CVE-2025-11645 Tomofun Furbo Mobile App Authentication Token sensitive information

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

EUVD-2021-22204

Malware in sbrugna...

EUVD-2022-30014

Malicious code in bioql PyPI...

CVE-2025-4423

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

CVE-2025-8389

creationtimestamp| type| source ---|---|--- 2025-07-30 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-732/...

BELL-CVE-2025-38478

Bulletin has no description...

Security Bulletin: A vulnerability affect Apache Solr, Apache Zookeeper, Logstash shipped with IBM Operations Analytics - Log Analysis (WS-2022-0468)

Summary There is a Jackson-Core vulnerability in Apache Solr, Apache Zookeeper, Logstash shipped with IBM Operations Analytics - Log Analysis Vulnerability Details WSID: WS-2022-0468 DESCRIPTION: The jackson-core package is vulnerable to a Denial of Service DoS attack. The methods in the classes...

CVE-2025-8191

creationtimestamp| type| source ---|---|--- 2025-07-28 09:00:04+00:00| published-proof-of-concept| Telegram/wJ83KA27ztpgm6UQkZJH3SyvZ1BG2eAKAV4286gCNH98w4 2025-07-28 19:00:09+00:00| published-proof-of-concept| Telegram/75Mb5uYpQosCyupAbaPXt3tVtlvlDXKkJ2DuCinTsyRQAIk 2025-08-03 06:15:33+00:00| see...

CVE-2025-7978

creationtimestamp| type| source ---|---|--- 2025-07-22 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-632/...

CVE-2025-49831

creationtimestamp| type| source ---|---|--- 2025-07-18 17:07:27+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3luawokctxi23 2025-08-07 13:45:02+00:00| published-proof-of-concept| https://t.me/truesecator/7307 2025-09-09 20:56:47+00:00| seen|...

Ubuntu: Security Advisory (USN-7626-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-7290

creationtimestamp| type| source ---|---|--- 2025-07-08 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-538/...

BELL-CVE-2025-38163

Bulletin has no description...

PT-2025-27839 · Undefined · Undefined

CVE-2025-45407 CVE-2025-45407 https://t.co/h665vWmWoy Don't wait vulnerability scanning results: https://t.co/oh1APvMMnd...

CVE-2025-6801

creationtimestamp| type| source ---|---|--- 2025-06-27 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-460/ 2025-07-07 16:14:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltf6lrqk2v2a...

CVE-2025-2566

creationtimestamp| type| source ---|---|--- 2025-06-24 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-01...

CVE-2025-6419

creationtimestamp| type| source ---|---|--- 2025-06-21 21:31:17+00:00| published-proof-of-concept| Telegram/QznrPkLEXox7XX7xpO9gWqwxLNu03nqqEIh4A0r4swkIus 2025-06-21 21:47:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19131 2025-06-22 00:09:19+00:00| seen|...

CVE-2025-21862

creationtimestamp| type| source ---|---|--- 2025-06-12 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-162-05...

CVE-2025-4418

creationtimestamp| type| source ---|---|--- 2025-06-12 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-162-09 2025-06-12 20:34:23+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18229...

CVE-2025-5727 SourceCodester Student Result Management System Announcement Page announcement cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Student Result Management System 1.0. This affects an unknown part of the file /script/academic/announcement of the component Announcement Page. The manipulation of the argument Title leads to cross site scripting. It is...