dell Storage Manager XML External Entity Reference Vulnerability

Related Posts