Aggregator

Submit #569855 / VDB-309022

Submit #569542 / VDB-308086

A vulnerability was found in Campcodes Sales and Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /pages/cash_transaction.php. The manipulation of the argument cid leads to sql injection. This vulnerability is handled as CVE-2025-4719. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Campcodes Sales and Inventory System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /pages/customer_add.php. The manipulation of the argument last leads to sql injection. This vulnerability is known as CVE-2025-4718. The attack can be launched remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

华纳兄弟探索(Warner Bros. Discovery)宣布旗下流媒体服务的名字将从 Max 恢复为 HBO Max，两年前该公司将名字中的 HBO 移除。HBO 是非常知名的娱乐品牌，Max 很难说会因为字数少而更容易记忆，因此会更受用户青睐。华纳兄弟探索在改名新闻稿中表示，HBO 品牌资产在流媒体领域仍然具有价值。

A vulnerability, which was classified as critical, was found in PHPGurukul Company Visitor Management System 2.0. Affected is an unknown function of the file /visitors-form.php. The manipulation of the argument fullname leads to sql injection. This vulnerability is traded as CVE-2025-4717. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #569392 / VDB-308225

Submit #569150 / VDB-307432

Submit #568467 / VDB-308087

Submit #568387 / VDB-309020

Submit #568386 / VDB-309019

A vulnerability, which was classified as problematic, has been found in Microsoft Windows. This issue affects some unknown processing of the component xrm-ms File Handler. The manipulation leads to xml injection. The attack may be initiated remotely. Furthermore, there is an exploit available.

Submit #568331 / VDB-309018

Submit #568338 / VDB-307436

Submit #568328 / VDB-307485

Submit #568326 / VDB-307476

Google’s AlphaEvolve AI redefines algorithm creation, enhancing efficiency in data centers and revolutionizing real-world applications. Learn more!

The post Google DeepMind’s AlphaEvolve: AI That Writes Code and Saves Costs appeared first on Security Boulevard.

A vulnerability classified as problematic was found in Hitachi JP1 IT Desktop Management 2 on Windows. This vulnerability affects unknown code. The manipulation leads to xml external entity reference. This vulnerability was named CVE-2025-27523. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Hitachi JP1 IT Desktop Management 2 on Windows. This affects an unknown part. The manipulation leads to inadequate encryption strength. This vulnerability is uniquely identified as CVE-2025-27524. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Submit #568300 / VDB-309017