NA - CVE-2025-1059 - CWE-770: Allocation of Resources Without Limits...
CWE-770: Allocation of Resources Without Limits or Throttling vulnerability exists that could cause communications to stop when malicious packets are sent to the webserver of the device.
NA - CVE-2025-1060 - CWE-319: Cleartext Transmission of Sensitive...
CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists that could result in the exposure of data when network traffic is being sniffed by an attacker.
NA - CVE-2025-1070 - CWE-434: Unrestricted Upload of File with...
CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could render the device inoperable when a malicious file is downloaded.
High - CVE-2024-13345 - The Avada Builder plugin for WordPress is...
The Avada Builder plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.11.13. This is due to the software allowing users to execute an action...
High - CVE-2024-13346 - The Avada | Website Builder For WordPress &...
The Avada | Website Builder For WordPress & WooCommerce theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.11.13. This is due to the software...
NA - CVE-2024-47264 - Improper limitation of a pathname to a...
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in agent-related functionality in Synology Active Backup for Business before 2.7.1-13234,...
NA - CVE-2024-47265 - Improper limitation of a pathname to a...
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in encrypted share umount functionality in Synology Active Backup for Business before...
NA - CVE-2024-47266 - Improper limitation of a pathname to a...
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in share file list functionality in Synology Active Backup for Business before 2.7.1-13234,...
NA - CVE-2025-0327 - CWE-269: Improper Privilege Management...
CWE-269: Improper Privilege Management vulnerability exists for two services (of which one managing audit trail data and the other acting as server managing client request) that could cause a loss...