227 matches found
CVE-2024-8860
The Tourfic plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tforderstatusemailresendfunction, tfvisitordetailseditfunction, tfcheckinoutdetailseditfunction, tforderstatuseditfunction, tforderbulkactioneditfunction,...
CVE-2024-8860
The CVE-2024-8860 case concerns the WordPress Tourfic plugin (versions up to and including 2.14.5). The vulnerability arises from missing capability checks in multiple functions (tf_order_status_email_resend_function, tf_visitor_details_edit_function, tf_checkinout_details_edit_function, tf_order...
CVE-2025-41674
creationtimestamp| type| source ---|---|--- 2025-07-21 10:42:09+00:00| seen| https://infosec.exchange/users/certvde/statuses/114890803062994673 2025-07-21 10:42:30+00:00| seen| https://infosec.exchange/users/certvde/statuses/114890804388115598 2025-07-21 10:46:28+00:00| seen|...
CVE-2025-3321
creationtimestamp| type| source ---|---|--- 2025-06-06 10:15:30+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114635894258411433 2025-06-06 10:48:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqwnwc7ivx2m...
Commerce Alphabank Redirect - Moderately critical - Access bypass - SA-CONTRIB-2025-067
This module enables you to pay for Commerce order to an environment provided and secured by the bank The module doesn't sufficiently verify the payment status on canceled orders. An attacker can issue a specially crafted request to update the order status to completed...
CVE-2025-1975
creationtimestamp| type| source ---|---|--- 2025-05-16 09:34:54+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16669 2025-05-16 12:30:35+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114517516963373383 2025-05-16 13:03:23+00:00| seen|...
CVE-2025-4382
creationtimestamp| type| source ---|---|--- 2025-05-09 12:26:48+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15714 2025-05-09 12:53:14+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loqhnkjdgpg2 2025-05-09 13:28:11+00:00| seen|...
CVE-2025-1329
creationtimestamp| type| source ---|---|--- 2025-05-08 22:25:08+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15639 2025-05-08 22:55:56+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114474677389527079 2025-05-08 23:14:39+00:00| seen|...
CVE-2025-46273
creationtimestamp| type| source ---|---|--- 2025-04-24 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-114-06 2025-04-24 23:09:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13360 2025-04-25 00:19:52+00:00| seen|...
CVE-2024-38428
creationtimestamp| type| source ---|---|--- 2025-04-21 11:02:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12639 2025-07-08 07:10:38+00:00| seen| https://infosec.exchange/users/certvde/statuses/114816361290443115 2025-07-08 07:10:48+00:00| seen|...
CVE-2025-30967
creationtimestamp| type| source ---|---|--- 2025-04-15 22:44:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmv5o2lq772h 2025-04-16 00:48:48+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114344888099053230 2025-04-16 01:48:59+00:00| seen|...
CVE-2025-1292
creationtimestamp| type| source ---|---|--- 2025-04-15 19:55:29+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11896 2025-04-15 20:10:09+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114343792428511571 2025-04-16 00:08:33+00:00| seen| https://t.me/cvedetector/23013...
CVE-2025-3277
creationtimestamp| type| source ---|---|--- 2025-04-14 17:44:01+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114337555457724039 2025-04-14 20:04:37+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114338108373746656 2025-04-14 21:22:02+00:00| seen|...
CVE-2025-20946
creationtimestamp| type| source ---|---|--- 2025-04-08 05:47:28+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10853 2025-04-08 07:48:21+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114301239272400759 2025-04-08 08:06:58+00:00| seen|...
GHSA-CJ5W-8MJF-R5F8
creationtimestamp| type| source ---|---|--- 2025-04-03 22:51:28+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114276478970363828 2025-04-03 22:51:28+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114276478970363828...
CVE-2024-47215
creationtimestamp| type| source ---|---|--- 2025-04-03 20:35:43+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10340 2025-04-03 22:05:39+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114276298770722682 2025-04-03 22:05:39+00:00| seen|...
CVE-2025-31089
creationtimestamp| type| source ---|---|--- 2025-04-01 23:48:36+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114265379011567967 2025-04-02 00:46:12+00:00| seen| https://bsky.app/profile/redteamnews.bsky.social/post/3lls5xhhhhb23 2025-04-02 14:34:11+00:00|...
Fedora 41 : nodejs-nodemon (2025-0951177024)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-0951177024 advisory. Added patch for CVE-2024-4068 rhbz2280624 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...
CVE-2024-8176
creationtimestamp| type| source ---|---|--- 2025-03-13 22:12:07+00:00| seen| https://bsky.app/profile/hn100.bsky.social/post/3lkc4ifvrof2m 2025-03-13 22:14:48+00:00| seen| https://bsky.app/profile/hnws.bsky.social/post/3lkc4nagb7t2r 2025-03-13 22:20:03+00:00| seen|...
GHSA-94H4-FJ37-C825
creationtimestamp| type| source ---|---|--- 2025-02-27 18:18:44+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114077225711677534...