The WP Directory Kit plugin for WordPress is vulnerable to SQL Injection via the ‘search’ parameter in all versions up to, and including, 1.4.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Administrator-level access and above, […]
The following table lists the changes that have been made to the CVE-2025-41744 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Dec. 02, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-41743 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Dec. 02, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-41742 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Dec. 02, 2025 Action […]
In gokey versions <0.2.0, a flaw in the seed decryption logic resulted in passwords incorrectly being derived solely from the initial vector and the AES-GCM authentication tag of the key seed. This issue has been fixed in gokey version 0.2.0. This is a breaking change. The fix has invalidated any passwords/secrets that were derived from […]
Google brengt updates uit voor twee actief aangevallen Android-lekken Tijdens de laatste patchronde van dit jaar heeft Google beveiligingsupdates voor Android uitgebracht, die onder andere twee actief aangevallen kwetsbaarheden verhelpen. Daarnaast is er ook een kritiek … Read more Published Date: Dec 02, 2025 (49 minutes ago) Vulnerabilities has been mentioned in this article.
Vulnerability in OpenSolution QuickCMS software Vulnerability in OpenSolution QuickCMS software CVE ID CVE-2025-12465 Publication date 02 December 2025 Vendor OpenSolution Product QuickCMS Vulnerable versions 6.8 Vulnerability type (CWE) Improper N … Read more Published Date: Dec 02, 2025 (3 hours, 5 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-12465
How a noisy ransomware intrusion exposed a long-term espionage foothold Getting breached by two separate and likely unconnected cyber attack groups is a nightmare scenario for any organization, but can result in an unexpected silver lining: the noisier intrusion can draw … Read more Published Date: Dec 02, 2025 (3 hours, 8 minutes ago) Vulnerabilities has been […]
The following table lists the changes that have been made to the CVE-2025-13873 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by 64c5ae8f-7972-4697-86a0-7ada793ac795 Dec. 02, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-13872 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by 64c5ae8f-7972-4697-86a0-7ada793ac795 Dec. 02, 2025 Action […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
