Aggregator

CVE-2024-56226 | WP Royal Royal Elementor Addons Plugin up to 1.7.1001 on WordPress cross site scripting(link is external)

Vuldb Updates
5 months 1 week ago
A vulnerability has been found in WP Royal Royal Elementor Addons Plugin up to 1.7.1001 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-56226. The attack can be initiated remotely. There is no exploit available.
vuldb.com

CVE-2025-2608 | PHPGurukul Banquet Booking System 1.2 view-user-queries.php viewid sql injection(link is external)

VulDB Recent Entries
5 months 1 week ago
A vulnerability classified as critical has been found in PHPGurukul Banquet Booking System 1.2. This affects an unknown part of the file /admin/view-user-queries.php. The manipulation of the argument viewid leads to sql injection. This vulnerability is uniquely identified as CVE-2025-2608. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

UAT-5918 Targets Taiwan's Critical Infrastructure Using Web Shells and Open-Source Tools(link is external)

The Hackers News
5 months 1 week ago
Threat hunters have uncovered a new threat actor named UAT-5918 that has been attacking critical infrastructure entities in Taiwan since at least 2023. "UAT-5918, a threat actor believed to be motivated by establishing long-term access for information theft, uses a combination of web shells and open-sourced tooling to conduct post-compromise activities to establish persistence in victim
The Hacker News

Managed ad