Hacker selling critical Roundcube webmail exploit as tech info disclosed

June 5, 2025

Hacker selling critical Roundcube webmail exploit as tech info disclosed

Hackers are likely starting to exploit CVE-2025-49113, a critical vulnerability in the widely used Roundcube open-source webmail application that allows remote execution.
The security issue has been p …

Published Date:
Jun 05, 2025 (2 hours, 52 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-48745

CVE-2025-49113

Source: Read More

Previous ArticleCisco IMC Vulnerability Attackers to Access Internal Services with Elevated Privileges

Next Article CVE-2025-20286 Credential Reuse Vulnerability in Cisco ISE

Highlights

CVE-2025-25257 – Fortinet FortiWeb SQL Injection Vulnerability

July 17, 2025

CVE ID : CVE-2025-25257

Published : July 17, 2025, 4:15 p.m. | 2 hours, 14 minutes ago

Description : An improper neutralization of special elements used in an SQL command (‘SQL Injection’) vulnerability [CWE-89] in Fortinet FortiWeb version 7.6.0 through 7.6.3, 7.4.0 through 7.4.7, 7.2.0 through 7.2.10 and below 7.0.10 allows an unauthenticated attacker to execute unauthorized SQL code or commands via crafted HTTP or HTTPs requests.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Cloudsmith launches ML Model Registry to provide a single source of truth for AI models and datasets

Kong Acquires OpenMeter to Unlock AI and API Monetization for the Agentic Era

Microsoft Graph CLI to be retired

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

ASUS built a desktop gaming PC around a mobile CPU — it’s an interesting, if flawed, idea

Hollow Knight: Silksong arrives on Xbox Game Pass this week — and Xbox’s September 1–7 lineup also packs in the horror. Here’s every new game.

The Xbox remaster that brought Gears to PlayStation just passed a huge milestone — “ending the console war” and proving the series still has serious pulling power

Magento (Adobe Commerce) or Optimizely Configured Commerce: Which One to Choose

Magento (Adobe Commerce) or Optimizely Configured Commerce: Which One to Choose

Updates from N|Solid Runtime: The Best Open-Source Node.js RT Just Got Better

Scale Your Business with AI-Powered Solutions Built for Singapore’s Digital Economy

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

ASUS built a desktop gaming PC around a mobile CPU — it’s an interesting, if flawed, idea

Hollow Knight: Silksong arrives on Xbox Game Pass this week — and Xbox’s September 1–7 lineup also packs in the horror. Here’s every new game.

Hacker selling critical Roundcube webmail exploit as tech info disclosed

Hacker selling critical Roundcube webmail exploit as tech info disclosed

CISA Adds TP-Link and WhatsApp Flaws to KEV Catalog Amid Active Exploitation

Pennsylvania Attorney General’s Office Recovers from Ransomware Attack

Top 5 Scariest Zombie Botnets

CVE-2025-5913 – “PHPGurukul Vehicle Record Management System SQL Injection Vulnerability”

CVE-2025-53640 – Indico Information Disclosure Vulnerability

Microsoft’s new AI skills are coming to Copilot+ PCs – including some for all Windows 11 users

CVE-2025-25257 – Fortinet FortiWeb SQL Injection Vulnerability

CVE-2025-7318 – IrfanView CADImage Plugin DWG File Parsing Memory

CVE-2025-4325 – MRCMS Cross-Site Scripting Vulnerability

Warhammer 40,000: Dawn of War – Definitive Edition Launches on PC

Hacker selling critical Roundcube webmail exploit as tech info disclosed

Hacker selling critical Roundcube webmail exploit as tech info disclosed

Related Posts