10 - CVE-2024-40891
Currently trending CVE - hypeScore: 1
Aggregator
3 - CVE-2025-24161
2 months 3 weeks ago
Currently trending CVE - hypeScore: 6 - The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination.
4 - CVE-2025-24160
2 months 3 weeks ago
Currently trending CVE - hypeScore: 6 - The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination.
2 - CVE-2025-24163
2 months 3 weeks ago
Currently trending CVE - hypeScore: 6 - The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination.
CVE-2025-23990 | jablonczay Scroll Styler Plugin up to 1.1 on WordPress cross-site request forgery
2 months 3 weeks ago
A vulnerability, which was classified as problematic, was found in jablonczay Scroll Styler Plugin up to 1.1 on WordPress. Affected is an unknown function. The manipulation leads to cross-site request forgery.
This vulnerability is traded as CVE-2025-23990. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2011-5265 | Featurific-for-wordpress 1.6.2 cached_image.php snum cross site scripting (EDB-36339 / XFDB-71468)
2 months 3 weeks ago
A vulnerability classified as problematic has been found in Featurific-for-wordpress 1.6.2. This affects an unknown part of the file cached_image.php. The manipulation of the argument snum leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2011-5265. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
The real existence of this vulnerability is still doubted at the moment.
vuldb.com
Is Hacking: The Art of Exploitation still a good book for beginners in 2025?
2 months 3 weeks ago
每周高级威胁情报解读(2025.01.24~01.31)
2 months 3 weeks ago
Andariel攻击组织使用恶意文件执行RID劫持攻击;;UAC-0063组织对中亚及欧洲国家进行网络间谍攻击活动;Lazarus发起“Phantom Circuit”攻击活动针对加密货币和技术开发者
每周高级威胁情报解读(2025.01.24~01.31)
2 months 3 weeks ago
Andariel攻击组织使用恶意文件执行RID劫持攻击;;UAC-0063组织对中亚及欧洲国家进行网络间谍攻击活动;Lazarus发起“Phantom Circuit”攻击活动针对加密货币和技术开发者
CVE-2025-23989 | Alessandro Piconi SabLab Internal Link Builder Plugin up to 1.0 on WordPress cross-site request forgery
2 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in Alessandro Piconi SabLab Internal Link Builder Plugin up to 1.0 on WordPress. This issue affects some unknown processing. The manipulation leads to cross-site request forgery.
The identification of this vulnerability is CVE-2025-23989. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-23985 | Brainvireinfo Dynamic URL SEO Plugin up to 1.0 on WordPress cross-site request forgery
2 months 3 weeks ago
A vulnerability classified as problematic was found in Brainvireinfo Dynamic URL SEO Plugin up to 1.0 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery.
This vulnerability was named CVE-2025-23985. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-23759 | leduchuy89vn Affiliate Tools Việt Nam Plugin up to 0.3.17 on WordPress cross site scripting
2 months 3 weeks ago
A vulnerability classified as problematic has been found in leduchuy89vn Affiliate Tools Việt Nam Plugin up to 0.3.17 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2025-23759. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-23987 | CodegearThemes Designer Plugin up to 1.6.0 on WordPress cross site scripting
2 months 3 weeks ago
A vulnerability was found in CodegearThemes Designer Plugin up to 1.6.0 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2025-23987. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2025-23671 | Fabio Savina WP OpenSearch Plugin up to 1.0 on WordPress cross site scripting
2 months 3 weeks ago
A vulnerability was found in Fabio Savina WP OpenSearch Plugin up to 1.0 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2025-23671. The attack can be launched remotely. There is no exploit available.
vuldb.com
【实操】美国客机与黑鹰直升机相撞的视频、音频、轨迹回放及遇难机组和乘客
2 months 3 weeks ago
美国客机与黑鹰直升机相撞的视频、音频、轨迹回放及遇难机组人员和乘客情况。
CVE-2025-22564 | Faaiq Pretty Url Plugin up to 1.5.4 on WordPress cross site scripting
2 months 3 weeks ago
A vulnerability was found in Faaiq Pretty Url Plugin up to 1.5.4 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2025-22564. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-23596 | Notifikácie.sk Plugin up to 1.0 on WordPress cross site scripting
2 months 3 weeks ago
A vulnerability was found in Notifikácie.sk Plugin up to 1.0 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2025-23596. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-44055 | Oshine Modules Plugin up to 3.3.7 on WordPress server-side request forgery
2 months 3 weeks ago
A vulnerability, which was classified as critical, was found in Oshine Modules Plugin up to 3.3.7 on WordPress. This affects an unknown part. The manipulation leads to server-side request forgery.
This vulnerability is uniquely identified as CVE-2024-44055. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-23989 | Alessandro Piconi SabLab Internal Link Builder Plugin up to 1.0 on WordPress cross-site request forgery
2 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in Alessandro Piconi SabLab Internal Link Builder Plugin up to 1.0 on WordPress. This issue affects some unknown processing. The manipulation leads to cross-site request forgery.
The identification of this vulnerability is CVE-2025-23989. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-23985 | Brainvireinfo Dynamic URL SEO Plugin up to 1.0 on WordPress cross-site request forgery
2 months 3 weeks ago
A vulnerability classified as problematic was found in Brainvireinfo Dynamic URL SEO Plugin up to 1.0 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery.
This vulnerability was named CVE-2025-23985. The attack can be initiated remotely. There is no exploit available.
vuldb.com