CVE-2025-52978 – Dropbox File Decryption

June 24, 2025

CVE ID : CVE-2025-52978

Published : June 24, 2025, 3:15 a.m. | 2 hours, 1 minute ago

Description : Rejected reason: Not used

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52979 – Apache HTTP Server Cross-Site Request Forgery

Next Article CVE-2025-52977 – Apache HTTP Server Stored XSS

Highlights

CVE-2025-5927 – Everest Forms Pro WordPress Remote File Deletion Vulnerability

June 25, 2025

CVE ID : CVE-2025-5927

Published : June 25, 2025, 10:15 a.m. | 42 minutes ago

Description : The Everest Forms (Pro) plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_entry_files() function in all versions up to, and including, 1.9.4. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). The vulnerability requires an admin to trigger the deletion via deletion of a form entry and cannot be carried out by the attacker alone.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-52978 – Dropbox File Decryption

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Qualcomm Adreno GPU 0-Day Vulnerabilities Exploited to Attack Android Users

The secret to getting repeat work as a freelancer

Sea of Thieves is getting this widely-requested feature in early 2026 — and it’s coming as part of a new subscription model

Valve just announced every Steam sale date from now until Summer 2026 — here’s exactly when you can save big bucks on the best PC games

CVE-2025-5927 – Everest Forms Pro WordPress Remote File Deletion Vulnerability

CVE-2025-6701 – Xuxueli xxl-sso Open Redirect Vulnerability

CVE-2025-51606 – Hippo4J JWT Secret Key Hard-Coded Vulnerability

CVE-2025-37786 – Linux Kernel DSA Net Use-After-Free Vulnerability

CVE-2025-52978 – Dropbox File Decryption

Related Posts