CVE-2025-46736 – Umbraco Account Existence Disclosure

May 6, 2025

CVE ID : CVE-2025-46736

Published : May 6, 2025, 5:16 p.m. | 2 hours, 19 minutes ago

Description : Umbraco is a free and open source .NET content management system. Prior to versions 10.8.10 and 13.8.1, based on an analysis of the timing of post login API responses, it’s possible to determine whether an account exists. The issue is patched in versions 10.8.10 and 13.8.1. No known workarounds are available.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4041 – Optigo Networks ONS NC600 Command Injection Vulnerability

Next Article CVE-2025-46735 – Terraform WinDNS Provider Authenticated Command Injection

Highlights

CVE-2025-4306 – PHPGurukul Nipah Virus Testing Management System SQL Injection

May 5, 2025

CVE ID : CVE-2025-4306

Published : May 6, 2025, 3:15 a.m. | 19 minutes ago

Description : A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /edit-phlebotomist.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Coded Smorgasbord: High Strung

Chainguard launches trusted collection of verified JavaScript libraries

CData launches Connect AI to provide agents access to enterprise data sources

PostgreSQL 18 adds asynchronous I/O to improve performance

Distribution Release: Neptune 9.0

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

PHP 8.5.0 RC 1 available for testing

PHP 8.5.0 RC 1 available for testing

Terraform Code Generator Using Ollama and CodeGemma

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Distribution Release: Neptune 9.0

Distribution Release: Neptune 9.0

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

CVE-2025-46736 – Umbraco Account Existence Disclosure

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

How AI is Transforming the World

CVE-2025-2336 – AngularJS SVG Image Content Spoofing Vulnerability

The Ultimate Guide to Vibe Coding: Benefits, Tools, and Future Trends

Multimodal AI on Developer GPUs: Alibaba Releases Qwen2.5-Omni-3B with 50% Lower VRAM Usage and Nearly-7B Model Performance

CVE-2025-4306 – PHPGurukul Nipah Virus Testing Management System SQL Injection

Best LLM Visibility Trackers for 2025: Track Your Brand in AI Search

CVE-2025-37980 – Linux Kernel Block Driver Resource Leak Vulnerability

YALA – Yet Another Linter Aggregator

CVE-2025-46736 – Umbraco Account Existence Disclosure

Related Posts