#Infosec2025: UK Retail Hack Was 'Subtle, Not Complex,' Says River Island CISO
The attacks on UK retailers are “a wake-up call” for the industry, said River Island’s Information Security Officer
Aggregator
Phishing Campaign Uses Fake Booking.com Emails to Deliver Malware
3 months ago
A phishing campaign spoofing Booking.com has been observed targeting hospitality sector, using ClickFix to install malware
Submit #590120: code-projects Health Center Patient Record Management System 1.0 SQL Injection [Accepted]
3 months ago
Submit #590120 / VDB-311162
baihaiou
Submit #590098: TOTOLINK X2000R--V2 <=V2.0.0-B20230727.1043 Buffer Overflow [Duplicate]
3 months ago
Submit #590098 / VDB-243418
wanglun_
Submit #590097: TOTOLINK X2000R--V2 <=V2.0.0-B20230727.1043 Buffer Overflow [Duplicate]
3 months ago
Submit #590097 / VDB-243397
wanglun_
CVE-2025-5670 | PHPGurukul Medical Card Generation System 1.0 /admin/manage-card.php ID sql injection
3 months ago
A vulnerability, which was classified as critical, has been found in PHPGurukul Medical Card Generation System 1.0. This issue affects some unknown processing of the file /admin/manage-card.php. The manipulation of the argument ID leads to sql injection.
The identification of this vulnerability is CVE-2025-5670. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-5669 | PHPGurukul Medical Card Generation System 1.0 /admin/unreadenq.php ID sql injection
3 months ago
A vulnerability classified as critical was found in PHPGurukul Medical Card Generation System 1.0. This vulnerability affects unknown code of the file /admin/unreadenq.php. The manipulation of the argument ID leads to sql injection.
This vulnerability was named CVE-2025-5669. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-5668 | PHPGurukul Medical Card Generation System 1.0 /admin/readenq.php ID sql injection
3 months ago
A vulnerability classified as critical has been found in PHPGurukul Medical Card Generation System 1.0. This affects an unknown part of the file /admin/readenq.php. The manipulation of the argument ID leads to sql injection.
This vulnerability is uniquely identified as CVE-2025-5668. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #590095: TOTOLINK X2000R-V2 <=V2.0.0-B20230727.1043 Buffer Overflow [Duplicate]
3 months ago
Submit #590095 / VDB-243410
wanglun_
Submit #590094: TOTOLINK N302R-Plus <=V3.4.0-B20201028 Buffer Overflow [Accepted]
3 months ago
Submit #590094 / VDB-311161
wanglun_
Submit #590093: TOTOLINK N302R-Plus <=V3.4.0-B20201028 Buffer Overflow [Accepted]
3 months ago
Submit #590093 / VDB-311160
wanglun_
CVE-2025-5667 | FreeFloat FTP Server 1.0 REIN Command buffer overflow
3 months ago
A vulnerability was found in FreeFloat FTP Server 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component REIN Command Handler. The manipulation leads to buffer overflow.
This vulnerability is handled as CVE-2025-5667. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-5666 | FreeFloat FTP Server 1.0 XMKD Command buffer overflow
3 months ago
A vulnerability was found in FreeFloat FTP Server 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component XMKD Command Handler. The manipulation leads to buffer overflow.
This vulnerability is known as CVE-2025-5666. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-5665 | FreeFloat FTP Server 1.0 XCWD Command buffer overflow
3 months ago
A vulnerability was found in FreeFloat FTP Server 1.0. It has been classified as critical. Affected is an unknown function of the component XCWD Command Handler. The manipulation leads to buffer overflow.
This vulnerability is traded as CVE-2025-5665. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-5664 | FreeFloat FTP Server 1.0 RESTART Command buffer overflow
3 months ago
A vulnerability was found in FreeFloat FTP Server 1.0 and classified as critical. This issue affects some unknown processing of the component RESTART Command Handler. The manipulation leads to buffer overflow.
The identification of this vulnerability is CVE-2025-5664. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Chaos RAT Malware Targets Windows and Linux via Fake Network Tool Downloads
3 months ago
Threat hunters are calling attention to a new variant of a remote access trojan (RAT) called Chaos RAT that has been used in recent attacks targeting Windows and Linux systems.
According to findings from Acronis, the malware artifact may have been distributed by tricking victims into downloading a network troubleshooting utility for Linux environments.
"Chaos RAT is an open-source RAT written in
The Hacker News
CVE-2025-5663 | PHPGurukul Auto Taxi Stand Management System 1.0 search-autoortaxi.php searchdata sql injection
3 months ago
A vulnerability has been found in PHPGurukul Auto Taxi Stand Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/search-autoortaxi.php. The manipulation of the argument searchdata leads to sql injection.
This vulnerability was named CVE-2025-5663. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #590066: PHPGurukul Medical Card Generation System 1.0 SQL Injection [Accepted]
3 months ago
Submit #590066 / VDB-311159
Submit #590065: PHPGurukul Medical Card Generation System 1.0 SQL Injection [Accepted]
3 months ago
Submit #590065 / VDB-311158
Submit #590064: PHPGurukul Medical Card Generation System 1.0 SQL Injection [Accepted]
3 months ago
Submit #590064 / VDB-311157