CVE-2025-5305

The Password Reset with Code for WordPress REST API WordPress plugin before 0.0.17 does not use cryptographically sound algorithms to generate OTP codes, potentially leading to account takeovers...

CVE-2025-5305 Password Reset with Code < 0.0.17 - Insecure Password Reset Code Creation

The Password Reset with Code for WordPress REST API WordPress plugin before 0.0.17 does not use cryptographically sound algorithms to generate OTP codes, potentially leading to account takeovers...

Concrete CMS 9.4.3 - Stored XSS

Exploit Title: Concrete CMS 9.4.3 - Stored XSS Date: 2/09/2025 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.concretecms.org/ Software Link: https://www.concretecms.org/downloadfile/8e11ad24-cc1e-4880-8553-7c18ede22c50/2658 Version: 9.4.3 CVE : CVE-2025-8573 Tested on: Windows XP ''...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of SIMD availability checking, which could lead to register corruption or miscalculated MACs...

PT-2025-37483

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel's crypto/arm/poly1305 module where register corruption can occur in non-SIMD contexts. This issue arises from the removal of a SIMD usability check,...

PT-2025-37485

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel's poly1305 function within the arm64/poly1305 module. The issue involves register corruption in contexts where Single Instruction Multiple Data SIMD i...

Linux Distros Unpatched Vulnerability : CVE-2024-35164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The terminal emulator of Apache Guacamole 1.5.5 and older does not properly validate console codes received from servers via text-based protocols like SSH. If a...

RLSA-2025:14177 Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125 apache-commons-fileupload: Apache...

PT-2025-43997

Name of the Vulnerable Software and Affected Versions Apache Tomcat versions 8.5.60 through 8.5.100 Apache Tomcat versions 9.0.40 through 9.0.108 Apache Tomcat versions 10.1.0-M1 through 10.1.44 Apache Tomcat versions 11.0.0-M1 through 11.0.10 Description Tomcat did not properly handle ANSI escap...

AZL-66932 CVE-2025-39726 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: s390/ism: fix concurrency management in ismcmd The s390x ISM device data sheet clearly states that only one request-response sequence is allowable per ISM function at any point in time. Unfortunately as of today the s390/ism driv...

Malicious code in free-gi-ft-codes-fortnite-2023-dkzkd (npm)

The package free-gi-ft-codes-fortnite-2023-dkzkd was found to contain malicious code...

Malicious code in robux-codes-unlimited-generation-method-fkzkdz (npm)

The package robux-codes-unlimited-generation-method-fkzkdz was found to contain malicious code...

MAL-2025-44629 Malicious code in how-i-get-robux-codes-march-2023-dkzzdarg (npm)

The package how-i-get-robux-codes-march-2023-dkzzdarg was found to contain malicious code...

Malicious code in rob-lox-free-codes-rob-ux-2023-ekdlzdz (npm)

The package rob-lox-free-codes-rob-ux-2023-ekdlzdz was found to contain malicious code...

MAL-2025-44322 Malicious code in free-fortnite-vbucks-codes-march-2023-zdkze (npm)

The package free-fortnite-vbucks-codes-march-2023-zdkze was found to contain malicious code...

Malicious code in how-i-get-fortnite-vbucks-codes-for-free-jzldlz (npm)

The package how-i-get-fortnite-vbucks-codes-for-free-jzldlz was found to contain malicious code...

Malicious code in raid-shadow-legends-promo-codes288 (npm)

The package raid-shadow-legends-promo-codes288 was found to contain malicious code...

Malicious code in generator-roblox-robux-unlimited-codes-dkdedz (npm)

The package generator-roblox-robux-unlimited-codes-dkdedz was found to contain malicious code...

MAL-2025-45895 Malicious code in rob-lox-free-codes-rob-ux-2023-ekdlzdz (npm)

The package rob-lox-free-codes-rob-ux-2023-ekdlzdz was found to contain malicious code...

MAL-2025-44630 Malicious code in how-to-generate-robux-codes-2023-dfklzd (npm)

The package how-to-generate-robux-codes-2023-dfklzd was found to contain malicious code...