Cisco fixes ClamAV vulnerability with available PoC and critical Meeting Management flaw Cisco has released patches for a critical privilege escalation vulnerability in Meeting Management (CVE-2025-20156) and a heap-based buffer overflow flaw (CVE-2025-20128) that, when triggered, could t … Read more Published Date: Jan 23, 2025 (1 hour, 13 minutes ago) Vulnerabilities has been mentioned in this […]
The following table lists the changes that have been made to the CVE-2025-23006 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 23, 2025 Action […]
CVE ID : CVE-2024-13422 Published : Jan. 23, 2025, 12:15 p.m. | 30 minutes ago Description : The SEO Blogger to WordPress Migration using 301 Redirection plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 0.4.8 due to insufficient input sanitization and output escaping. This […]
CVE ID : CVE-2024-13389 Published : Jan. 23, 2025, 12:15 p.m. | 30 minutes ago Description : The Cliptakes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘cliptakes_input_email’ shortcode in all versions up to, and including, 1.3.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it […]
CVE ID : CVE-2024-13340 Published : Jan. 23, 2025, 12:15 p.m. | 30 minutes ago Description : The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘mdf_results_by_ajax’ shortcode in all versions up to, and including, 1.3.3.6 due to insufficient input sanitization and output escaping on […]
CVE ID : CVE-2024-13236 Published : Jan. 23, 2025, 12:15 p.m. | 30 minutes ago Description : The Tainacan plugin for WordPress is vulnerable to SQL Injection via the ‘collection_id’ parameter in all versions up to, and including, 0.21.12 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing […]
CVE ID : CVE-2024-12504 Published : Jan. 23, 2025, 12:15 p.m. | 30 minutes ago Description : The Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘videowhisper_hls’ shortcode in all versions up to, and including, 6.1.9 due to insufficient input […]
CVE ID : CVE-2024-12118 Published : Jan. 23, 2025, 12:15 p.m. | 30 minutes ago Description : The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Event Calendar Link Widget through the html_tag attribute in all versions up to, and including, 6.9.0 due to insufficient input sanitization and output escaping. […]
Cisco Warns of Critical Privilege Escalation Vulnerability in Meeting Management Platform Cisco has issued a security advisory regarding a critical privilege escalation vulnerability found in Cisco Meeting Management. The vulnerability is tied to the REST API component of the platform, and … Read more Published Date: Jan 23, 2025 (2 hours, 8 minutes ago) Vulnerabilities has been […]
SonicWall waarschuwt voor actief aangevallen lek in SMA1000-gateway SonicWall waarschuwt klanten voor een actief aangevallen kwetsbaarheid in de Secure Mobile Access (SMA) 1000-gateway. Via het beveiligingslek kan een ongeauthenticeerde aanvaller kwetsbare apparaten o … Read more Published Date: Jan 23, 2025 (2 hours, 13 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-23006
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
