[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.]

@CVEnew CVE

CVE posts on X about vulnerability, to the, command, $2395tw the most. They currently have XXXXXX followers and XXX posts still getting attention that total XXXXX engagements in the last XX hours.

Engagements: XXXXX #

• X Week XXXXXXX -XX%
• X Month XXXXXXX -XX%
• X Months XXXXXXXXX +68%
• X Year XXXXXXXXX -XX%

Mentions: XXX #

• X Week XXX -XX%
• X Month XXXXX -XX%
• X Months XXXXXX +89%
• X Year XXXXXX +13%

Followers: XXXXXX #

• X Week XXXXXX +0.22%
• X Month XXXXXX +0.29%
• X Months XXXXXX +2.50%
• X Year XXXXXX +4.10%

CreatorRank: XXXXXXX #

Social Influence

Social category influence stocks XXXX% technology brands XXXX% finance XXXX% social networks XXXX% cryptocurrencies XXXX%

Social topic influence vulnerability #63, to the 1.53%, command #862, $2395tw #8, elements #1025, ibm #245, core 0.83%, embedded #113, linksys #10, ip XXXX%

Top accounts mentioned or mentioned by @cveannounce @tiptapextensionlink @chaeynz_ @kundu_vinit

Top assets mentioned IBM (IBM) Alphabet Inc Class A (GOOGL) QUALCOMM, Inc. (QCOM) Intercorp Financial Services Inc. (IFS) ELYSIA (EL)

Top Social Posts

Top posts by engagements in the last XX hours

"CVE-2025-13086 Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.7_rc1 allows an attacker to open a session from a different IP address which did not ini"
X Link 2025-12-03T20:19Z 56K followers, XXX engagements

"CVE-2025-66571 UNA CMS versions 9.0.0-RC1 - 14.0.0-RC4 contain a PHP object injection vulnerability in BxBaseMenuSetAclLevel.php where the profile_id POST parameter is passed to PHP"
X Link 2025-12-04T20:56Z 56K followers, XXX engagements

"CVE-2025-54353 An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability CWE-79 vulnerability in Fortinet FortiSandbox 5.0.0 through 5"
X Link 2025-12-10T15:46Z 56K followers, XXX engagements

"CVE-2025-64991 A command injection vulnerability was discovered in TeamViewer DEX (former 1E DEX) specifically within the 1E-PatchInsights-Deploy instruction prior V15. Improper in"
X Link 2025-12-11T13:27Z 56K followers, XX engagements

"CVE-2020-36885 Sony IPELA Network Camera 1.82.01 contains a stack buffer overflow vulnerability in the ftpclient.cgi endpoint that allows remote attackers to execute arbitrary code"
X Link 2025-12-11T13:28Z 56K followers, XXX engagements

"CVE-2025-40820 Affected products do not properly enforce TCP sequence number validation in specific scenarios but accept values within a broad range. This could allow an unauthentic"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50658 In the Linux kernel the following vulnerability has been resolved: cpufreq: qcom: fix memory leak in error path If for some reason the speedbin length is incorrect"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-63035 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VibeThemes WPLMS wplms_plugin allows DOM-Based XSS.This issue af"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-62734 Cross-Site Request Forgery (CSRF) vulnerability in Michael Revellin-Clerc Media Library Downloader media-library-downloader allows Cross Site Request Forgery.This iss"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62086 Missing Authorization vulnerability in akazanstev (Boxberry) boxberry allows Exploiting Incorrectly Configured Access Control Security Levels.This iss"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62082 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nasir Uddin Generic Elements generic-elements-for-elementor allo"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-67461 External control of file name or path in Zoom Rooms for macOS before version 6.6.0 may allow an authenticated user to conduct a disclosure of information via local ac"
X Link 2025-12-11T13:28Z 56K followers, XXX engagements

"CVE-2024-40593 A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2 FortiAnalyzer 7.2.0 through 7.2.5 FortiAnalyzer XXX all versions FortiAnalyzer"
X Link 2025-12-11T15:48Z 56K followers, XXX engagements

"CVE-2025-55309 An issue was discovered in Foxit PDF and Editor for Windows and macOS before XXXX and 2025 before 2025.2. A crafted PDF can contain JavaScript that attaches an OnBlur"
X Link 2025-12-11T15:48Z 56K followers, XXX engagements

"CVE-2025-55311 An issue was discovered in Foxit PDF and Editor for Windows and macOS before XXXX and 2025 before 2025.2. A crafted PDF can use JavaScript to alter annotation content"
X Link 2025-12-11T15:48Z 56K followers, XXX engagements

"CVE-2025-66461 FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers two Windows services with unquoted file paths. A user may execute arbitrary code with SYSTEM p"
X Link 2025-12-08T10:19Z 56K followers, XXX engagements

"CVE-2025-14261 The Litmus platform uses JWT for authentication and authorization but the secret being used for signing the JWT is only X bytes long at its core which makes it extr"
X Link 2025-12-08T18:36Z 56K followers, XXX engagements

"CVE-2025-61812 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Improper Input Validation vulnerability that could allow a high privileged attacker to gai"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-61810 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code executi"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2023-53772 MiniDVBLinux XXX contains an arbitrary file disclosure vulnerability that allows attackers to read sensitive system files through the 'file' GET parameter. Attackers"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2023-53770 MiniDVBLinux XXX contains an unauthenticated configuration download vulnerability that allows remote attackers to access sensitive system configuration files through"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2024-58281 Dotclear XXXX contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files through the media upload functionality"
X Link 2025-12-11T13:28Z 56K followers, XXX engagements

"CVE-2025-49347 Cross-Site Request Forgery (CSRF) vulnerability in Jupitercow WP sIFR wp-sifr allows Stored XSS.This issue affects WP sIFR: from n/a through = 0.6.8.1"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-55313 An issue was discovered in Foxit PDF and Editor for Windows and macOS before XXXX and 2025 before 2025.2. They allow potential arbitrary code execution when processin"
X Link 2025-12-11T15:48Z 56K followers, XXX engagements

"CVE-2023-40288 An issue was discovered on Supermicro X11SSM-F X11SAE-F and X11SSE-F XXXX devices. An attacker could exploit an XSS issue"
X Link 2024-03-27T03:39Z 56K followers, XXX engagements

"CVE-2023-40289 A command injection issue was discovered on Supermicro X11SSM-F X11SAE-F and X11SSE-F XXXX devices. An attacker can exploit this to elevate privileges from a user w"
X Link 2024-03-27T03:39Z 56K followers, XXX engagements

"CVE-2025-66032 Claude Code is an agentic coding tool. Prior to 1.0.93 Due to errors in parsing shell commands related to $IFS and short CLI flags it was possible to bypass the Cla"
X Link 2025-12-03T18:25Z 56K followers, XXX engagements

"CVE-2025-53963 An issue was discovered on Thermo Fisher Ion Torrent OneTouch X INS1005527 devices. They run an SSH server accessible over the default port XX. The root account has a"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54303 The Thermo Fisher Torrent Suite Django application 5.18.1 has weak default credentials which are stored as fixtures for the Django ORM API. The ionadmin user account"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54304 An issue was discovered on Thermo Fisher Ion Torrent OneTouch X INS1005527 devices. When they are powered on an X11 display server is started. The display server lis"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54305 An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. One of the middlewares included in this application LocalhostAuthMiddleware au"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54306 An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. A remote code execution vulnerability exists in the network configuration functi"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-54307 An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. The /configure/plugins/plugin/upload/zip/ and /configure/newupdates/offline/bund"
X Link 2025-12-04T15:19Z 56K followers, XXX engagements

"CVE-2025-13373 Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162) requests which could allow an attacker to inject SQL commands"
X Link 2025-12-04T23:16Z 56K followers, XXX engagements

"CVE-2025-34256 Advantech WISE-DeviceOn Server versions prior to 5.4contain a hard-coded cryptographic key vulnerability. The product uses a static HS512 HMAC secret for signing EIR"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34265 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/rule-engines endpoint. When an authentic"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34263 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/plugin-config/dashboards/menus endpoint"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34266 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/plugin-config/addins/menus endpoint. Whe"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34264 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/dog/agentId endpoint. When an authenti"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34262 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devices/name/agent_id endpoint. When a"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34258 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicemap/plan endpoint. When an authent"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34259 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicemap/building endpoint. When an aut"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34261 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicegroups/ endpoint. When an authenti"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34260 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/action/schedule endpoint. When an authen"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34257 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/action/defined endpoint. When an authent"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-14224 A vulnerability was found in Yottamaster DM2 DM3 and DM200 up to 1.2.23/1.9.12. Affected by this issue is some unknown functionality of the component File Upload. Pe"
X Link 2025-12-08T10:19Z 56K followers, XXX engagements

"CVE-2025-48622 In ProcessArea of dng_misc_opcodes.cpp there is a possible out of bounds read due to a buffer overflow. This could lead to local information disclosure with no addit"
X Link 2025-12-08T17:17Z 56K followers, XXX engagements

"CVE-2025-36017 IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6stores unencrypted sensitive information in environmental variables files whi"
X Link 2025-12-08T21:53Z 56K followers, XXX engagements

"CVE-2025-14276 A vulnerability was determined in Ilevia EVE X1 Server up to 4.6.5.0.eden. Impacted is an unknown function of the file /ajax/php/leaf_search.php. This manipulation of"
X Link 2025-12-08T21:53Z 56K followers, XXX engagements

"CVE-2025-36102 IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could allow a privileged user to bypass validation passing user input into t"
X Link 2025-12-08T21:53Z 56K followers, XXX engagements

"CVE-2025-12635 IBM WebSphere Application Server XXX XXX and IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.12 are affected by cross-site scripting due to improper"
X Link 2025-12-08T22:16Z 56K followers, XXX engagements

"CVE-2025-64650 IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.18 could disclose sensitive user credentials in log files"
X Link 2025-12-08T22:16Z 56K followers, XXX engagements

"CVE-2025-12832 IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery (SSRF). This may allow an authenticatedattacker to send unau"
X Link 2025-12-08T22:16Z 56K followers, XXX engagements

"CVE-2025-36140 IBM XXX through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to improper allocation of resources witho"
X Link 2025-12-08T22:37Z 56K followers, XXX engagements

"CVE-2025-62408 c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using read_answer() and process_answer() wh"
X Link 2025-12-08T22:37Z 56K followers, XXX engagements

"CVE-2025-64499 Tuleap is a free and open source suite for management of software development and collaboration. Tuleap Community Editon versions prior to 17.0.99.1762456922 and Tule"
X Link 2025-12-08T22:52Z 56K followers, XXX engagements

"CVE-2025-64498 Tuleap is an Open Source Suite for management of software development and collaboration. Tuleap Community Edition versions below 17.0.99.1762444754 and Tuleap Enterpr"
X Link 2025-12-08T22:52Z 56K followers, XXX engagements

"CVE-2025-64497 Tuleap is an Open Source Suite for management of software development and collaboration. Versions below 17.0.99.1762431347 of Tuleap Community Edition and Tuleap Ent"
X Link 2025-12-08T22:52Z 56K followers, XXX engagements

"CVE-2025-65962 Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763803709 and"
X Link 2025-12-08T23:33Z 56K followers, XXX engagements

"CVE-2025-64760 Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763126988 and"
X Link 2025-12-08T23:33Z 56K followers, XXX engagements

"CVE-2025-66202 Astro is a web framework. Versions 5.15.7 and below have a double URL encoding bypass which allows any unauthenticated attacker to bypass path-based authentication ch"
X Link 2025-12-08T23:50Z 56K followers, XXX engagements

"CVE-2025-65964 n8n is an open source workflow automation platform. Versions 0.123.1 through 1.119.1 do not have adequate protections to prevent RCE through the project's pre-commit"
X Link 2025-12-08T23:50Z 56K followers, XXX engagements

"CVE-2025-66491 Traefik is an HTTP reverse proxy and load balancer. Versions 3.5.0 through 3.6.2 have inverted TLS verification logic in the"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2025-66490 Traefik is an HTTP reverse proxy and load balancer. For versions prior to 2.11.32 and 2.11.31 through 3.6.2 requests using PathPrefix Path or PathRegex matchers can"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2025-66481 DeepChat is an open-source AI chat platform that supports cloud models and LLMs. Versions 0.5.1 and below are vulnerable to XSS attacks through improperly sanitized M"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2013-10031 Plack-Middleware-Session versions before XXXX may be vulnerable to HMAC comparison timing attacks"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2025-66470 NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are subject to a XSS vulnerability through the ui.interactive_image component of NiceGUI. The compone"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53819 In the Linux kernel the following vulnerability has been resolved: amdgpu: validate offset_in_bo of drm_amdgpu_gem_va This is motivated by OOB access in amdgpu_vm_"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53818 In the Linux kernel the following vulnerability has been resolved: ARM: zynq: Fix refcount leak in zynq_early_slcr_init of_find_compatible_node() returns a node po"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53817 In the Linux kernel the following vulnerability has been resolved: crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() During NVMeTCP Authentication a contr"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53816 In the Linux kernel the following vulnerability has been resolved: drm/amdkfd: fix potential kgd_mem UAFs kgd_mem pointers returned by kfd_process_device_translate"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53815 In the Linux kernel the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimer_delete() itimer_delete() has a retry loop when the t"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53814 In the Linux kernel the following vulnerability has been resolved: PCI: Fix dropping valid root bus resources with .end = zero On r8a7791/koelsch: kmemleak: X n"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53813 In the Linux kernel the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated During allocations while looking for"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53812 In the Linux kernel the following vulnerability has been resolved: media: mediatek: vcodec: fix decoder disable pm crash Can't call pm_runtime_disable when the arc"
X Link 2025-12-09T01:10Z 56K followers, XXX engagements

"CVE-2023-53854 In the Linux kernel the following vulnerability has been resolved: ASoC: mediatek: mt8186: Fix use-after-free in driver remove path When devm runs function in the"
X Link 2025-12-09T02:57Z 56K followers, XXX engagements

"CVE-2025-40941 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected devices exposes server information in its responses. This could allow an"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40940 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected application exhibits inconsistent SNMP behavior such as unexpected servi"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40939 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected device contains a USB port which allows unauthenticated connections. This"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40938 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected device stores sensitive information in the firmware. This could allow an"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40937 A vulnerability has been identified in SIMATIC CN 4100 (All versions V4.0.1). The affected application do not properly validate input parameters in its REST API re"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40935 A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions V5.10.1) RUGGEDCOM RS416Pv2 V5.X (All versions V5.10.1) RUGGEDCOM RS416v2 V5.X (All"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40831 A vulnerability has been identified in SINEC Security Monitor (All versions V4.10.0). The affected application lacks input validation of date parameter in report ge"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40830 A vulnerability has been identified in SINEC Security Monitor (All versions V4.10.0). The affected application does not have proper authorization checks for the fil"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40819 A vulnerability has been identified in SINEMA Remote Connect Server (All versions V3.2 SP4). Affected applications do not properly validate license restrictions aga"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40818 A vulnerability has been identified in SINEMA Remote Connect Server (All versions V3.2 SP4). Affected applications contain private SSL/TLS keys on the server that a"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40807 A vulnerability has been identified in Gridscale X Prepay (All versions V4.2.1). The affected application is vulnerable to capture-replay of authentication tokens"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40806 A vulnerability has been identified in Gridscale X Prepay (All versions V4.2.1). The affected application is vulnerable to user enumeration due to distinguishable r"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40801 A vulnerability has been identified in COMOS V10.6 (All versions) COMOS V10.6 (All versions) JT Bi-Directional Translator for STEP (All versions) NX V2412 (All ver"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2025-40800 A vulnerability has been identified in COMOS V10.6 (All versions) COMOS V10.6 (All versions) NX V2412 (All versions V2412.8700) NX V2506 (All versions V2506.60"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2024-56840 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). Under certain conditions IPsec may allow code injection in the affected devi"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2024-56839 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). Code injection can be achieved when the affected device is using VRF (Virtual"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2024-56838 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). The SCEP client available in the affected device for secure certificate enrol"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2024-56837 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). Due to the insufficient validation during the installation and load of certai"
X Link 2025-12-09T11:33Z 56K followers, XX engagements

"CVE-2024-56836 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). During the Dynamic DNS configuration of the affected product it is possible t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2024-56835 A vulnerability has been identified in RUGGEDCOM ROX II family (All versions V2.17.0). The DHCP Server configuration file of the affected products is subject to cod"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-59029 An attacker can trigger an assertion failure by requesting crafted DNS records waiting for them to be inserted into the records cache then send a query with qtype s"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-59030 An attacker can trigger the removal of cached records by sending a NOTIFY query over TCP"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-66271 Clone for Windows provided by ELECOM CO.LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the sy"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-64696 Android App "Brother iPrint&Scan" versions 6.13.7 and earlier improperly uses an external cache directory. If exploited application-specific files may be accessed fr"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41693 A low privileged remote attacker can use the ssh feature to execute commands directly after login. The process stays open and uses resources which leads to a reduced"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41696 An attacker can use an undocumented UART port on the PCB as a side-channel with the user hardcoded credentials obtained from CVE-2025-41692 to gain read access to par"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41694 A low privileged remote attacker can run the webshell with an empty command containing whitespace. The server will then block until it receives more data resulting i"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41692 A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password gene"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41697 An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41695 An XSS vulnerability in dyn_conn.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41745 An XSS vulnerability in pxc_portCntr2.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the d"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41746 An XSS vulnerability in pxc_portSecCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41747 An XSS vulnerability in pxc_vlanIntfCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41748 An XSS vulnerability in pxc_Dot1xCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacke"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41749 An XSS vulnerability in port_util.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker i"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41750 An XSS vulnerability in pxc_PortCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41751 An XSS vulnerability in pxc_portCntr.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacke"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-41752 An XSS vulnerability in pxc_portSfp.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14310 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14309 NULL Pointer Dereference vulnerability in ravynsoft ravynos.This issue affects ravynos: through 0.5.2"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14308 An integer overflow vulnerability exists in the write method of the Buffer class in Robocode version 1.9.3.6. The method fails to properly validate the length of data"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14307 An insecure temporary file creation vulnerability exists in the AutoExtract component of Robocode version 1.9.3.6. The createTempFile method fails to securely create"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14306 A directory traversal vulnerability exists in the CacheCleaner component of Robocode version 1.9.3.6. The recursivelyDelete method fails to properly sanitize file pat"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13428 A vulnerability exists in the SecOps SOAR server. The custom integrations feature allowed an authenticated user with an "IDE role" to achieve Remote Code Execution (R"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13071 The Custom Admin Menu WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page leading to a Reflected Cross-Site"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13070 The CSV to SortTable WordPress plugin through XXX does not validate some shortcode attributes before using them to generate paths passed to include function/s allowi"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13031 The WPeMatico RSS Feed Fetcher WordPress plugin before 2.8.13 does not sanitize and escape some of its settings which could allow high privilege users such as contri"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14284 Versions of the package @tiptap/extension-link before 2.10.4 are vulnerable to Cross-site Scripting (XSS) due to unsanitized user input allowed in setting or toggling"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-13604 The Login Security FireWall Malware removal by CleanTalk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the page URL in all versions up to a"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40344 In the Linux kernel the following vulnerability has been resolved: ASoC: Intel: avs: Disable periods-elapsed work when closing PCM avs_dai_fe_shutdown() handles th"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40343 In the Linux kernel the following vulnerability has been resolved: nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40342 In the Linux kernel the following vulnerability has been resolved: nvme-fc: use lock accessing port_state and rport state nvme_fc_unregister_remote removes the rem"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40341 In the Linux kernel the following vulnerability has been resolved: futex: Don't leak robust_list pointer on exec race sys_get_robust_list() and compat_get_robust_l"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40340 In the Linux kernel the following vulnerability has been resolved: drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test. I saw an oops in xe_gem_fault"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40339 In the Linux kernel the following vulnerability has been resolved: drm/amdgpu: fix nullptr err of vm_handle_moved If a amdgpu_bo_va is fpriv-prt_va the bo of thi"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40338 In the Linux kernel the following vulnerability has been resolved: ASoC: Intel: avs: Do not share the name pointer between components By sharing 'name' directly t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40337 In the Linux kernel the following vulnerability has been resolved: net: stmmac: Correctly handle Rx checksum offload errors The stmmac_rx function would previously"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40336 In the Linux kernel the following vulnerability has been resolved: drm/gpusvm: fix hmm_pfn_to_map_order() usage Handle the case where the hmm range partially cover"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40335 In the Linux kernel the following vulnerability has been resolved: drm/amdgpu: validate userq input args This will help on validating the userq input args and rej"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40334 In the Linux kernel the following vulnerability has been resolved: drm/amdgpu: validate userq buffer virtual address and size It needs to validate the userq object"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40333 In the Linux kernel the following vulnerability has been resolved: f2fs: fix infinite loop in __insert_extent_tree() When we get wrong extent info data and look u"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40332 In the Linux kernel the following vulnerability has been resolved: drm/amdkfd: Fix mmap write lock not release If mmap write lock is taken while draining retry fau"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40331 In the Linux kernel the following vulnerability has been resolved: sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock sc"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40330 In the Linux kernel the following vulnerability has been resolved: bnxt_en: Shutdown FW DMA in bnxt_shutdown() The netif_close() call in bnxt_shutdown() only stops"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40329 In the Linux kernel the following vulnerability has been resolved: drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb The Mesa issue referenced below pointed"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40328 In the Linux kernel the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_close_cached_fid() find_or_create_cached_dir() could grab"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-40327 In the Linux kernel the following vulnerability has been resolved: perf/core: Fix system hang caused by cpu-clock usage cpu-clock usage by the async-profiler tool"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-67487 Static Web Server (SWS) is a production-ready web server suitable for static web files or assets. Versions 2.40.0 and below contain symbolic links (symlinks) which ca"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-67504 WBCE CMS is a content management system. Versions 1.6.4 and below use function GenerateRandomPassword() to create passwords using PHP's rand(). rand() is not cryptogr"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-66631 CSLA .NET is a framework designed for the development of reusable object-oriented business layers for applications. Versions 5.5.4 and below allow the use of WcfProx"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-66627 Wasmi is a WebAssembly interpreter focused on constrained and embedded systems. In versions 0.41.0 0.41.1 0.42.0 through 0.47.1 0.50.0 through 0.51.2 and 1.0.0 Wa"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50662 In the Linux kernel the following vulnerability has been resolved: RDMA/hns: fix memory leak in hns_roce_alloc_mr() When hns_roce_mr_enable() failed in hns_roce_al"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50660 In the Linux kernel the following vulnerability has been resolved: wifi: ipw2200: fix memory leak in ipw_wdev_init() In the error path of ipw_wdev_init() exceptio"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-66507 1Panel is an open-source web-based control panel for Linux server management. Versions 2.0.13 and below allow an unauthenticated attacker to disable CAPTCHA verifica"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53820 In the Linux kernel the following vulnerability has been resolved: loop: loop_set_status_from_info() check before assignment In loop_set_status_from_info() lo-lo"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14285 A vulnerability was found in code-projects Employee Profile Management System XXX. Affected is an unknown function of the file edit_personnel.php. The manipulation of"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53811 In the Linux kernel the following vulnerability has been resolved: RDMA/irdma: Cap MSIX used to online CPUs + X The irdma driver can use a maximum number of msix v"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53810 In the Linux kernel the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blk_crypto_key"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53809 In the Linux kernel the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register() When a file descriptor of pppo"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53808 In the Linux kernel the following vulnerability has been resolved: wifi: mwifiex: fix memory leak in mwifiex_histogram_read() Always free the zeroed page on return"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53807 In the Linux kernel the following vulnerability has been resolved: clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider() Smatch detected this potential err"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53806 In the Linux kernel the following vulnerability has been resolved: drm/amd/display: populate subvp cmd info only for the top pipe Why System restart observed whi"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53805 In the Linux kernel the following vulnerability has been resolved: tty: n_gsm: fix UAF in gsm_cleanup_mux In gsm_cleanup_mux() the 'gsm-dlci' pointer was not clea"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53804 In the Linux kernel the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode() During unmount process of ni"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53803 In the Linux kernel the following vulnerability has been resolved: scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process() A fix for: BUG: KASAN: slab-o"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53802 In the Linux kernel the following vulnerability has been resolved: wifi: ath9k: htc_hst: free skb in ath9k_htc_rx_msg() if there is no callback function It is stat"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53801 In the Linux kernel the following vulnerability has been resolved: iommu/sprd: Release dma buffer to avoid memory leak When attaching to a domain the driver would"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53800 In the Linux kernel the following vulnerability has been resolved: ubi: Fix use-after-free when volume resizing failed There is an use-after-free problem reported"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53799 In the Linux kernel the following vulnerability has been resolved: crypto: api - Use work queue in crypto_destroy_instance The function crypto_drop_spawn expects t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53798 In the Linux kernel the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when se"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53797 In the Linux kernel the following vulnerability has been resolved: HID: wacom: Use ktime_t rather than int when dealing with timestamps Code which interacts with t"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53796 In the Linux kernel the following vulnerability has been resolved: f2fs: fix information leak in f2fs_move_inline_dirents() When converting an inline directory to"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53795 In the Linux kernel the following vulnerability has been resolved: iommufd: IOMMUFD_DESTROY should not increase the refcount syzkaller found a race where IOMMUFD_D"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2023-53794 In the Linux kernel the following vulnerability has been resolved: cifs: fix session state check in reconnect to avoid use-after-free issue Don't collect exiting s"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-63052 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Stored"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-62993 Missing Authorization vulnerability in rainafarai Notification for Telegram notification-for-telegram allows Exploiting Incorrectly Configured Access Control Security"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62739 Cross-Site Request Forgery (CSRF) vulnerability in SaifuMak Add Custom Codes add-custom-codes allows Cross Site Request Forgery.This issue affects Add Custom Codes: f"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-13953 Bypass vulnerability in the authentication method in the GTT Tax Information System application related to the Active Directory (LDAP) login method. Authentication"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-41730 An unauthenticated remote attacker can abuse unsafe sscanf calls within the check_account() function to write arbitrary data into fixed-size stack buffers which leads"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-66675 Denial of Service vulnerability in Apache Struts file leak in multipart request processing causes disk exhaustion. This issue affects Apache Struts: from 2.0.0 thro"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-14082 A flaw was found in Keycloak Admin REST (Representational State Transfer) API. This vulnerability allows information disclosure of sensitive role metadata via insuffi"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-1161 Incorrect Use of Privileged APIs vulnerability in NomySost Information Technology Training and Consulting Inc. Nomysem allows Privilege Escalation.This issue affects No"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-13955 Predictable default Wi-Fi Password in Access Point functionality inEZCast Pro II version 1.17478.146allows attackers in Wi-Fi range to gain access to the dongle by"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-13954 Hard-coded cryptographic keys in Admin UI of EZCast Pro II version 1.17478.146allows attackers to bypass authorization checks and gain full access to the admin UI"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-12952 A privilege escalation vulnerability exists in Google Cloud's Dialogflow CX. Dialogflow agent developers with Webhook editor permission are able to configure Webhook"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-9571 A remote code execution (RCE) vulnerability exists in Google Cloud Data Fusion. A user with permissions to upload artifacts to a Data Fusion instance can execute arbitr"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-13339 The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to and including 1.7.1 via the template_redirect() fun"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-9056 Unprotected service in the AudioLink component allows a local attacker to overwrite system files via unauthorized service invocation"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-13613 The Elated Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to and including XXX. This is due to the plugin not properly lo"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-67507 Filament is a collection of full-stack components for accelerated Laravel development. Versions 4.0.0 through 4.3.0 contain a flaw in the handling of recovery codes f"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-67485 mad-proxy is a Python-based HTTP/HTTPS proxy server for detection and blocking of malicious web activity using custom security policies. Versions XXX and below allow"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-67502 Taguette is an open source qualitative research tool. In versions 1.5.1 and below attackers can craft malicious URLs that redirect users to arbitrary external websi"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-67501 WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain an SQL Injection vulnerability in the"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-64898 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthoriz"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-61822 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system write. An"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-64897 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Improper Access Control vulnerability. A low privileged attacker could leverage this vulne"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-61823 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could lea"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-67499 The CNI portmap plugin allows containers to emulate opening a host port forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-67494 ZITADEL is an open-source identity infrastructure tool. Versions 4.7.0 and below are vulnerable to an unauthenticated full-read SSRF vulnerability. The ZITADEL Login"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-36437 IBM Planning Analytics Local2.1.0 -2.1.15 could disclose sensitive information about server architecture that could aid in further attacks against the system"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-34425 MailEnable versions prior to XXXXX contain a reflected cross-site scripting (XSS) vulnerability in the WindowContext parameter of /Mondo/lang/sys/Forms/MAI/compose.as"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47731 Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Atta"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47729 Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'files_list' parameter that allows attackers to inject malicious HTML and s"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47728 Selea Targa IP OCR-ANPR Camera contains an unauthenticated command injection vulnerability in utils.php that allows remote attackers to execute arbitrary shell comman"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements