Commvault Confirms Hackers Exploited CVE-2025-3928 as Zero-Day in Azure Breach Zero-Day / Threat Intelligence Enterprise data backup platform Commvault has revealed that an unknown nation-state threat actor breached its Microsoft Azure environment by exploiting CVE-2025-3928 but … Read more Published Date: May 01, 2025 (3 hours, 28 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-3928
The following table lists the changes that have been made to the CVE-2025-4154 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] May. 01, 2025 Action […]
CVE ID : CVE-2025-4100 Published : May 1, 2025, 7:15 a.m. | 23 minutes ago Description : The Nautic Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘np_marinetraffic_map’ shortcode in all versions up to, and including, 2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes […]
The following table lists the changes that have been made to the CVE-2025-4153 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] May. 01, 2025 Action […]
Certain build processes for libuv and Node.js for 32-bit systems, such as for the nodejs binary package through nodejs_20.19.0+dfsg-1_i386.deb for Debian GNU/Linux, have an inconsistent off_t size (e.g., building on i386 Debian always uses _FILE_OFFSET_BITS=64 for the libuv dynamic library, but uses the _FILE_OFFSET_BITS global system default of 32 for nodejs), leading to out-of-bounds access. […]
CVE ID : CVE-2025-3521 Published : May 1, 2025, 7:15 a.m. | 23 minutes ago Description : The Team Members – Best WordPress Team Plugin with Team Slider, Team Showcase & Team Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Social Link icons in all versions up to, and including, 3.4.0 due to […]
SonicWall Confirms Active Exploitation of Flaws Affecting Multiple Appliance Models Vulnerability / VPN Security SonicWall has revealed that two now-patched security flaws impacting its SMA100 Secure Mobile Access (SMA) appliances have been exploited in the wild. The vulnerabilities … Read more Published Date: May 01, 2025 (2 hours, 54 minutes ago) Vulnerabilities has been mentioned in this […]
The following table lists the changes that have been made to the CVE-2025-4152 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] May. 01, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-4151 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] May. 01, 2025 Action […]
CVE ID : CVE-2025-3504 Published : May 1, 2025, 6:15 a.m. | 27 minutes ago Description : The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
