Aggregator

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.2.12. It has been declared as critical. This vulnerability affects unknown code of the file remover_produto.php. The manipulation leads to sql injection. This vulnerability was named CVE-2025-26611. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.2.12. It has been classified as critical. This affects an unknown part of the file restaurar_produto_desocultar.php. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2025-26610. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.2.12 and classified as critical. Affected by this issue is some unknown functionality of the file dependente_docdependente.php. The manipulation leads to sql injection. This vulnerability is handled as CVE-2025-26608. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in LabRedesCefetRJ WeGIA up to 3.2.12 and classified as critical. Affected by this vulnerability is an unknown functionality of the file familiar_docfamiliar.php. The manipulation leads to sql injection. This vulnerability is known as CVE-2025-26609. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in LabRedesCefetRJ WeGIA up to 3.2.12. Affected is an unknown function of the file documento_excluir.php. The manipulation leads to sql injection. This vulnerability is traded as CVE-2025-26607. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in LabRedesCefetRJ WeGIA up to 3.2.12. This issue affects some unknown processing of the file informacao_adicional.php. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-26606. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in LabRedesCefetRJ WeGIA up to 3.2.12. This vulnerability affects unknown code of the file deletar_cargo.php. The manipulation leads to sql injection. This vulnerability was named CVE-2025-26605. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in LabRedesCefetRJ WeGIA up to 3.2.13. This affects an unknown part of the file gerenciar_backup.php. The manipulation leads to os command injection. This vulnerability is uniquely identified as CVE-2025-26613. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Juniper Networks has addressed a critical vulnerability, tracked as CVE-2025-21589, impacting the Session Smart Router. Juniper Networks addressed a critical authentication bypass vulnerability, tracked as CVE-2025-21589 (CVSS score of 9.8), affecting its Session Smart Router product. “An Authentication Bypass Using an Alternate Path or Channel vulnerability in Juniper Networks Session Smart Router may allow a network-based […]

Attackers are using patched bugs to potentially gain unfettered access to an organization's Windows environment under certain conditions.

Winnti once used a variety of malware but is now focused on SQL vulnerabilities and obfuscation, updated encryption, and new evasion methods to gain access.

A large-scale malware campaign dubbed "StaryDobry" has been targeting gamers worldwide with trojanized versions of cracked games such as Garry's Mod, BeamNG.drive, and Dyson Sphere Program. [...]