[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.]

@CVEnew CVE

CVE posts on X about $2395tw, command, elements, core the most. They currently have XXXXXX followers and 53896 posts still getting attention that total XXXXX engagements in the last XX hours.

Engagements: XXXXX #

• X Week XXXXXX -XX%
• X Month XXXXXXX -XX%
• X Months XXXXXXXXX +70%
• X Year XXXXXXXXX -XX%

Mentions: XX #

• X Week XXX -XX%
• X Month XXXXX -XX%
• X Months XXXXXX +91%
• X Year XXXXXX +12%

Followers: XXXXXX #

• X Week XXXXXX +0.15%
• X Month XXXXXX +0.32%
• X Months XXXXXX +2.50%
• X Year XXXXXX +4.10%

CreatorRank: XXXXXXXXX #

Social Influence

Social category influence technology brands stocks finance social networks cryptocurrencies

Social topic influence $2395tw, command #1066, elements #1275, core, embedded, javascript #587, linksys, $googl, injection, hosted #1053

Top accounts mentioned or mentioned by @ct @evershopevershop @hononodeserver @buf @gmailcom @191212 @entity @school @cacheresult @koacors @sapxssec @adobecsstools @perfoodcouchauth @fastifyreplyfrom @all @here @5afc928c @digitalbazaarzcap @hoppscotchcli @hoppscotchjssandbox

Top assets mentioned Alphabet Inc Class A (GOOGL) QUALCOMM, Inc. (QCOM) IBM (IBM) ELYSIA (EL)

Top Social Posts

Top posts by engagements in the last XX hours

"CVE-2025-59792 Reveals plaintext credentials in the MONITOR command vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 1.0.0 through 2.13.0. Users are recomm"
X Link 2025-11-28T14:52Z 56K followers, XXX engagements

"CVE-2025-59790 Improper Privilege Management vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from v2.9.0 through v2.13.0. Users are recommended to upgrade to v"
X Link 2025-11-28T14:52Z 56K followers, XXX engagements

"CVE-2024-58281 Dotclear XXXX contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files through the media upload functionality"
X Link 2025-12-11T13:28Z 56K followers, XXX engagements

"CVE-2025-63401 Cross Site Scripting vulnerability in HCL Technologies Limited HCLTech DRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via missing directives"
X Link 2025-12-03T18:54Z 56K followers, XXX engagements

"CVE-2025-63402 An issue in HCL Technologies Limited HCLTech GRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via APIs do not enforcing limits on the number o"
X Link 2025-12-03T18:54Z 56K followers, XXX engagements

"CVE-2025-13086 Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.7_rc1 allows an attacker to open a session from a different IP address which did not ini"
X Link 2025-12-03T20:19Z 56K followers, XXX engagements

"CVE-2025-66571 UNA CMS versions 9.0.0-RC1 - 14.0.0-RC4 contain a PHP object injection vulnerability in BxBaseMenuSetAclLevel.php where the profile_id POST parameter is passed to PHP"
X Link 2025-12-04T20:56Z 56K followers, XXX engagements

"CVE-2025-13373 Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162) requests which could allow an attacker to inject SQL commands"
X Link 2025-12-04T23:16Z 56K followers, XXX engagements

"CVE-2025-66511 Nextcloud Calendar is a calendar app for Nextcloud. Prior to 6.0.3 the Calendar app generates participant tokens for meeting proposals using a hash function allowin"
X Link 2025-12-05T16:50Z 56K followers, XXX engagements

"CVE-2025-66557 Nextcloud Deck is a kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud. Prior to 1.14.6 and 1.15.2"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34256 Advantech WISE-DeviceOn Server versions prior to 5.4contain a hard-coded cryptographic key vulnerability. The product uses a static HS512 HMAC secret for signing EIR"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34265 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/rule-engines endpoint. When an authentic"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34263 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/plugin-config/dashboards/menus endpoint"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34266 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/plugin-config/addins/menus endpoint. Whe"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34264 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/dog/agentId endpoint. When an authenti"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34262 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devices/name/agent_id endpoint. When a"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34258 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicemap/plan endpoint. When an authent"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34259 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicemap/building endpoint. When an aut"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34261 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/devicegroups/ endpoint. When an authenti"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34260 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/action/schedule endpoint. When an authen"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-34257 Advantech WISE-DeviceOn Server versions prior to 5.4contain a stored cross-site scripting (XSS) vulnerability in the /rmm/v1/action/defined endpoint. When an authent"
X Link 2025-12-05T17:51Z 56K followers, XXX engagements

"CVE-2025-14133 A vulnerability was found in Linksys RE6500 RE6250 RE6300 RE6350 RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this vulne"
X Link 2025-12-06T10:50Z 56K followers, XXX engagements

"CVE-2025-14134 A vulnerability was determined in Linksys RE6500 RE6250 RE6300 RE6350 RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this"
X Link 2025-12-06T11:27Z 56K followers, XXX engagements

"CVE-2025-14135 A vulnerability was identified in Linksys RE6500 RE6250 RE6300 RE6350 RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the"
X Link 2025-12-06T11:50Z 56K followers, XXX engagements

"CVE-2025-14136 A security flaw has been discovered in Linksys RE6500 RE6250 RE6300 RE6350 RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnera"
X Link 2025-12-06T13:37Z 56K followers, XXX engagements

"CVE-2025-14261 The Litmus platform uses JWT for authentication and authorization but the secret being used for signing the JWT is only X bytes long at its core which makes it extr"
X Link 2025-12-08T18:36Z 56K followers, XXX engagements

"CVE-2025-40820 Affected products do not properly enforce TCP sequence number validation in specific scenarios but accept values within a broad range. This could allow an unauthentic"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-14311 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in JMRI.This issue affects JMRI: before 5.13.3"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50661 In the Linux kernel the following vulnerability has been resolved: seccomp: Move copy_seccomp() to no failure path. Our syzbot instance reported memory leaks in do"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50659 In the Linux kernel the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak for_each_pci_dev() is implemented by pci_get_device("
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50658 In the Linux kernel the following vulnerability has been resolved: cpufreq: qcom: fix memory leak in error path If for some reason the speedbin length is incorrect"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2022-50657 In the Linux kernel the following vulnerability has been resolved: riscv: mm: add missing memcpy in kasan_init Hi Atish It seems that the panic is due to the mis"
X Link 2025-12-09T11:33Z 56K followers, XXX engagements

"CVE-2025-67467 Cross-Site Request Forgery (CSRF) vulnerability in StellarWP GiveWP give allows Cross Site Request Forgery.This issue affects GiveWP: from n/a through = 4.13.1"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-66533 Improper Control of Generation of Code ('Code Injection') vulnerability in StellarWP GiveWP give allows Code Injection.This issue affects GiveWP: from n/a through ="
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-2296 EDK2 contains a vulnerability in BIOS where an attacker may cause Improper Input Validation by local access. Successful exploitation of this vulnerability could alte"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-14345 A post-authenticationflaw in the network two-phase commit protocol used for cross-shard transactions in MongoDB Server may lead to logical data inconsistencies under"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2024-38798 EDK2 contains a vulnerability in BIOS where an attacker may cause Exposure of Sensitive Information to an Unauthorized Actor by local access. Successful exploitatio"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63077 Missing Authorization vulnerability in HappyMonster Happy Addons for Elementor happy-elementor-addons allows Exploiting Incorrectly Configured Access Control Security"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63076 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Dream-Theme The7 Elements dt-the7-core allows"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63075 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in muffingroup Betheme betheme allows DOM-Based XSS.This issue affe"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63074 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Dream-Theme The7 dt-the7 allows PHP Local Fil"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63073 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dream-Theme The7 dt-the7 allows DOM-Based XSS.This issue affects"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63072 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in THEMECO Cornerstone cornerstone allows Stored XSS.This issue aff"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63071 Insertion of Sensitive Information Into Sent Data vulnerability in averta Shortcodes and extra features for Phlox theme auxin-elements allows Retrieve Embedded Sensit"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63070 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Download Manager download-manager allows Retrieve Embedded Sensit"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63069 Missing Authorization vulnerability in Vinod Dalvi Ivory Search add-search-to-menu allows Exploiting Incorrectly Configured Access Control Security Levels.This issue"
X Link 2025-12-09T15:45Z 56K followers, XX engagements

"CVE-2025-63068 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in sevenspark Contact Form X Dynamic Text Extension contact-form-7-dynamic"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63067 Missing Authorization vulnerability in p-themes Porto Theme - Functionality porto-functionality allows Exploiting Incorrectly Configured Access Control Security Level"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63066 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in p-themes Porto Theme - Functionality porto-functionality allows"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63065 Authorization Bypass Through User-Controlled Key vulnerability in David Lingren Media Library Assistant media-library-assistant allows Exploiting Incorrectly Configur"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63064 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ashanjay EventON eventon allows Stored XSS.This issue affects Ev"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63063 Missing Authorization vulnerability in Yandex Metrika Yandex.Metrica wp-yandex-metrika allows Exploiting Incorrectly Configured Access Control Security Levels.This is"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63062 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AndonDesign UDesign Core u-design-core allows"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63061 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in hogash Kallyas kallyas allows DOM-Based XSS.This issue affects K"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63060 Cross-Site Request Forgery (CSRF) vulnerability in hogash Kallyas kallyas.This issue affects Kallyas: from n/a through = 4.2"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63059 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in arscode Ninja Popups arscode-ninja-popups allows Stored XSS.This"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63058 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Hiroaki Miyashita Custom Field Template custom-field-template allows Retri"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63057 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review allows DOM-Based XS"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63056 Missing Authorization vulnerability in bestwebsoft Contact Form by BestWebSoft contact-form-plugin allows Exploiting Incorrectly Configured Access Control Security Le"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63055 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Liton Arefin Master Addons for Elementor master-addons allows St"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63054 Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Control Security Le"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63052 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Stored"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63050 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sizam REHub Framework rehub-framework allows Stored XSS.This iss"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63049 Missing Authorization vulnerability in CridioStudio ListingPro Lead Form listingpro-lead-form allows Accessing Functionality Not Properly Constrained by ACLs.This iss"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63048 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CridioStudio ListingPro Lead Form listingpro-lead-form allows DO"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63047 Missing Authorization vulnerability in CridioStudio ListingPro listingpro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects L"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63046 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CridioStudio ListingPro listingpro-plugin allows DOM-Based XSS.T"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63045 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in averta Master Slider Pro masterslider allows DOM-Based XSS.This"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63044 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows DOM-Base"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63042 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS Elementor Addons tutor-lms-elementor-addons al"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63037 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DFDevelopment Ronneby Theme Core ronneby-core allows DOM-Based X"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63036 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in DFDevelopment Ronneby Theme Core ronneby-core"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63035 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VibeThemes WPLMS wplms_plugin allows DOM-Based XSS.This issue af"
X Link 2025-12-09T15:45Z 56K followers, XXX engagements

"CVE-2025-63034 Missing Authorization vulnerability in Steve Truman Page View Count page-views-count allows Exploiting Incorrectly Configured Access Control Security Levels.This issu"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63033 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Riyadh Ahmed Make Section & Column Clickable For Elementor m"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63030 Cross-Site Request Forgery (CSRF) vulnerability in Saad Iqbal New User Approve new-user-approve allows Cross Site Request Forgery.This issue affects New User Approve:"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63028 Missing Authorization vulnerability in shinetheme Traveler traveler allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travele"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63025 Missing Authorization vulnerability in Xagio SEO Xagio SEO xagio-seo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Xagio"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63024 Missing Authorization vulnerability in tychesoftwares Order Delivery Date for WooCommerce order-delivery-date-for-woocommerce allows Exploiting Incorrectly Configured"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63023 Missing Authorization vulnerability in Easy Payment Payment Gateway for PayPal on WooCommerce woo-paypal-gateway allows Exploiting Incorrectly Configured Access Contr"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63015 Missing Authorization vulnerability in paysera WooCommerce Payment Gateway Paysera woo-payment-gateway-paysera allows Exploiting Incorrectly Configured Access"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63013 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ThimPress WP Hotel Booking wp-hotel-booking allows Retrieve Embedded Sensi"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63012 Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Hotel Booking wp-hotel-booking allows Cross Site Request Forgery.This issue affects WP Hotel Booking:"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63011 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThimPress WP Hotel Booking wp-hotel-booking allows DOM-Based XSS"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63010 Server-Side Request Forgery (SSRF) vulnerability in ThemesInflow Hercules Core hercules-core allows Server Side Request Forgery.This issue affects Hercules Core : fr"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63009 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in yuvalo WP Google Analytics Events wp-google-analytics-events allows Retrie"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63008 Missing Authorization vulnerability in weDevs WP ERP erp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP ERP: from n/a t"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63007 Insertion of Sensitive Information Into Sent Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.T"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63006 Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Leve"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-63003 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in fuelthemes North - Required Plugin north-plug"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62999 Missing Authorization vulnerability in themezaa Litho Addons litho-addons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects L"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62997 Insertion of Sensitive Information Into Sent Data vulnerability in levelfourdevelopment WP EasyCart wp-easycart allows Retrieve Embedded Sensitive Data.This issue aff"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62996 Missing Authorization vulnerability in Code Amp Custom Layouts Post + Product grids made easy custom-layouts allows Exploiting Incorrectly Configured Access Control"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62995 Missing Authorization vulnerability in multiparcels MultiParcels Shipping For WooCommerce multiparcels-shipping-for-woocommerce allows Exploiting Incorrectly Configur"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62994 Insertion of Sensitive Information Into Sent Data vulnerability in WP Messiah WP AI CoPilot ai-co-pilot-for-wp allows Retrieve Embedded Sensitive Data.This issue affe"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62993 Missing Authorization vulnerability in rainafarai Notification for Telegram notification-for-telegram allows Exploiting Incorrectly Configured Access Control Security"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62873 Cross-Site Request Forgery (CSRF) vulnerability in Flashyapp WP Flashy Marketing Automation wp-flashy-marketing-automation allows Cross Site Request Forgery.This issu"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62872 Cross-Site Request Forgery (CSRF) vulnerability in JK Social Photo Fetcher facebook-photo-fetcher allows Cross Site Request Forgery.This issue affects Social Photo Fe"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62871 Cross-Site Request Forgery (CSRF) vulnerability in Alex Prokopenko / JustCoded Just TinyMCE Custom Styles just-tinymce-styles allows Cross Site Request Forgery.This i"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62870 Missing Authorization vulnerability in Eupago Eupago Gateway For Woocommerce eupago-gateway-for-woocommerce allows Exploiting Incorrectly Configured Access Control Se"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62869 Missing Authorization vulnerability in - Web Push Notifications Web Push Notifications gravitec-net-web-push-notifications allows Ex"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62867 Missing Authorization vulnerability in ergonet Ergonet Cache ergonet-varnish-cache allows Exploiting Incorrectly Configured Access Control Security Levels.This issue"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62866 Cross-Site Request Forgery (CSRF) vulnerability in Valerio Monti Auto Alt Text auto-alt-text allows Cross Site Request Forgery.This issue affects Auto Alt Text: from"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62865 Missing Authorization vulnerability in Evan Herman Post Cloner post-cloner allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62762 Cross-Site Request Forgery (CSRF) vulnerability in photoboxone SMTP Mail smtp-mail allows Cross Site Request Forgery.This issue affects SMTP Mail: from n/a through ="
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62740 Missing Authorization vulnerability in Mario Peshev WP-CRM System wp-crm-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue aff"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62739 Cross-Site Request Forgery (CSRF) vulnerability in SaifuMak Add Custom Codes add-custom-codes allows Cross Site Request Forgery.This issue affects Add Custom Codes: f"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62738 Missing Authorization vulnerability in mmattax Formstack Online Forms formstack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue aff"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62737 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in opicron Image Cleanup image-cleanup allows Retrieve Embedded Sensitive Dat"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62736 Missing Authorization vulnerability in opicron Image Cleanup image-cleanup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62735 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Joel User Spam Remover user-spam-remover allows Retrieve Embedded Sensitiv"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62734 Cross-Site Request Forgery (CSRF) vulnerability in Michael Revellin-Clerc Media Library Downloader media-library-downloader allows Cross Site Request Forgery.This iss"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62733 Cross-Site Request Forgery (CSRF) vulnerability in ProteusThemes Custom Sidebars by ProteusThemes custom-sidebars-by-proteusthemes allows Cross Site Request Forgery.T"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62153 Missing Authorization vulnerability in Graham Quick Interest Slider quick-interest-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62152 Missing Authorization vulnerability in ConveyThis ConveyThis conveythis-translate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue a"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62151 Missing Authorization vulnerability in Virtuaria Virtuaria PagBank / PagSeguro para Woocommerce virtuaria-pagseguro allows Exploiting Incorrectly Configured Access Co"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62109 Insertion of Sensitive Information Into Sent Data vulnerability in INFINITUM FORM Geo Controller cf-geoplugin allows Retrieve Embedded Sensitive Data.This issue affec"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62103 Cross-Site Request Forgery (CSRF) vulnerability in wpmediadownload Media Library File Download media-download allows Cross Site Request Forgery.This issue affects Med"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62102 Cross-Site Request Forgery (CSRF) vulnerability in apasionados DoFollow Case by Case dofollow-case-by-case allows Cross Site Request Forgery.This issue affects DoFoll"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62100 Missing Authorization vulnerability in themerain ThemeRain Core themerain-core allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affe"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62093 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup Image&Video FullScreen Background lbg_fullscreen_fu"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62090 Missing Authorization vulnerability in Jegstudio Gutenverse News Advanced News Magazine Blog Gutenberg Blocks Addons gutenverse-news allows Exploiting Incorrectly C"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62086 Missing Authorization vulnerability in akazanstev (Boxberry) boxberry allows Exploiting Incorrectly Configured Access Control Security Levels.This iss"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62085 Missing Authorization vulnerability in berthaai BERTHA AI bertha-ai-free allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BE"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-62082 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nasir Uddin Generic Elements generic-elements-for-elementor allo"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-59132 Cross-Site Request Forgery (CSRF) vulnerability in Badi Jones Duplicate Content Cure duplicate-content-cure allows Cross Site Request Forgery.This issue affects Dupli"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-49351 Cross-Site Request Forgery (CSRF) vulnerability in Valentin Agachi Create Posts & Terms create-posts-terms allows Stored XSS.This issue affects Create Posts &"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-49350 Missing Authorization vulnerability in marcoingraiti Actionwear products sync actionwear-products-sync allows Exploiting Incorrectly Configured Access Control Securit"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-49348 Missing Authorization vulnerability in Hype Hype pico allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hype: from n/a throug"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-49347 Cross-Site Request Forgery (CSRF) vulnerability in Jupitercow WP sIFR wp-sifr allows Stored XSS.This issue affects WP sIFR: from n/a through = 0.6.8.1"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-49341 Cross-Site Request Forgery (CSRF) vulnerability in Alex Furr PDF Creator Lite pdf-creator-lite allows Stored XSS.This issue affects PDF Creator Lite: from n/a through"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-10655 SQL Injection in Frappe HelpDesk in the dashboard get_dashboard_data due to unsafe concatenation of user-controlled parameters into dynamic SQL statements.This issue"
X Link 2025-12-09T15:46Z 56K followers, XXX engagements

"CVE-2025-13953 Bypass vulnerability in the authentication method in the GTT Tax Information System application related to the Active Directory (LDAP) login method. Authentication"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-41730 An unauthenticated remote attacker can abuse unsafe sscanf calls within the check_account() function to write arbitrary data into fixed-size stack buffers which leads"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-66675 Denial of Service vulnerability in Apache Struts file leak in multipart request processing causes disk exhaustion. This issue affects Apache Struts: from 2.0.0 thro"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-14082 A flaw was found in Keycloak Admin REST (Representational State Transfer) API. This vulnerability allows information disclosure of sensitive role metadata via insuffi"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-1161 Incorrect Use of Privileged APIs vulnerability in NomySost Information Technology Training and Consulting Inc. Nomysem allows Privilege Escalation.This issue affects No"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-13955 Predictable default Wi-Fi Password in Access Point functionality inEZCast Pro II version 1.17478.146allows attackers in Wi-Fi range to gain access to the dongle by"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-13954 Hard-coded cryptographic keys in Admin UI of EZCast Pro II version 1.17478.146allows attackers to bypass authorization checks and gain full access to the admin UI"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-12952 A privilege escalation vulnerability exists in Google Cloud's Dialogflow CX. Dialogflow agent developers with Webhook editor permission are able to configure Webhook"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-9571 A remote code execution (RCE) vulnerability exists in Google Cloud Data Fusion. A user with permissions to upload artifacts to a Data Fusion instance can execute arbitr"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-13073 The HandL UTM Grabber / Tracker WordPress plugin before 2.8.1 does not sanitize and escape a parameter before outputting it back in the page leading to a Reflected C"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-13339 The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to and including 1.7.1 via the template_redirect() fun"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-9056 Unprotected service in the AudioLink component allows a local attacker to overwrite system files via unauthorized service invocation"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-13613 The Elated Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to and including XXX. This is due to the plugin not properly lo"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-67507 Filament is a collection of full-stack components for accelerated Laravel development. Versions 4.0.0 through 4.3.0 contain a flaw in the handling of recovery codes f"
X Link 2025-12-10T12:33Z 56K followers, XX engagements

"CVE-2025-67485 mad-proxy is a Python-based HTTP/HTTPS proxy server for detection and blocking of malicious web activity using custom security policies. Versions XXX and below allow"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-67502 Taguette is an open source qualitative research tool. In versions 1.5.1 and below attackers can craft malicious URLs that redirect users to arbitrary external websi"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-67501 WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain an SQL Injection vulnerability in the"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-61808 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could lead to arbitrary"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-61812 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Improper Input Validation vulnerability that could allow a high privileged attacker to gai"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-64898 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthoriz"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-61810 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code executi"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-61822 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system write. An"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-64897 ColdFusion versions 2025.4 2023.16 2021.22 and earlier are affected by an Improper Access Control vulnerability. A low privileged attacker could leverage this vulne"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-67499 The CNI portmap plugin allows containers to emulate opening a host port forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-67494 ZITADEL is an open-source identity infrastructure tool. Versions 4.7.0 and below are vulnerable to an unauthenticated full-read SSRF vulnerability. The ZITADEL Login"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-36437 IBM Planning Analytics Local2.1.0 -2.1.15 could disclose sensitive information about server architecture that could aid in further attacks against the system"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-66645 NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are vulnerable to directory traversal through the App.add_media_files() function which allows a rem"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-34425 MailEnable versions prior to XXXXX contain a reflected cross-site scripting (XSS) vulnerability in the WindowContext parameter of /Mondo/lang/sys/Forms/MAI/compose.as"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2023-53773 MiniDVBLinux XXX contains an unauthenticated vulnerability in the tv_action.sh script that allows remote attackers to generate live stream snapshots through the Simpl"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2023-53772 MiniDVBLinux XXX contains an arbitrary file disclosure vulnerability that allows attackers to read sensitive system files through the 'file' GET parameter. Attackers"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2023-53771 MiniDVBLinux XXX contains an authentication bypass vulnerability that allows remote attackers to change the root password without authentication. Attackers can send c"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2023-53770 MiniDVBLinux XXX contains an unauthenticated configuration download vulnerability that allows remote attackers to access sensitive system configuration files through"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47731 Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Atta"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47729 Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'files_list' parameter that allows attackers to inject malicious HTML and s"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47728 Selea Targa IP OCR-ANPR Camera contains an unauthenticated command injection vulnerability in utils.php that allows remote attackers to execute arbitrary shell comman"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47724 STVS ProVision 5.9.10 contains a path traversal vulnerability that allows authenticated attackers to access arbitrary files by manipulating the files parameter in the"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47723 STVS ProVision 5.9.10 contains a cross-site request forgery vulnerability that allows attackers to perform actions with administrative privileges by exploiting unvali"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47719 COMMAX WebViewer ActiveX Control 2.1.4.5 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by providing excessively long string"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47718 OpenBMCS XXX contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive files by exploiting directory listing function"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47717 IntelliChoice eFORCE Software Suite 2.5.9 contains a username enumeration vulnerability that allows attackers to enumerate valid users by exploiting the 'ctl00$MainCo"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47710 COMMAX Smart Home System is a smart IoT home solution that allows an unauthenticated attacker to disclose RTSP credentials in plain-text by exploiting the /overview.a"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-13743 Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to error object serialization. This poses a risk of leaking sensitive info"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47709 COMMAX Smart Home System allows an unauthenticated attacker to change configuration and cause denial-of-service through the setconf endpoint. Attackers can trigger a"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-64896 Creative Cloud Desktop versions 6.4.0.361 and earlier are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could le"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47707 COMMAX CVD-Axx DVR 5.1.4 contains weak default administrative credentials that allow remote password attacks and disclose RTSP stream. Attackers can exploit this by s"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47706 COMMAX Biometric Access Control System 1.0.0 contains an authentication bypass vulnerability that allows unauthenticated attackers to access sensitive information and"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47705 COMMAX UMS Client ActiveX Control 1.7.0.2 contains a heap-based buffer overflow vulnerability that allows attackers to execute arbitrary code by providing excessively"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47704 OpenBMCS XXX contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting arbitrary SQL code. Attackers can"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47703 OpenBMCS XXX contains an unauthenticated SSRF vulnerability that allows attackers to bypass firewalls and initiate service and network enumeration on the internal net"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47702 OpenBMCS XXX contains a CSRF vulnerability that allows attackers to perform actions with administrative privileges by exploiting the sendFeedback.php endpoint. Attack"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2021-47701 OpenBMCS XXX allows an attacker to escalate privileges from a read user to an admin user by manipulating permissions and exploiting a vulnerability in the update_user"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-67488 SiYuan is self-hosted open source personal knowledge management software. Versions 0.0.0-20251202123337-6ef83b42c7ce and below contain function importZipMd which is"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-64786 Acrobat Reader versions 24.001.30264 20.005.30793 25.001.20982 24.001.30273 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Sig"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-64787 Acrobat Reader versions 24.001.30264 20.005.30793 25.001.20982 24.001.30273 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Sig"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-66626 Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Versions 3.6.13 and below and versions 3.7.0 through"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-66625 Umbraco is an CMS. Due to unsafe handling and deletion of temporary files in versions 10.0.0 through 13.12.0 during the dictionary upload process an attacker"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-66456 Elysia is a Typescript framework for request validation type inference OpenAPI documentation and client-server communication. Versions 1.4.0 through 1.4.16 contain"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-66214 Ladybug adds message-based debugging unit system and regression testing to Java applications. Versions prior to 3.0-20251107.114628 contain the APIs /iaf/ladybug/a"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-14337 A vulnerability was determined in itsourcecode Student Management System XXX. This affects an unknown part of the file /new_grade.php. This manipulation of the argume"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-14335 A vulnerability has been found in itsourcecode Student Management System XXX. Affected by this vulnerability is an unknown functionality of the file /new_school_year"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-9613 A vulnerability was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specification where insufficient guidance on tag reuse after completion ti"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-9614 An issue was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specification where insufficient guidance on re-keying and stream flushing during"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-9612 An issue was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specification where insufficient guidance on Transaction Layer Packet (TLP) order"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-14334 A flaw has been found in itsourcecode Student Management System XXX. Affected is an unknown function of the file /new_adviser.php. Executing manipulation of the argum"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-34414 Entrust Instant Financial Issuance (IFI) On Premise software (formerly referred to as CardWizard) versions 5.x prior to 6.10.5 and prior to 6.11.1 contain an insecu"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-34413 Legality WHISTLEBLOWING by DigitalPA contains a protection mechanism failure in which critical HTTP security headers are not emitted by default. Affected deployments"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-34396 MailEnable versions prior to XXXXX contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executab"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements

"CVE-2025-34408 MailEnable versions prior to XXXXX containa reflected cross-site scripting (XSS) vulnerability in the Added parameter of /Mondo/lang/sys/Forms/MAI/AddRecipientsResul"
X Link 2025-12-10T12:33Z 56K followers, XXX engagements