CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published Vulnerability Report CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published Ddos July 14, 2025 Read More Read more about CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published
Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks Vulnerability Report Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks Ddos July 9, 2025 Read More Read more about Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks
Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6) Vulnerability Report Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6) Ddos July 9, 2025 Read More Read more about Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6)
PHP Flaws: CVE-2025-1735 (SQLi/Crash) & CVE-2025-6491 (SOAP DoS) Threaten PHP Apps 1 min read Vulnerability Report PHP Flaws: CVE-2025-1735 (SQLi/Crash) & CVE-2025-6491 (SOAP DoS) Threaten PHP Apps Ddos July 4, 2025 Read More Read more about PHP Flaws: CVE-2025-1735 (SQLi/Crash) & CVE-2025-6491 (SOAP DoS) Threaten PHP Apps
Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection Vulnerability Report Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection Ddos July 2, 2025 Read More Read more about Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection
CISA Warns of Critical Flaws in ControlID iDSecure Vehicle Control Software Vulnerability Report CISA Warns of Critical Flaws in ControlID iDSecure Vehicle Control Software Ddos June 26, 2025 Read More Read more about CISA Warns of Critical Flaws in ControlID iDSecure Vehicle Control Software
Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection Vulnerability Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection Ddos June 18, 2025 Read More Read more about Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection
QNAP Fixes SQL Injection and Certificate Validation Flaws in Qsync Central and File Station 5 Vulnerability Report QNAP Fixes SQL Injection and Certificate Validation Flaws in Qsync Central and File Station 5 Ddos June 9, 2025 Read More Read more about QNAP Fixes SQL Injection and Certificate Validation Flaws in Qsync Central and File Station 5
Critical CVSS 9.8 Flaw Hits Popular LlamaIndex Framework Used by Millions Vulnerability Critical CVSS 9.8 Flaw Hits Popular LlamaIndex Framework Used by Millions Ddos June 6, 2025 Read More Read more about Critical CVSS 9.8 Flaw Hits Popular LlamaIndex Framework Used by Millions
Critical Dell Bug (CVSS 9.8) Lets Unauthenticated Attackers Fully Compromise the System Vulnerability Critical Dell Bug (CVSS 9.8) Lets Unauthenticated Attackers Fully Compromise the System Ddos June 5, 2025 Read More Read more about Critical Dell Bug (CVSS 9.8) Lets Unauthenticated Attackers Fully Compromise the System
CVE-2025-48912: Apache Superset Flaw Allows Row-Level Security Bypass via SQL Injection Vulnerability Report CVE-2025-48912: Apache Superset Flaw Allows Row-Level Security Bypass via SQL Injection Ddos May 31, 2025 Read More Read more about CVE-2025-48912: Apache Superset Flaw Allows Row-Level Security Bypass via SQL Injection
Earth Lamia: China-Linked APT Targets Global Industries with Custom Backdoors Cyber Security Earth Lamia: China-Linked APT Targets Global Industries with Custom Backdoors Ddos May 28, 2025 Read More Read more about Earth Lamia: China-Linked APT Targets Global Industries with Custom Backdoors
CVSS 10.0 Flaws in Siemens OZW Web Servers Enable Unauthenticated RCE and Admin Access Vulnerability CVSS 10.0 Flaws in Siemens OZW Web Servers Enable Unauthenticated RCE and Admin Access Ddos May 14, 2025 Read More Read more about CVSS 10.0 Flaws in Siemens OZW Web Servers Enable Unauthenticated RCE and Admin Access
Siemens Fixes 66 SQL Injection Flaws in TeleControl Server Basic Vulnerability Siemens Fixes 66 SQL Injection Flaws in TeleControl Server Basic Ddos April 18, 2025 Read More Read more about Siemens Fixes 66 SQL Injection Flaws in TeleControl Server Basic
Joomla Security Alert: Critical SQL Injection & MFA Bypass Vulnerabilities Uncovered Vulnerability Joomla Security Alert: Critical SQL Injection & MFA Bypass Vulnerabilities Uncovered Ddos April 11, 2025 Read More Read more about Joomla Security Alert: Critical SQL Injection & MFA Bypass Vulnerabilities Uncovered
Multiple Vulnerabilities in Zabbix Open the Door to XSS, DoS, and SQL Injection Vulnerability Multiple Vulnerabilities in Zabbix Open the Door to XSS, DoS, and SQL Injection Ddos April 3, 2025 Read More Read more about Multiple Vulnerabilities in Zabbix Open the Door to XSS, DoS, and SQL Injection
Triple Threat in Frappe Framework: SQL Injection, RCE, and Info Disclosure Fixed in Recent Patches Vulnerability Triple Threat in Frappe Framework: SQL Injection, RCE, and Info Disclosure Fixed in Recent Patches Ddos March 27, 2025 Read More Read more about Triple Threat in Frappe Framework: SQL Injection, RCE, and Info Disclosure Fixed in Recent Patches
Apache VCL Hit by SQL Injection (CVE-2024-53678) and XSS (CVE-2024-53679) Vulnerabilities Vulnerability Apache VCL Hit by SQL Injection (CVE-2024-53678) and XSS (CVE-2024-53679) Vulnerabilities Ddos March 26, 2025 Read More Read more about Apache VCL Hit by SQL Injection (CVE-2024-53678) and XSS (CVE-2024-53679) Vulnerabilities
Critical Mattermost Flaws (CVE-2025-20051, CVE-2025-24490, CVE-2025-25279) Expose Systems to File Read and SQL Injection Attacks Vulnerability Critical Mattermost Flaws (CVE-2025-20051, CVE-2025-24490, CVE-2025-25279) Expose Systems to File Read and SQL Injection Attacks Ddos February 24, 2025 Read More Read more about Critical Mattermost Flaws (CVE-2025-20051, CVE-2025-24490, CVE-2025-25279) Expose Systems to File Read and SQL Injection Attacks
Exim Mail Transfer Agent Vulnerable to Remote SQL Injection (CVE-2025-26794), PoC Published Vulnerability Exim Mail Transfer Agent Vulnerable to Remote SQL Injection (CVE-2025-26794), PoC Published Ddos February 23, 2025 Read More Read more about Exim Mail Transfer Agent Vulnerable to Remote SQL Injection (CVE-2025-26794), PoC Published