Riasztások
2025. Jún. 27.
NA - CVE-2025-52816 - Improper Control of Filename for...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in themehunk Zita allows PHP Local File Inclusion. This issue affects...
2025. Jún. 27.
NA - CVE-2025-52817 - Missing Authorization vulnerability in...
Missing Authorization vulnerability in ZealousWeb Abandoned Contact Form 7 allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Abandoned Contact Form 7: from...
2025. Jún. 27.
NA - CVE-2025-52818 - Missing Authorization vulnerability in Dejan...
Missing Authorization vulnerability in Dejan Jasnic Trusty Whistleblowing allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Trusty Whistleblowing: from n/a...
2025. Jún. 27.
NA - CVE-2025-52824 - Missing Authorization vulnerability in MDJM...
Missing Authorization vulnerability in MDJM Mobile DJ Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Mobile DJ Manager: from n/a through 1.7.6.
2025. Jún. 27.
NA - CVE-2025-52826 - Deserialization of Untrusted Data vulnerability...
Deserialization of Untrusted Data vulnerability in uxper Sala allows Object Injection. This issue affects Sala: from n/a through 1.1.3.
2025. Jún. 27.
NA - CVE-2025-52827 - Deserialization of Untrusted Data vulnerability...
Deserialization of Untrusted Data vulnerability in uxper Nuss allows Object Injection. This issue affects Nuss: from n/a through 1.3.3.
2025. Jún. 27.
NA - CVE-2025-52829 - Improper Neutralization of Special Elements...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in DirectIQ DirectIQ Email Marketing allows SQL Injection. This issue affects DirectIQ...
2025. Jún. 27.
NA - CVE-2025-52834 - Improper Neutralization of Special Elements...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in favethemes Homey allows SQL Injection. This issue affects Homey: from n/a through 2.4.5.
2025. Jún. 27.
Medium - CVE-2025-6762 - A vulnerability classified as critical has been...
A vulnerability classified as critical has been found in diyhi bbs up to 6.8. This affects the function getUrl of the file /admin/login of the component HTTP Header Handler. The manipulation of the...
2025. Jún. 27.
High - CVE-2025-6763 - A vulnerability classified as critical was...
A vulnerability classified as critical was found in Comet System T0510, T3510, T3511, T4511, T6640, T7511, T7611, P8510, P8552 and H3531 1.60. This vulnerability affects unknown code of the file...