2 matches found
CVE-2025-54063
CVE-2025-54063 affects Cherry Studio desktop client (versions 1.4.8–1.5.0) due to improper handling of custom URLs, enabling remote code execution when a user clicks a crafted link or visits a malicious site. The underlying vulnerability is triggered by the app’s custom URL handler, leading to co...
PT-2025-4466 · Elex · Elex Woocommerce Advanced Bulk Edit Products
Name of the Vulnerable Software and Affected Versions: ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes versions 1.4.8 and earlier Description: The issue is related to an SQL Injection vulnerability, specifically a Blind SQL Injection, which occurs due to the improper...