CVE-2025-30947 – Gopiplus Cool Fade Popup SQL Injection

July 4, 2025

CVE ID : CVE-2025-30947

Published : July 4, 2025, 9:15 a.m. | 1 hour, 14 minutes ago

Description : Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in gopiplus Cool fade popup allows Blind SQL Injection. This issue affects Cool fade popup: from n/a through 10.1.

Severity: 8.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-30983 – Gopiplus Card Flip Image Slideshow Cross-Site Scripting (XSS)

Next Article CVE-2025-30979 – Gopiplus Pixelating image slideshow gallery SQL Injection

Highlights

CVE-2025-48067 – OctoPrint File Exfiltration Information Disclosure

June 10, 2025

CVE ID : CVE-2025-48067

Published : June 10, 2025, 4:15 p.m. | 34 minutes ago

Description : OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.11.1 contain a vulnerability that allows an attacker with the FILE_UPLOAD permission to exfiltrate files from the host that OctoPrint has read access to, by moving them into the upload folder where they then can be downloaded from. This vulnerability is fixed in 1.11.2.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Full-Stack Techies vs Toptal: Which Is Better for React.js Outsourcing?

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

PHP 8.5.0 Alpha 1 available for testing

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

Celebrating Perficient’s Third Databricks Champion

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

CVE-2025-30947 – Gopiplus Cool Fade Popup SQL Injection

CVE-2025-24748 – LambertGroup All In One Slider Responsive SQL Injection

CVE-2025-27358 – mndpsingh287 Frontend File Manager Basic XSS Vulnerability

How to Build a Conversational AI Chatbot with Stream Chat and React

Hewlett Packard Enterprise warns of critical StoreOnce auth bypass

Canva just dropped 6 exciting AI features in its biggest update in years

FOSS Weekly #25.23: Helwan Linux, Quarkdown, Konsole Tweaks, Keyboard Shortcuts and More Linux Stuff

CVE-2025-48067 – OctoPrint File Exfiltration Information Disclosure

CVE-2025-4594 – WordPress Tournamatch Stored Cross-Site Scripting Vulnerability

Hackers Had Access to 150,000 Emails in U.S. Treasury Email Breach

Meet Muzli Me

CVE-2025-30947 – Gopiplus Cool Fade Popup SQL Injection

Related Posts