Botnet Exploits Old GeoVision IoT Devices via CVE-2024-6047 & CVE-2024-11120 The Akamai Security Intelligence and Response Team (SIRT) has identified active exploitation of two command injection vulnerabilities — CVE-2024-6047 and CVE-2024-11120 — in discontinued GeoVision IoT … Read more Published Date: May 07, 2025 (2 hours, 26 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-25014 […]
CVE-2025-46728: cpp-httplib Vulnerability Exposes Servers to Denial of Service The cpp-httplib, a C++11 single-file header-only cross-platform HTTP/HTTPS library known for its ease of setup, is facing a serious security vulnerability. A recently identified flaw, tracked as CVE-2 … Read more Published Date: May 07, 2025 (2 hours, 32 minutes ago) Vulnerabilities has been mentioned in this article. […]
CVE-2025-47241: Critical Whitelist Bypass in Browser Use Exposes Internal Services Security researchers from ARIMLABS.AI have disclosed a serious vulnerability in the Browser Use project—a tool that provides browser automation capabilities for AI agents. Tracked as CVE-2025-47241, t … Read more Published Date: May 07, 2025 (36 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-46728 […]
CoGUI Phishing Kit: Advanced Evasion Tactics Target Japan Threat actors using a sophisticated phishing kit called CoGUI have launched a torrent of Japanese-language credential theft campaigns, flooding inboxes with millions of phishing emails each month, acc … Read more Published Date: May 07, 2025 (43 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-24977 CVE-2025-47241 […]
CVE-2025-24977: Critical RCE Flaw in OpenCTI Platform Exposes Infrastructure to Root-Level Attacks A critical security vulnerability has been identified in the OpenCTI Platform, an open-source solution used by organizations to manage cyber threat intelligence. The vulnerability, tracked as CVE-2025 … Read more Published Date: May 07, 2025 (46 minutes ago) Vulnerabilities has been mentioned in this […]
Critical AWS Amplify Studio Flaw Allows Code Execution – Update Now! A critical-severity security flaw has been identified in AWS Amplify Studio, specifically within the amplify-codegen-ui package. This vulnerability, tracked as CVE-2025-4318 and with a critical CVSSv4 … Read more Published Date: May 07, 2025 (55 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-4318
CVE ID : CVE-2025-0856 Published : May 6, 2025, 11:15 p.m. | 1 hour, 24 minutes ago Description : The PGS Core plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability check on multiple functions in all versions up to, and including, 5.8.0. This makes it possible for […]
The PGS Core plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 5.8.0 via deserialization of untrusted input in the ‘import_header’ function. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
