Aggregator

A vulnerability was found in WAVLINK WS-WN572HP3 230525. It has been rated as critical. Affected by this issue is some unknown functionality of the file /www/cgi-bin/upload.cgi. The manipulation leads to buffer overflow. This vulnerability is handled as CVE-2025-44879. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in 74cmsSE 3.13.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /apiadmin/upload/attach. The manipulation leads to unrestricted upload. This vulnerability is known as CVE-2022-42154. The attack needs to be initiated within the local network. There is no exploit available.

A vulnerability was found in hailey888 oa_system. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /daymanager/daymanageabilitycontroller.java. The manipulation of the argument Title leads to cross site scripting. This vulnerability is handled as CVE-2025-29688. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Intel Gaudi Software Installer up to 1.17. Affected by this vulnerability is an unknown functionality. The manipulation leads to incorrect default permissions. This vulnerability is known as CVE-2024-45067. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in OA System 1.8.3. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /inform/InformManageController.java. The manipulation of the argument Title leads to cross site scripting. This vulnerability is known as CVE-2025-29686. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

2024 年 3 月 18 日，毅力号（Perseverance）火星探测车在杰泽罗陨石坑的夜空中，成功捕捉到可光见波段的绿色极光。此项发现不仅是技术上的突破，也为研究太阳与火星之间交的互作用开启了全新途径。极光是太阳风中的高能粒子与行星际磁场、行星高层大气交互作用产生的发光现象。尽管早已证实火星上会出现紫外光波段的极光，但可见光波段的极光从未直接被观测到。虽然火星仅拥有约地球 2% 的稀薄大气以及局部、残留的磁场，这些磁场来自古老地壳中的磁性矿物，无法像地球般形成全球性磁层。但是这些局部磁场仍可诱发极光活动，特别是在太阳剧烈活动的期间。2024 年 3 月 15 日，太阳发生一次日冕物质抛射（CME），大量带电粒子冲击火星。几日后，毅力号搭载的日间光学仪器成功记录下夜空中微弱的绿色极光。

Один PoC — и вся инфраструктура в руках хакеров.

Most online merchants now believe customers pose as big a threat as professional fraudsters

A vulnerability classified as critical has been found in PHPGurukul Beauty Parlour Management System 1.1. Affected is an unknown function of the file /contact.php. The manipulation of the argument fname leads to sql injection. This vulnerability is traded as CVE-2025-4758. It is possible to launch the attack remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

A vulnerability was found in PHPGurukul Beauty Parlour Management System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The identification of this vulnerability is CVE-2025-4757. The attack may be initiated remotely. Furthermore, there is an exploit available.

Submit #571306 / VDB-309060

Submit #571303 / VDB-309059

A vulnerability was found in D-Link DI-7003GV2 24.04.18D1 R(68125). It has been declared as problematic. This vulnerability affects unknown code of the file /H5/restart.asp. The manipulation leads to denial of service. This vulnerability was named CVE-2025-4756. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

A vulnerability was found in D-Link DI-7003GV2 24.04.18D1 R(68125). It has been classified as critical. This affects the function sub_497DE4 of the file /H5/netconfig.asp. The manipulation leads to improper authentication. This vulnerability is uniquely identified as CVE-2025-4755. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

A vulnerability was found in D-Link DI-7003GV2 24.04.18D1 R(68125) and classified as problematic. Affected by this issue is some unknown functionality of the file /login.data. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2025-4753. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

A vulnerability has been found in D-Link DI-7003GV2 24.04.18D1 R(68125) and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /install_base.data. The manipulation leads to information disclosure. This vulnerability is known as CVE-2025-4752. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

A vulnerability, which was classified as problematic, was found in D-Link DI-7003GV2 24.04.18D1 R(68125). Affected is an unknown function of the file /index.data. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2025-4751. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

A vulnerability, which was classified as problematic, has been found in D-Link DI-7003GV2 24.04.18D1 R(68125). This issue affects some unknown processing of the file /H5/get_version.data of the component Configuration Handler. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2025-4750. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

A vulnerability classified as critical was found in D-Link DI-7003GV2 24.04.18D1 R(68125). This vulnerability affects the function sub_4983B0 of the file /H5/backup.asp?opt=reset of the component Factory Reset Handler. The manipulation leads to denial of service. This vulnerability was named CVE-2025-4749. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.