PT-2025-27959

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: A null pointer dereference issue has been identified in the Linux kernel when acquiring the remote IP of an Ethernet bearer. The issue can be reproduced by creating a tun interface...

PT-2025-25471 · Zagg · Zagg

Name of the Vulnerable Software and Affected Versions: Zagg - Electronics & Accessories WooCommerce WordPress Theme versions up to, and including, 1.4.1 Description: The issue allows unauthenticated attackers to include and execute arbitrary files on the server via the load view function, which i...

WordPress Traffic Monitor plugin <= 3.2.2 - Missing Authorization to Unauthenticated Settings Update vulnerability

Missing Authorization to Unauthenticated Settings Update vulnerability discovered by ch4r0n in WordPress Plugin Traffic Monitor versions = 3.2.2...

WordPress Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal Plugin <= 16.8 is vulnerable to Broken Access Control

Software Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal Type Plugin Vulnerable versions = 16.8 Fixed in 16.9 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE N/A Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID...

CVE-2025-41233

Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...

WordPress Responsive Blocks plugin <= 2.0.5 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by zaim in WordPress Plugin Responsive Blocks versions = 2.0.5...

WordPress Workreap plugin <= 3.3.1 - Authentication Bypass via 'workreap_verify_user_account' vulnerability

Authentication Bypass via 'workreapverifyuseraccount' vulnerability discovered by Foxyyy in WordPress Plugin Workreap theme's plugin versions = 3.3.1...

PT-2025-24702 · Adobe · Indesign Desktop

Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions ID20.2, ID19.5.3 and earlier Description: The issue is an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such a...

WordPress LTL Freight Quotes – Freightview Edition plugin <= 1.0.11 - Unauthenticated Stored Cross-Site Scripting via `expiry_date` Parameter vulnerability

Unauthenticated Stored Cross-Site Scripting via expirydate Parameter vulnerability discovered by sterva in WordPress Plugin LTL Freight Quotes – Freightview Edition versions = 1.0.11...

CVE-2025-5647 Radare2 radiff2 cons.c r_cons_context_break_pop memory corruption

A vulnerability was found in Radare2 5.9.9 and classified as problematic. This issue affects the function rconscontextbreakpop in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. The attack needs to be approached locally. The...

CVE-2025-5644

A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected by this issue is the function rconsflush in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to use after free. Local access is required to approach thi...

CVE-2025-5644 Radare2 radiff2 cons.c r_cons_flush use after free

A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected by this issue is the function rconsflush in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to use after free. Local access is required to approach thi...

CVE-2025-5642 Radare2 radiff2 pal.c r_cons_pal_init memory corruption

A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function rconspalinit in the library /libr/cons/pal.c of the component radiff2. The manipulation leads to memory corruption. The attack needs to be approached locally. The complexity of an attack is rather...

CVE-2025-49000 InvenTree has uncontrolled memory allocation via built-in label-sheet plugin

InvenTree is an Open Source Inventory Management System. Prior to version 0.17.13, the skip field in the built-in label-sheet plugin lacks an upper bound, so a large value forces the server to allocate an enormous Python list. This lets any authenticated label-printing user trigger a...

CVE-2025-5520

Open5GS (up to 2.7.3) is affected by CVE-2025-5520 in the AMF/MME component, specifically the gmm_state_authentication/emm_state_authentication function. The issue can lead to a reachable assertion and is exploitable remotely. A patch is available (patch name: 9f5d133657850e6167231527514ee1364d37...

CVE-2025-5501

A vulnerability classified as problematic was found in Open5GS up to 2.7.3. Affected by this vulnerability is the function ngaphandlepathswitchrequesttransfer of the file src/smf/ngap-handler.c of the component NGAP PathSwitchRequest Message Handler. The manipulation leads to reachable assertion...

WordPress WP Lead Capturing Pages plugin < 2.6 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Plugin WP Lead Capturing Pages versions 2.6...

WordPress Lettery Theme <= 1.1.7 is vulnerable to Local File Inclusion

Software Lettery Type Theme Vulnerable versions = 1.1.7 Fixed in 1.1.8 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-48290 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 853c7f0a8977 Credits Bonds Required privilege Unauthenticated Publishe...

CVE-2025-20677

In Bluetooth driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412256; Issue ID: MSV-3284...

WordPress Course Builder Theme < 3.6.6 is vulnerable to PHP Object Injection

Software Course Builder Type Theme Vulnerable versions 3.6.6 Fixed in 3.6.6 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-48336 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 330f3e0387ca Credits Annn Required privilege Unauthenticated...