The following table lists the changes that have been made to the CVE-2025-3915 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Apr. 26, 2025 Action […]
The Jupiter X Core plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.8.11 via deserialization of untrusted input from the ‘file’ parameter of the ‘raven_download_file’ function. This makes it possible for attackers to inject a PHP Object through a PHAR file. No known POP chain is present […]
The Element Pack Addons for Elementor – Free Templates and Widgets for Your WordPress Websites plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets like Dual Button, Creative Button, Image Stack and more in all versions up to, and including, 5.10.29 due to insufficient input sanitization and output escaping. This makes it […]
The following table lists the changes that have been made to the CVE-2024-13808 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Apr. 26, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-2801 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Apr. 26, 2025 Action […]
Critical Craft CMS RCE 0-Day Vulnerability Exploited in Attacks to Steal Data According to security researchers at CERT Orange Cyberdefense, a critical remote code execution (RCE) vulnerability in Craft CMS is actively being exploited to breach servers and steal data. The vulne … Read more Published Date: Apr 26, 2025 (3 hours, 38 minutes ago) Vulnerabilities has […]
Critical ScreenConnect Vulnerability Let Attackers Inject Malicious Code ConnectWise has released an urgent security patch for its ScreenConnect remote access software to address a serious vulnerability that could allow attackers to execute malicious code on affected syste … Read more Published Date: Apr 26, 2025 (1 hour, 51 minutes ago) Vulnerabilities has been mentioned in this article. […]
ConnectWise Patches Critical ViewState RCE Vulnerability in ScreenConnect ConnectWise has issued an important security bulletin addressing a critical code injection vulnerability in ScreenConnect versions 25.2.3 and earlier. Tracked as CVE-2025-3935 (CVSS 81), the flaw invo … Read more Published Date: Apr 26, 2025 (55 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-3935 CVE-2025-0282
DslogdRAT Malware Targets Ivanti Connect Secure via CVE-2025-0282 Zero-Day Exploit A newly published report by Yuma Masubuchi from the JPCERT Coordination Center (JPCERT/CC) has uncovered the deployment of a stealthy remote access trojan dubbed DslogdRAT, which was installed on comp … Read more Published Date: Apr 26, 2025 (1 hour ago) Vulnerabilities has been mentioned in […]
NVIDIA Releases Security Update to Address GPU Driver Vulnerabilities NVIDIA has issued a software security update for its GPU Display Driver to address multiple vulnerabilities. The vulnerabilities affect both the NVIDIA GPU Display Driver and the NVIDIA VGPU Software … Read more Published Date: Apr 26, 2025 (1 hour, 10 minutes ago) Vulnerabilities has been mentioned in […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
