Flash Notices

Flash Notice: WordPress Review Plugin Local File Inclusion

CVE-2025-2158 is a high-severity LFI vulnerability affecting the WordPress Review Plugin: The Ultimate Solution for Building a Review Website.

Flash Notice: Azure Information Disclosure Vulnerability

CVE-2025-33072 is a high-severity information disclosure vulnerability in Microsoft Azure resulting from improper access control on a web service endpoint.

Flash Notice: Azure Automation Privilege Elevation Vulnerability

CVE-2025-29827 is a critical vulnerability affecting Microsoft's Azure Automation service.

Flash Notice: Codeastro Bus Ticket Booking System SQL Injection Vulnerability

CVE-2025-25775 is a critical SQL injection vulnerability identified in Codeastro Bus Ticket Booking System v1.0.

Flash Notice: Critical Object Injection in FluentBoards

CVE-2025-39551 is a critical deserialization vulnerability in FluentBoards that permits Object Injection via the unsafe deserialization of untrusted data.

Flash Notice: SAP NetWeaver Visual Composer Remote Code Execution Vulnerability

CVE-2025-31324 is a critical vulnerability affecting the SAP NetWeaver Visual Composer's Metadata Uploader component, which lacks proper auth controls.

Flash Notice: GoldenDB DDE Injection Vulnerability

CVE-2025-46579 is a high-severity Dynamic Data Exchange (DDE) injection vulnerability affecting ZTE's GoldenDB database product.

Flash Notice: Microsoft Dynamics Information Disclosure

CVE-2025-30391 is a high-severity information disclosure vulnerability within Microsoft Dynamics.

Flash Notice: Ivanti Stack-Based Overflow Leading to RCE

CVE-2025-22457 is a critical stack-based buffer overflow vulnerability affecting Ivanti Connect Secure, Pulse Connect Secure, and Ivanti Policy Secure

Flash Notice: Kubernetes Ingress NGINX Controller Vulnerability

CVE-2025-1974 is a critical vulnerability in the Kubernetes Ingress NGINX Controller that permits unauthenticated remote code execution (RCE).

Prev 1 2 3 4 5 Next