CVE-2025-24968 Business Logic And Unrestricted Project Deletion Lead To Take Over the System in reNgine

reNgine is an automated reconnaissance framework for web applications. An unrestricted project deletion vulnerability allows attackers with specific roles, such as penetrationtester or auditor to delete all projects in the system. This can lead to a complete system takeover by redirecting the...

Jpom has an XSS vulnerability

Jpom is a simple and lightweight low-invasive online build, automated deployment, daily operations and maintenance, project monitoring software. Jpom has an XSS vulnerability that can be exploited by attackers to obtain sensitive information such as user cookies...