[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.]

@CVEnew Avatar @CVEnew CVE

CVE posts on X about $2395tw, command, ibm, elements the most. They currently have XXXXXX followers and XXX posts still getting attention that total XXXXX engagements in the last XX hours.

Engagements: XXXXX #

Engagements Line Chart

Mentions: XXX #

Mentions Line Chart

Followers: XXXXXX #

Followers Line Chart

CreatorRank: XXXXXXX #

CreatorRank Line Chart

Social Influence

Social category influence technology brands XXXX% stocks XXX% finance XXXX% social networks XXXX% cryptocurrencies XXXX%

Social topic influence $2395tw #6, command #909, ibm 0.96%, elements #1059, to the 0.82%, embedded #105, core 0.82%, os #1791, linksys #6, $googl XXXX%

Top accounts mentioned or mentioned by @cveannounce @tiptapextensionlink @chaeynz_ @kundu_vinit

Top assets mentioned IBM (IBM) Alphabet Inc Class A (GOOGL) ELYSIA (EL) QUALCOMM, Inc. (QCOM)

Top Social Posts

Top posts by engagements in the last XX hours

"CVE-2025-13086 Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.7_rc1 allows an attacker to open a session from a different IP address which did not ini"
X Link 2025-12-03T20:19Z 56K followers, XXX engagements

"CVE-2025-67485 mad-proxy is a Python-based HTTP/HTTPS proxy server for detection and blocking of malicious web activity using custom security policies. Versions XXX and below allow"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-64898 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthoriz"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47723 STVS ProVision 5.9.10 contains a cross-site request forgery vulnerability that allows attackers to perform actions with administrative privileges by exploiting unvali"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47718 OpenBMCS XXX contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive files by exploiting directory listing function"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-64896 Creative Cloud Desktop versions 6.4.0.361 and earlier are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could le"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47706 COMMAX Biometric Access Control System 1.0.0 contains an authentication bypass vulnerability that allows unauthenticated attackers to access sensitive information and"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-66626 Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Versions 3.6.13 and below and versions 3.7.0 through"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-14335 A vulnerability has been found in itsourcecode Student Management System XXX. Affected by this vulnerability is an unknown functionality of the file /new_school_year"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-53963 An issue was discovered on Thermo Fisher Ion Torrent OneTouch X INS1005527 devices. They run an SSH server accessible over the default port XX. The root account has a"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54303 The Thermo Fisher Torrent Suite Django application 5.18.1 has weak default credentials which are stored as fixtures for the Django ORM API. The ionadmin user account"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54304 An issue was discovered on Thermo Fisher Ion Torrent OneTouch X INS1005527 devices. When they are powered on an X11 display server is started. The display server lis"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54305 An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. One of the middlewares included in this application LocalhostAuthMiddleware au"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54306 An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. A remote code execution vulnerability exists in the network configuration functi"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54307 An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. The /configure/plugins/plugin/upload/zip/ and /configure/newupdates/offline/bund"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-13373 Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162) requests which could allow an attacker to inject SQL commands"
X Link 2025-12-04T23:16Z 56K followers, XXX engagements

"CVE-2025-34256 Advantech WISE-DeviceOn Server versions prior to 5.4contain a hard-coded cryptographic key vulnerability. The product uses a static HS512 HMAC secret for signing EIR"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34265 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/rule-engines endpoint. When an authentic"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34263 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/plugin-config/dashboards/menus endpoint"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34266 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/plugin-config/addins/menus endpoint. Whe"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34264 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/dog/agentId endpoint. When an authenti"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34262 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devices/name/agent_id endpoint. When a"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34258 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicemap/plan endpoint. When an authent"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34259 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicemap/building endpoint. When an aut"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34261 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicegroups/ endpoint. When an authenti"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34260 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/action/schedule endpoint. When an authen"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34257 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/action/defined endpoint. When an authent"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-48622 In ProcessArea of dng_misc_opcodes.cpp there is a possible out of bounds read due to a buffer overflow. This could lead to local information disclosure with no addit"
X Link 2025-12-08T17:17Z 56K followers, XXX engagements

"CVE-2025-36017 IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6stores unencrypted sensitive information in environmental variables files whi"
X Link 2025-12-08T21:53Z 56K followers, XXX engagements

"CVE-2025-14276 A vulnerability was determined in Ilevia EVE X1 Server up to 4.6.5.0.eden. Impacted is an unknown function of the file /ajax/php/leaf_search.php. This manipulation of"
X Link 2025-12-08T21:53Z 56K followers, XXX engagements

"CVE-2025-36102 IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could allow a privileged user to bypass validation passing user input into t"
X Link 2025-12-08T21:53Z 56K followers, XXX engagements

"CVE-2025-12635 IBM WebSphere Application Server XXX XXX and IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.12 are affected by cross-site scripting due to improper"
X Link 2025-12-08T22:16Z 56K followers, XXX engagements

"CVE-2025-64650 IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.18 could disclose sensitive user credentials in log files"
X Link 2025-12-08T22:16Z 56K followers, XXX engagements

"CVE-2025-12832 IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery (SSRF). This may allow an authenticatedattacker to send unau"
X Link 2025-12-08T22:16Z 56K followers, XXX engagements

"CVE-2025-36140 IBM XXX through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to improper allocation of resources witho"
X Link 2025-12-08T22:37Z 56K followers, XXX engagements

"CVE-2025-62408 c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using read_answer() and process_answer() wh"
X Link 2025-12-08T22:37Z 56K followers, XXX engagements

"CVE-2025-64499 Tuleap is a free and open source suite for management of software development and collaboration. Tuleap Community Editon versions prior to 17.0.99.1762456922 and Tule"
X Link 2025-12-08T22:52Z 56K followers, XXX engagements

"CVE-2025-64498 Tuleap is an Open Source Suite for management of software development and collaboration. Tuleap Community Edition versions below 17.0.99.1762444754 and Tuleap Enterpr"
X Link 2025-12-08T22:52Z 56K followers, XXX engagements

"CVE-2025-64497 Tuleap is an Open Source Suite for management of software development and collaboration. Versions below 17.0.99.1762431347 of Tuleap Community Edition and Tuleap Ent"
X Link 2025-12-08T22:52Z 56K followers, XXX engagements

"CVE-2025-65962 Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763803709 and"
X Link 2025-12-08T23:33Z 56K followers, XXX engagements

"CVE-2025-64760 Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763126988 and"
X Link 2025-12-08T23:33Z 56K followers, XXX engagements

"CVE-2025-66202 Astro is a web framework. Versions 5.15.7 and below have a double URL encoding bypass which allows any unauthenticated attacker to bypass path-based authentication ch"
X Link 2025-12-08T23:50Z 56K followers, XXX engagements

"CVE-2025-65964 n8n is an open source workflow automation platform. Versions 0.123.1 through 1.119.1 do not have adequate protections to prevent RCE through the project's pre-commit"
X Link 2025-12-08T23:50Z 56K followers, XXX engagements

"CVE-2025-66491 Traefik is an HTTP reverse proxy and load balancer. Versions 3.5.0 through 3.6.2 have inverted TLS verification logic in the"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2025-66490 Traefik is an HTTP reverse proxy and load balancer. For versions prior to 2.11.32 and 2.11.31 through 3.6.2 requests using PathPrefix Path or PathRegex matchers can"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2025-66481 DeepChat is an open-source AI chat platform that supports cloud models and LLMs. Versions 0.5.1 and below are vulnerable to XSS attacks through improperly sanitized M"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2013-10031 Plack-Middleware-Session versions before XXXX may be vulnerable to HMAC comparison timing attacks"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2025-66470 NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are subject to a XSS vulnerability through the ui.interactive_image component of NiceGUI. The compone"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53819 In the Linux kernel the following vulnerability has been resolved: amdgpu: validate offset_in_bo of drm_amdgpu_gem_va This is motivated by OOB access in amdgpu_vm_"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53818 In the Linux kernel the following vulnerability has been resolved: ARM: zynq: Fix refcount leak in zynq_early_slcr_init of_find_compatible_node() returns a node po"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53817 In the Linux kernel the following vulnerability has been resolved: crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() During NVMeTCP Authentication a contr"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53816 In the Linux kernel the following vulnerability has been resolved: drm/amdkfd: fix potential kgd_mem UAFs kgd_mem pointers returned by kfd_process_device_translate"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53815 In the Linux kernel the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimer_delete() itimer_delete() has a retry loop when the t"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53814 In the Linux kernel the following vulnerability has been resolved: PCI: Fix dropping valid root bus resources with .end = zero On r8a7791/koelsch: kmemleak: X n"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53813 In the Linux kernel the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated During allocations while looking for"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53812 In the Linux kernel the following vulnerability has been resolved: media: mediatek: vcodec: fix decoder disable pm crash Can't call pm_runtime_disable when the arc"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53854 In the Linux kernel the following vulnerability has been resolved: ASoC: mediatek: mt8186: Fix use-after-free in driver remove path When devm runs function in the"
X Link 2025-12-09T02:57Z 56K followers, XXX engagements

"CVE-2025-40941 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected devices exposes server information in its responses. This could allow an"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40940 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected application exhibits inconsistent SNMP behavior such as unexpected servi"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40939 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected device contains a USB port which allows unauthenticated connections. This"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40938 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected device stores sensitive information in the firmware. This could allow an"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40937 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected application do not properly validate input parameters in its REST API re"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40935 A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions V5.10.1) RUGGEDCOM RS416Pv2 V5.X (All versions V5.10.1) RUGGEDCOM RS416v2 V5.X (All"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40831 A vulnerability has been identified in SINEC Security Monitor (All versions V4.10.0). The affected application lacks input validation of date parameter in report ge"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40830 A vulnerability has been identified in SINEC Security Monitor (All versions V4.10.0). The affected application does not have proper authorization checks for the fil"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40819 A vulnerability has been identified in SINEMA Remote Connect Server (All versions V3.2 SP4). Affected applications do not properly validate license restrictions aga"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40818 A vulnerability has been identified in SINEMA Remote Connect Server (All versions V3.2 SP4). Affected applications contain private SSL/TLS keys on the server that a"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40807 A vulnerability has been identified in Gridscale X Prepay (All versions V4.2.1). The affected application is vulnerable to capture-replay of authentication tokens"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40806 A vulnerability has been identified in Gridscale X Prepay (All versions V4.2.1). The affected application is vulnerable to user enumeration due to distinguishable r"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40801 A vulnerability has been identified in COMOS V10.6 (All versions) COMOS V10.6 (All versions) JT Bi-Directional Translator for STEP (All versions) NX V2412 (All ver"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40800 A vulnerability has been identified in COMOS V10.6 (All versions) COMOS V10.6 (All versions) NX V2412 (All versions V2412.8700) NX V2506 (All versions V2506.60"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2024-56840 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). Under certain conditions IPsec may allow code injection in the affected devi"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2024-56839 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). Code injection can be achieved when the affected device is using VRF (Virtual"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2024-56838 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). The SCEP client available in the affected device for secure certificate enrol"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2024-56837 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). Due to the insufficient validation during the installation and load of certai"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2024-56836 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). During the Dynamic DNS configuration of the affected product it is possible t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2024-56835 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). The DHCP Server configuration file of the affected products is subject to cod"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-59029 An attacker can trigger an assertion failure by requesting crafted DNS records waiting for them to be inserted into the records cache then send a query with qtype s"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-59030 An attacker can trigger the removal of cached records by sending a NOTIFY query over TCP"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-66271 Clone for Windows provided by ELECOM CO.LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the sy"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-64696 Android App "Brother iPrint&Scan" versions 6.13.7 and earlier improperly uses an external cache directory. If exploited application-specific files may be accessed fr"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41693 A low privileged remote attacker can use the ssh feature to execute commands directly after login. The process stays open and uses resources which leads to a reduced"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41696 An attacker can use an undocumented UART port on the PCB as a side-channel with the user hardcoded credentials obtained from CVE-2025-41692 to gain read access to par"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41694 A low privileged remote attacker can run the webshell with an empty command containing whitespace. The server will then block until it receives more data resulting i"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41692 A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password gene"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41697 An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41695 An XSS vulnerability in dyn_conn.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41745 An XSS vulnerability in pxc_portCntr2.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the d"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41746 An XSS vulnerability in pxc_portSecCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41747 An XSS vulnerability in pxc_vlanIntfCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41748 An XSS vulnerability in pxc_Dot1xCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacke"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41749 An XSS vulnerability in port_util.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker i"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41750 An XSS vulnerability in pxc_PortCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41751 An XSS vulnerability in pxc_portCntr.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacke"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41752 An XSS vulnerability in pxc_portSfp.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14310 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14309 NULL Pointer Dereference vulnerability in ravynsoft ravynos.This issue affects ravynos: through 0.5.2"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14308 An integer overflow vulnerability exists in the write method of the Buffer class in Robocode version 1.9.3.6. The method fails to properly validate the length of data"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14307 An insecure temporary file creation vulnerability exists in the AutoExtract component of Robocode version 1.9.3.6. The createTempFile method fails to securely create"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14306 A directory traversal vulnerability exists in the CacheCleaner component of Robocode version 1.9.3.6. The recursivelyDelete method fails to properly sanitize file pat"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13428 A vulnerability exists in the SecOps SOAR server. The custom integrations feature allowed an authenticated user with an "IDE role" to achieve Remote Code Execution (R"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13071 The Custom Admin Menu WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page leading to a Reflected Cross-Site"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13070 The CSV to SortTable WordPress plugin through XXX does not validate some shortcode attributes before using them to generate paths passed to include function/s allowi"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13031 The WPeMatico RSS Feed Fetcher WordPress plugin before 2.8.13 does not sanitize and escape some of its settings which could allow high privilege users such as contri"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14284 Versions of the package @tiptap/extension-link before 2.10.4 are vulnerable to Cross-site Scripting (XSS) due to unsanitized user input allowed in setting or toggling"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13604 The Login Security FireWall Malware removal by CleanTalk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the page URL in all versions up to a"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40344 In the Linux kernel the following vulnerability has been resolved: ASoC: Intel: avs: Disable periods-elapsed work when closing PCM avs_dai_fe_shutdown() handles th"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40343 In the Linux kernel the following vulnerability has been resolved: nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40342 In the Linux kernel the following vulnerability has been resolved: nvme-fc: use lock accessing port_state and rport state nvme_fc_unregister_remote removes the rem"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40341 In the Linux kernel the following vulnerability has been resolved: futex: Don't leak robust_list pointer on exec race sys_get_robust_list() and compat_get_robust_l"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40340 In the Linux kernel the following vulnerability has been resolved: drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test. I saw an oops in xe_gem_fault"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40339 In the Linux kernel the following vulnerability has been resolved: drm/amdgpu: fix nullptr err of vm_handle_moved If a amdgpu_bo_va is fpriv-prt_va the bo of thi"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40338 In the Linux kernel the following vulnerability has been resolved: ASoC: Intel: avs: Do not share the name pointer between components By sharing 'name' directly t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40337 In the Linux kernel the following vulnerability has been resolved: net: stmmac: Correctly handle Rx checksum offload errors The stmmac_rx function would previously"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40336 In the Linux kernel the following vulnerability has been resolved: drm/gpusvm: fix hmm_pfn_to_map_order() usage Handle the case where the hmm range partially cover"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40335 In the Linux kernel the following vulnerability has been resolved: drm/amdgpu: validate userq input args This will help on validating the userq input args and rej"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40334 In the Linux kernel the following vulnerability has been resolved: drm/amdgpu: validate userq buffer virtual address and size It needs to validate the userq object"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40333 In the Linux kernel the following vulnerability has been resolved: f2fs: fix infinite loop in __insert_extent_tree() When we get wrong extent info data and look u"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40332 In the Linux kernel the following vulnerability has been resolved: drm/amdkfd: Fix mmap write lock not release If mmap write lock is taken while draining retry fau"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40331 In the Linux kernel the following vulnerability has been resolved: sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock sc"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40330 In the Linux kernel the following vulnerability has been resolved: bnxt_en: Shutdown FW DMA in bnxt_shutdown() The netif_close() call in bnxt_shutdown() only stops"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40329 In the Linux kernel the following vulnerability has been resolved: drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb The Mesa issue referenced below pointed"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40328 In the Linux kernel the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_close_cached_fid() find_or_create_cached_dir() could grab"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40327 In the Linux kernel the following vulnerability has been resolved: perf/core: Fix system hang caused by cpu-clock usage cpu-clock usage by the async-profiler tool"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-67487 Static Web Server (SWS) is a production-ready web server suitable for static web files or assets. Versions 2.40.0 and below contain symbolic links (symlinks) which ca"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-67504 WBCE CMS is a content management system. Versions 1.6.4 and below use function GenerateRandomPassword() to create passwords using PHP's rand(). rand() is not cryptogr"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-66631 CSLA .NET is a framework designed for the development of reusable object-oriented business layers for applications. Versions 5.5.4 and below allow the use of WcfProx"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-66627 Wasmi is a WebAssembly interpreter focused on constrained and embedded systems. In versions 0.41.0 0.41.1 0.42.0 through 0.47.1 0.50.0 through 0.51.2 and 1.0.0 Wa"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50662 In the Linux kernel the following vulnerability has been resolved: RDMA/hns: fix memory leak in hns_roce_alloc_mr() When hns_roce_mr_enable() failed in hns_roce_al"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50660 In the Linux kernel the following vulnerability has been resolved: wifi: ipw2200: fix memory leak in ipw_wdev_init() In the error path of ipw_wdev_init() exceptio"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-66507 1Panel is an open-source web-based control panel for Linux server management. Versions 2.0.13 and below allow an unauthenticated attacker to disable CAPTCHA verifica"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53820 In the Linux kernel the following vulnerability has been resolved: loop: loop_set_status_from_info() check before assignment In loop_set_status_from_info() lo-lo"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14285 A vulnerability was found in code-projects Employee Profile Management System XXX. Affected is an unknown function of the file edit_personnel.php. The manipulation of"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53811 In the Linux kernel the following vulnerability has been resolved: RDMA/irdma: Cap MSIX used to online CPUs + X The irdma driver can use a maximum number of msix v"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53810 In the Linux kernel the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blk_crypto_key"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53809 In the Linux kernel the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register() When a file descriptor of pppo"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53808 In the Linux kernel the following vulnerability has been resolved: wifi: mwifiex: fix memory leak in mwifiex_histogram_read() Always free the zeroed page on return"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53807 In the Linux kernel the following vulnerability has been resolved: clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider() Smatch detected this potential err"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53806 In the Linux kernel the following vulnerability has been resolved: drm/amd/display: populate subvp cmd info only for the top pipe Why System restart observed whi"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53805 In the Linux kernel the following vulnerability has been resolved: tty: n_gsm: fix UAF in gsm_cleanup_mux In gsm_cleanup_mux() the 'gsm-dlci' pointer was not clea"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53804 In the Linux kernel the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode() During unmount process of ni"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53803 In the Linux kernel the following vulnerability has been resolved: scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process() A fix for: BUG: KASAN: slab-o"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53802 In the Linux kernel the following vulnerability has been resolved: wifi: ath9k: htc_hst: free skb in ath9k_htc_rx_msg() if there is no callback function It is stat"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53801 In the Linux kernel the following vulnerability has been resolved: iommu/sprd: Release dma buffer to avoid memory leak When attaching to a domain the driver would"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53800 In the Linux kernel the following vulnerability has been resolved: ubi: Fix use-after-free when volume resizing failed There is an use-after-free problem reported"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53799 In the Linux kernel the following vulnerability has been resolved: crypto: api - Use work queue in crypto_destroy_instance The function crypto_drop_spawn expects t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53798 In the Linux kernel the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when se"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53797 In the Linux kernel the following vulnerability has been resolved: HID: wacom: Use ktime_t rather than int when dealing with timestamps Code which interacts with t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53796 In the Linux kernel the following vulnerability has been resolved: f2fs: fix information leak in f2fs_move_inline_dirents() When converting an inline directory to"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53795 In the Linux kernel the following vulnerability has been resolved: iommufd: IOMMUFD_DESTROY should not increase the refcount syzkaller found a race where IOMMUFD_D"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53794 In the Linux kernel the following vulnerability has been resolved: cifs: fix session state check in reconnect to avoid use-after-free issue Don't collect exiting s"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-63052 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Stored"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-62993 Missing Authorization vulnerability in rainafarai Notification for Telegram notification-for-telegram allows Exploiting Incorrectly Configured Access Control Security"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62739 Cross-Site Request Forgery (CSRF) vulnerability in SaifuMak Add Custom Codes add-custom-codes allows Cross Site Request Forgery.This issue affects Add Custom Codes: f"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-12046 A DLL hijacking vulnerability was reported in the Lenovo App Store and Lenovo Browser applications that could allow a local authenticated user to execute code with el"
X Link 2025-12-10T15:46Z 56K followers, XX engagements

"CVE-2025-63401 Cross Site Scripting vulnerability in HCL Technologies Limited HCLTech DRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via missing directives"
X Link 2025-12-03T18:54Z 56K followers, XXX engagements

"CVE-2025-63402 An issue in HCL Technologies Limited HCLTech GRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via APIs do not enforcing limits on the number o"
X Link 2025-12-03T18:54Z 56K followers, XXX engagements

"CVE-2025-66571 UNA CMS versions 9.0.0-RC1 - 14.0.0-RC4 contain a PHP object injection vulnerability in BxBaseMenuSetAclLevel.php where the profile_id POST parameter is passed to PHP"
X Link 2025-12-04T20:56Z 56K followers, XXX engagements

"CVE-2025-14133 A vulnerability was found in Linksys RE6500 RE6250 RE6300 RE6350 RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this vulne"
X Link 2025-12-06T10:50Z 56K followers, XXX engagements

"CVE-2025-14134 A vulnerability was determined in Linksys RE6500 RE6250 RE6300 RE6350 RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this"
X Link 2025-12-06T11:27Z 56K followers, XXX engagements

"CVE-2025-14135 A vulnerability was identified in Linksys RE6500 RE6250 RE6300 RE6350 RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the"
X Link 2025-12-06T11:50Z 56K followers, XXX engagements

"CVE-2025-14136 A security flaw has been discovered in Linksys RE6500 RE6250 RE6300 RE6350 RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnera"
X Link 2025-12-06T13:37Z 56K followers, XXX engagements

"CVE-2025-66461 FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers two Windows services with unquoted file paths. A user may execute arbitrary code with SYSTEM p"
X Link 2025-12-08T10:19Z 56K followers, XXX engagements

"CVE-2025-14311 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in JMRI.This issue affects JMRI: before 5.13.3"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50661 In the Linux kernel the following vulnerability has been resolved: seccomp: Move copy_seccomp() to no failure path. Our syzbot instance reported memory leaks in do"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50659 In the Linux kernel the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak for_each_pci_dev() is implemented by pci_get_device("
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50657 In the Linux kernel the following vulnerability has been resolved: riscv: mm: add missing memcpy in kasan_init Hi Atish It seems that the panic is due to the mis"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-67467 Cross-Site Request Forgery (CSRF) vulnerability in StellarWP GiveWP give allows Cross Site Request Forgery.This issue affects GiveWP: from n/a through = 4.13.1"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-66533 Improper Control of Generation of Code ('Code Injection') vulnerability in StellarWP GiveWP give allows Code Injection.This issue affects GiveWP: from n/a through ="
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-2296 EDK2 contains a vulnerability in BIOS where an attacker may cause Improper Input Validation by local access. Successful exploitation of this vulnerability could alte"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-14345 A post-authenticationflaw in the network two-phase commit protocol used for cross-shard transactions in MongoDB Server may lead to logical data inconsistencies under"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2024-38798 EDK2 contains a vulnerability in BIOS where an attacker may cause Exposure of Sensitive Information to an Unauthorized Actor by local access. Successful exploitatio"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63077 Missing Authorization vulnerability in HappyMonster Happy Addons for Elementor happy-elementor-addons allows Exploiting Incorrectly Configured Access Control Security"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63076 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Dream-Theme The7 Elements dt-the7-core allows"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63075 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in muffingroup Betheme betheme allows DOM-Based XSS.This issue affe"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63074 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Dream-Theme The7 dt-the7 allows PHP Local Fil"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63073 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dream-Theme The7 dt-the7 allows DOM-Based XSS.This issue affects"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63072 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in THEMECO Cornerstone cornerstone allows Stored XSS.This issue aff"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63071 Insertion of Sensitive Information Into Sent Data vulnerability in averta Shortcodes and extra features for Phlox theme auxin-elements allows Retrieve Embedded Sensit"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63070 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Download Manager download-manager allows Retrieve Embedded Sensit"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63069 Missing Authorization vulnerability in Vinod Dalvi Ivory Search add-search-to-menu allows Exploiting Incorrectly Configured Access Control Security Levels.This issue"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63068 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in sevenspark Contact Form X Dynamic Text Extension contact-form-7-dynamic"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63067 Missing Authorization vulnerability in p-themes Porto Theme - Functionality porto-functionality allows Exploiting Incorrectly Configured Access Control Security Level"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63066 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in p-themes Porto Theme - Functionality porto-functionality allows"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63065 Authorization Bypass Through User-Controlled Key vulnerability in David Lingren Media Library Assistant media-library-assistant allows Exploiting Incorrectly Configur"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63064 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ashanjay EventON eventon allows Stored XSS.This issue affects Ev"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63063 Missing Authorization vulnerability in Yandex Metrika Yandex.Metrica wp-yandex-metrika allows Exploiting Incorrectly Configured Access Control Security Levels.This is"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63062 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AndonDesign UDesign Core u-design-core allows"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63061 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in hogash Kallyas kallyas allows DOM-Based XSS.This issue affects K"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63060 Cross-Site Request Forgery (CSRF) vulnerability in hogash Kallyas kallyas.This issue affects Kallyas: from n/a through = 4.2"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63059 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in arscode Ninja Popups arscode-ninja-popups allows Stored XSS.This"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63058 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Hiroaki Miyashita Custom Field Template custom-field-template allows Retri"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63057 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review allows DOM-Based XS"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63056 Missing Authorization vulnerability in bestwebsoft Contact Form by BestWebSoft contact-form-plugin allows Exploiting Incorrectly Configured Access Control Security Le"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63055 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Liton Arefin Master Addons for Elementor master-addons allows St"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63054 Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Control Security Le"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63050 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sizam REHub Framework rehub-framework allows Stored XSS.This iss"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63049 Missing Authorization vulnerability in CridioStudio ListingPro Lead Form listingpro-lead-form allows Accessing Functionality Not Properly Constrained by ACLs.This iss"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63048 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CridioStudio ListingPro Lead Form listingpro-lead-form allows DO"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63047 Missing Authorization vulnerability in CridioStudio ListingPro listingpro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects L"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements