For individuals | HunCERT group

3 Jun 2025

Riasztás

NA - CVE-2024-36486 - A privilege escalation vulnerability exists in...

A privilege escalation vulnerability exists in the virtual machine archive restoration functionality of Parallels Desktop for Mac version 20.1.1 (55740). When an archived virtual machine is...

security-database.com

3 Jun 2025

Riasztás

NA - CVE-2024-52561 - A privilege escalation vulnerability exists in...

A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 (build 55740). When a snapshot of a virtual machine is deleted, a root service...

security-database.com

3 Jun 2025

Riasztás

NA - CVE-2024-54189 - A privilege escalation vulnerability exists in...

A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 (build 55740). When a snapshot of a virtual machine is taken, a root service...

security-database.com

3 Jun 2025

Riasztás

NA - CVE-2025-31359 - A directory traversal vulnerability exists in...

A directory traversal vulnerability exists in the PVMP package unpacking functionality of Parallels Desktop for Mac version 20.2.2 (55879). This vulnerability can be exploited by an attacker to...

security-database.com

3 Jun 2025

Riasztás

High - CVE-2025-4392 - The Shared Files – Frontend File Upload Form &...

The Shared Files – Frontend File Upload Form & Secure File Sharing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via html File uploads in all versions up to, and including,...

security-database.com

3 Jun 2025

Riasztás

Medium - CVE-2025-5492 - A vulnerability has been found in D-Link...

A vulnerability has been found in D-Link DI-500WF-WT up to 20250511 and classified as critical. Affected by this vulnerability is the function sub_456DE8 of the file /msp_info.htm?flag=cmd of the...

security-database.com

3 Jun 2025

Riasztás

Medium - CVE-2025-5493 - A vulnerability was found in Baison Channel...

A vulnerability was found in Baison Channel Middleware Product 2.0.1 and classified as critical. Affected by this issue is some unknown functionality of the file...

security-database.com

3 Jun 2025

Riasztás

Medium - CVE-2025-4205 - The Popup Maker plugin for WordPress is...

The Popup Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘popupID' parameter in all versions up to, and including, 1.20.4 due to insufficient input...

security-database.com

3 Jun 2025

Riasztás

Medium - CVE-2025-4671 - The Profile Builder plugin for WordPress is...

The Profile Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's user_meta and compare shortcodes in all versions up to, and including, 3.13.8 due to...

security-database.com

3 Jun 2025

Riasztás

Medium - CVE-2025-5340 - The Music Player for Elementor plugin for...

The Music Player for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘album_buy_url’ parameter in all versions up to, and including, 2.4.6 due to insufficient...

security-database.com

Phone:	+36 1 279 6222 9am to 4pm
E-mail:	@email
Address:	H-1111 Budapest, Kende u. 13-17.