Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 9:45 a.m.6 views

CVE-2024-25089

Malwarebytes Binisoft Windows Firewall Control before 6.9.9.2 allows remote attackers to execute arbitrary code via gRPC named pipes...

9.8CVSS8.1AI score0.05359EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:49 p.m.6 views

CVE-2022-25089

Printix Secure Cloud Print Management through 1.3.1106.0 incorrectly uses Privileged APIs to modify values in HKEYLOCALMACHINE via UITasks.PersistentRegistryData...

9.8CVSS6.7AI score0.47862EPSS
Exploits4References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:17 p.m.3 views

CVE-2020-25089

Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/discounts.php...

6.1CVSS6.1AI score0.0024EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 10:38 a.m.2 views

CVE-2019-25089

A vulnerability has been found in Morgawr Muon 0.1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file src/muon/handler.clj. The manipulation leads to insufficiently random values. The attack can be launched remotely. Upgrading to version...

7.5CVSS6.9AI score0.00292EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/05 3:26 p.m.2 views

CVE-2025-25089

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in appten Image Rotator appten-image-rotator allows Reflected XSS.This issue affects Image Rotator: from n/a through = 2.0...

7.1CVSS7.2AI score0.00232EPSS
Exploits0References1
NVD
NVDadded 2025/03/03 2:15 p.m.3 views

CVE-2025-25089

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in appten Image Rotator appten-image-rotator allows Reflected XSS.This issue affects Image Rotator: from n/a through = 2.0...

7.1CVSS0.00232EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/03/03 1:30 p.m.4 views

CVE-2025-25089 WordPress Image Rotator plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in appten Image Rotator allows Reflected XSS. This issue affects Image Rotator: from n/a through 2.0...

7.1CVSS7.1AI score0.00232EPSS
Exploits0References1
CVE
CVEadded 2025/03/03 1:30 p.m.61 views

CVE-2025-25089

CVE-2025-25089 describes a Reflected Cross-Site Scripting vulnerability in the WordPress plugin Image Rotator (affected: Image Rotator &lt;= 2.0). The issue stems from improper neutralization of input during web page generation , per description. The CVSS data (v3.1) assigns a base score of 7.1 (...

7.1CVSS7.2AI score0.00232EPSS
Exploits0References1
Circl
Circladded 2024/02/04 11:31 p.m.3 views

CVE-2024-25089

creationtimestamp| type| source ---|---|--- 2024-02-04 23:31:50+00:00| seen| https://t.me/ctinow/178940 2024-02-29 07:21:50+00:00| seen| https://t.me/ctinow/196264...

9.8CVSS8.7AI score0.05359EPSS
Exploits0References2
CVE
CVEadded 2024/02/04 12:0 a.m.92 views

CVE-2024-25089

CVE-2024-25089 affects Malwarebytes Binisoft Windows Firewall Control, prior to version 6.9.9.2. The vulnerability enables remote code execution via gRPC named pipes, with a CVSS v3.1 score of 9.8 (CRITICAL). Affected component is the Windows Firewall Control software and its gRPC named-pipe inte...

9.8CVSS9.7AI score0.05359EPSS
Exploits0References2Affected Software1
Circl
Circladded 2023/08/28 4:16 p.m.2 views

CVE-2018-25089

creationtimestamp| type| source ---|---|--- 2023-08-28 16:16:39+00:00| seen| https://t.me/cibsecurity/69280...

5.3CVSS4.6AI score0.00055EPSS
Exploits0References1
CVE
CVEadded 2023/08/28 12:31 p.m.39 views

CVE-2018-25089

CVE-2018-25089 affects glb Meetup Tag Extension for MediaWiki (version 0.1). Root cause involves the Link Attribute Handler allowing manipulation leading to a web link being opened in a context with window.opener access (classic reverse tabnabbing risk). Upgrading to version 0.2 mitigates the iss...

5.3CVSS4.7AI score0.00055EPSS
Exploits0References4Affected Software1
Circl
Circladded 2023/07/06 6:20 p.m.1 views

CVE-2023-25089

creationtimestamp| type| source ---|---|--- 2023-07-06 18:20:25+00:00| seen| https://t.me/cibsecurity/66084...

7.2CVSS7AI score0.00302EPSS
Exploits1References1
CVE
CVEadded 2023/07/06 2:53 p.m.44 views

CVE-2023-25089

Summary: CVE-2023-25089 affects Milesight UR32L v32.3.0.5. A buffer overflow in the vtysh_ubus binary’s handle_interface_acl function (with interface and in_acl conditions, notably in_acl = -1) can be triggered by a crafted HTTP request, allowing arbitrary code execution with high privileges over...

7.2CVSS7.4AI score0.00302EPSS
Exploits1References2Affected Software1
Circl
Circladded 2022/12/27 2:25 p.m.2 views

CVE-2019-25089

creationtimestamp| type| source ---|---|--- 2022-12-27 14:25:20+00:00| seen| https://t.me/cibsecurity/55393...

7.5CVSS4.8AI score0.00292EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/27 11:59 a.m.14 views

CVE-2019-25089 Morgawr Muon handler.clj random values

A vulnerability has been found in Morgawr Muon 0.1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file src/muon/handler.clj. The manipulation leads to insufficiently random values. The attack can be launched remotely. Upgrading to version...

3.1CVSS7.7AI score0.00292EPSS
Exploits0References4
CVE
CVEadded 2022/12/27 11:59 a.m.51 views

CVE-2019-25089

CVE-2019-25089 affects Morgawr Muon 0.1.1. The vulnerability lies in an unknown functionality within src/muon/handler.clj that leads to insufficiently random values. Exploitation is described as remote. Remediation is available by upgrading to version 0.2.0-indev; the associated patch is c09ed972...

7.5CVSS5.7AI score0.00292EPSS
Exploits0References4Affected Software1
Circl
Circladded 2022/03/04 1:35 p.m.2 views

CVE-2022-25089

creationtimestamp| type| source ---|---|--- 2022-03-04 13:35:22+00:00| published-proof-of-concept| https://t.me/intelexch/10033 2023-01-19 04:51:48+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/1563...

9.8CVSS8.7AI score0.47862EPSS
Exploits4References2
ATTACKERKB
ATTACKERKBadded 2022/03/03 12:15 a.m.3 views

CVE-2022-25089

Printix Secure Cloud Print Management through 1.3.1106.0 incorrectly uses Privileged APIs to modify values in HKEYLOCALMACHINE via UITasks.PersistentRegistryData...

9.8CVSS7.3AI score0.47862EPSS
Exploits4References5
NVD
NVDadded 2022/03/03 12:15 a.m.11 views

CVE-2022-25089

Printix Secure Cloud Print Management through 1.3.1106.0 incorrectly uses Privileged APIs to modify values in HKEYLOCALMACHINE via UITasks.PersistentRegistryData...

9.8CVSS0.47862EPSS
Exploits4References4
Rows per page
Query Builder