Aggregator

CVE-2025-5542 | TOTOLINK X2000R 1.0.0-B20230726.1108 Virtual Server Page /boafrm/formPortFw service_type cross site scripting (EUVD-2025-16792)

VulDB Recent Entries
10 months ago
A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formPortFw of the component Virtual Server Page. The manipulation of the argument service_type leads to cross site scripting. This vulnerability is traded as CVE-2025-5542. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-5539 | Simplify Contact Management Plugin up to 4.0.0 on WordPress Shortcode emd_mb_meta cross site scripting (EUVD-2025-16817)

VulDB Recent Entries
10 months ago
A vulnerability was found in Simplify Contact Management Plugin up to 4.0.0 on WordPress and classified as problematic. This issue affects the function emd_mb_meta of the component Shortcode Handler. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2025-5539. The attack may be initiated remotely. There is no exploit available.
vuldb.com

The growing chaos of AI agents: Why your identity architecture is headed for trouble

Security Boulevard
10 months ago

AI agents are becoming central to how work gets done — from handling customer service chats to triggering infrastructure automation. But while the hype around agentic AI is reaching a fever pitch, most enterprises are already encountering a less glamorous reality: Their identity infrastructure can’t handle the agents. We’re seeing early signs of a pattern...

The post The growing chaos of AI agents: Why your identity architecture is headed for trouble appeared first on Strata.io.

The post The growing chaos of AI agents: Why your identity architecture is headed for trouble appeared first on Security Boulevard.

Eric Olden

INC

Dark Feed IO
10 months ago

You must login to view this content

cohenido

CVE-2025-5532 | Campus Directory Plugin up to 1.9.0 on WordPress Shortcode emd_mb_meta cross site scripting (EUVD-2025-16820)

VulDB Recent Entries
10 months ago
A vulnerability has been found in Campus Directory Plugin up to 1.9.0 on WordPress and classified as problematic. This vulnerability affects the function emd_mb_meta of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2025-5532. The attack can be initiated remotely. There is no exploit available.
vuldb.com

CVE-2025-5531 | Employee Directory Plugin up to 4.5.0 on WordPress Shortcode emd_mb_meta cross site scripting (EUVD-2025-16821)

VulDB Recent Entries
10 months ago
A vulnerability, which was classified as problematic, was found in Employee Directory Plugin up to 4.5.0 on WordPress. This affects the function emd_mb_meta of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-5531. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

Securing Legacy Systems Strategies for Modernizing Old Tech

Cyber Security News
10 months ago

As enterprises race to embrace digital transformation, many find themselves shackled to legacy systems—aging yet mission-critical technologies that power core business operations. While these systems often function reliably for their intended tasks, their outdated architectures expose organizations to security risks and operational inefficiencies. The challenge is securing and modernizing these technological relics without jeopardizing business […]

The post Securing Legacy Systems Strategies for Modernizing Old Tech appeared first on Cyber Security News.

CISO Advisory

CVE-2025-44148 | MailEnable up to 9 failure.aspx cross site scripting (EUVD-2025-16734)

VulDB Recent Entries
10 months ago
A vulnerability classified as problematic was found in MailEnable up to 9. Affected by this vulnerability is an unknown functionality of the file failure.aspx. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2025-44148. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad