Splunk Alert: RCE and Data Leak Vulnerabilities Threaten Platforms Splunk, a widely used platform for searching, monitoring, and analyzing machine-generated data, has released a security advisory detailing critical vulnerabilities affecting Splunk Enterprise and Splu … Read more Published Date: Mar 27, 2025 (1 hour, 33 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-20231 CVE-2025-20229 CVE-2024-53247 […]
CVE ID : CVE-2025-2481 Published : March 27, 2025, 2:15 a.m. | 59 minutes ago Description : The MediaView plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.1.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to […]
The following table lists the changes that have been made to the CVE-2024-45352 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Mar. 27, 2025 Action […]
Synapse Servers at Risk: Zero-Day DoS in the Wild A critical zero-day vulnerability has been discovered in Synapse, an open-source Matrix homeserver implementation. This flaw is actively being exploited in the wild and can lead to a denial-of-service … Read more Published Date: Mar 27, 2025 (2 hours, 2 minutes ago) Vulnerabilities has been mentioned in this […]
CVE-2025-30232: Use-After-Free Vulnerability in Exim Exposes Systems to Privilege Escalation Exim, a widely used message transfer agent (MTA) for Unix systems, is facing a critical security vulnerability. Tracked as CVE-2025-30232, the flaw is a use-after-free vulnerability that may enable lo … Read more Published Date: Mar 27, 2025 (2 hours, 11 minutes ago) Vulnerabilities has been mentioned […]
CISA Flags Active Exploits in Sitecore CMS: CVE-2019-9874 and CVE-2019-9875, PoC Publishes Two critical vulnerabilities in Sitecore’s anti-CSRF module have re-emerged as active threats, with proof-of-concept exploits in circulation and real-world abuse prompting urgent action from federal a … Read more Published Date: Mar 27, 2025 (2 hours, 21 minutes ago) Vulnerabilities has been mentioned in this […]
The following table lists the changes that have been made to the CVE-2025-30355 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Mar. 27, 2025 Action […]
Researcher Drops PoC for 9.8 CVSS Ingress-NGINX CVE-2025-1974 Flaw in Kubernetes A series of critical security vulnerabilities has been discovered in the Ingress-NGINX Controller for Kubernetes, posing a significant risk to Kubernetes deployments. Security researcher Jacob Sandum … Read more Published Date: Mar 27, 2025 (38 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-24514 […]
Triple Threat in Frappe Framework: SQL Injection, RCE, and Info Disclosure Fixed in Recent Patches Multiple critical security vulnerabilities have been identified in the Frappe Framework, a full-stack web framework powering ERPNext and other database-driven applications.Frappe is a versatile, Pytho … Read more Published Date: Mar 27, 2025 (43 minutes ago) Vulnerabilities has been mentioned in […]
WordPress Plugin CVE-2025-2563 Scores 9.8, Threatens Thousands of Membership Sites A critical security vulnerability has been discovered in the “User Registration & Membership” WordPress plugin, a popular tool for creating membership websites and registration forms. The flaw, identi … Read more Published Date: Mar 27, 2025 (58 minutes ago) Vulnerabilities has been mentioned in this article.
