2665 matches found
CVE-2025-22775 WordPress Catalog Importer, Scraper & Crawler Plugin <= 5.1.3 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in idIA Tech Catalog Importer, Scraper & Crawler allows Reflected XSS.This issue affects Catalog Importer, Scraper & Crawler: from n/a through 5.1.3...
CVE-2025-22775
Mode C: CVE-2025-22775 affects the WordPress plugin Catalog Importer, Scraper & Crawler (<= 5.1.3). It is a Reflected XSS due to improper input neutralization during web page generation. The vulnerability is rated CVSS v3.1: Network attack vector, Privileges Required NONE, User Interaction REQ...
CVE-2025-24643 WordPress WPGuppy plugin <= 1.1.0 - Broken Authentication vulnerability
Missing Authorization vulnerability in AmentoTech Private Limited WPGuppy wpguppy-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPGuppy: from n/a through = 1.1.0...
CVE-2025-24643
CVE-2025-24643 is a Missing Authorization vulnerability in the WordPress WPGuppy plugin (Amento Tech Pvt Ltd) affecting WPGuppy versions up to 1.1.0. Root cause: insufficient access control on WPGuppy features (e.g., One-to-one chat). Impact: unauthorized actions due to broken authorization. Reme...
Paying It Forward: Giving and Receiving Mentorship in Tech
I’ve never actually seen the 2000 romantic drama Pay It Forward , but the movie’s core idea has stayed with me since I first heard of it: The best way to repay a favor or good deed is to do one for someone else. You ‘pay it forward,’ and ask that person to do likewise, creating an expanding web o...
CVE-2024-56968
An issue in Shenzhen Intellirocks Tech Co. Ltd Govee Home iOS 6.5.01 allows attackers to access sensitive user information via supplying a crafted payload...
SUSE SLES15 / openSUSE 15 Security Update : kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container (SUSE-SU-2025:0215-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0215-1 advisory. Update to version 1.4.0 - Release notes https://github.com/kubevirt/kubevirt/releases/tag/v1.4.0 - Enable aarch64 build for SL...
SUSE-SU-2025:0217-1 Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer
This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: Update to version 1.61.0: Release notes -...
Biden's Cyber Ambassador Urges Trump Not to Cede Ground to Russia and China in Global Tech Fight
Nathaniel Fick, the ambassador for cyberspace and digital policy, has led US tech diplomacy amid a rising tide of pressure from authoritarian regimes. Will the Trump administration undo that work?...
CVE-2024-56280
Incorrect Privilege Assignment vulnerability in AmentoTech Private Limited WPGuppy wpguppy-lite allows Privilege Escalation.This issue affects WPGuppy: from n/a through = 1.1.0...
CVE-2024-49222
Deserialization of Untrusted Data vulnerability in AmentoTech Private Limited WPGuppy wpguppy-lite allows Object Injection.This issue affects WPGuppy: from n/a through = 1.1.0...
CVE-2024-49222 WordPress WPGuppy plugin <= 1.1.0 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in AmentoTech Private Limited WPGuppy wpguppy-lite allows Object Injection.This issue affects WPGuppy: from n/a through = 1.1.0...
CVE-2024-56280 WordPress WPGuppy plugin <= 1.1.0 - Privilege Escalation vulnerability
Incorrect Privilege Assignment vulnerability in AmentoTech Private Limited WPGuppy wpguppy-lite allows Privilege Escalation.This issue affects WPGuppy: from n/a through = 1.1.0...
CVE-2024-56280 WordPress WPGuppy plugin <= 1.1.0 - Privilege Escalation vulnerability
Incorrect Privilege Assignment vulnerability in AmentoTech Private Limited WPGuppy wpguppy-lite allows Privilege Escalation.This issue affects WPGuppy: from n/a through = 1.1.0...
Hiring For Tech Positions: Balancing Experience And Potential
Explore diverse tech positions blending seasoned expertise and fresh talent. Discover how top companies balance experience and innovation…...
CVE-2024-55407
An issue in the DeviceloControl function of ITE Tech. Inc ITE IO Access v1.0.0.0 allows attackers to perform arbitrary port read and write actions via supplying crafted IOCTL requests...
CVE-2024-55407
An issue in the DeviceloControl function of ITE Tech. Inc ITE IO Access v1.0.0.0 allows attackers to perform arbitrary port read and write actions via supplying crafted IOCTL requests...
CVE-2024-55407
ITE IO Access 1.0.0.0 contains a vulnerability in the DeviceloControl function that lets a local attacker perform arbitrary port read and write actions by supplying crafted IOCTL requests. The issue, reported across multiple sources (NVD, Red Hat, CNNVD, PT Security, etc.), indicates the underlyi...
SQL Injection Vulnerability in Hunan Zhonghe Baiyi Information Technology Co.
Hunan Zhonghe Baiyi Information Technology Co., Ltd referred to as: Baiyi Cloud was founded in 2017 is a national high-tech enterprise focusing on digital R&D and services in the field of real estate. Hunan Zhonghe Baiyi Information Technology Co. Ltd Capital Management Cloud has a SQL injection...
CVE-2024-12995 ruifang-tech Rebuild Project Tasks Section tasks cross site scripting
A vulnerability classified as problematic has been found in ruifang-tech Rebuild 3.8.6. This affects an unknown part of the file /project/050-9000000000000001/tasks of the component Project Tasks Section. The manipulation of the argument description leads to cross site scripting. It is possible t...