Low - CVE-2025-2212 - A vulnerability was found in Castlenet...
A vulnerability was found in Castlenet CBW383G2N up to 20250301. It has been classified as problematic. This affects an unknown part of the file /RgSwInfo.asp. The manipulation of the argument...
Low - CVE-2025-2213 - A vulnerability was found in Castlenet...
A vulnerability was found in Castlenet CBW383G2N up to 20250301. It has been declared as problematic. This vulnerability affects unknown code of the file /wlanPrimaryNetwork.asp of the component...
NA - CVE-2025-2233 - Samsung SmartThings Improper Verification of...
Samsung SmartThings Improper Verification of Cryptographic Signature Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected...
Low - CVE-2025-2133 - A vulnerability classified as problematic was...
A vulnerability classified as problematic was found in ftcms 2.1. Affected by this vulnerability is an unknown functionality of the file /admin/index.php/news/edit. The manipulation of the argument...
NA - CVE-2024-41724 - Improper Certificate Validation (CWE-295) in...
Improper Certificate Validation (CWE-295) in the Gallagher Command Centre SALTO integration allowed an attacker to spoof the SALTO server. This issue affects all versions of Gallagher Command...
NA - CVE-2024-43107 - Improper Certificate Validation (CWE-295) in...
Improper Certificate Validation (CWE-295) in the Gallagher Milestone Integration Plugin (MIP) permits unauthenticated messages (e.g. alarm events) to be sent to the Plugin. This issue effects...
Medium - CVE-2025-1926 - The Page Builder: Pagelayer – Drag and Drop...
The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.8. This is due to missing or...
NA - CVE-2024-11638 - The Gtbabel WordPress plugin before 6.6.9 does...
The Gtbabel WordPress plugin before 6.6.9 does not ensure that the URL to perform code analysis upon belongs to the blog which could allow unauthenticated attackers to retrieve a logged in user...
Medium - CVE-2025-2150 - The C&Cm@il from HGiga has a Stored Cross-Site...
The C&Cm@il from HGiga has a Stored Cross-Site Scripting (XSS) vulnerability, allowing remote attackers with regular privileges to send emails containing malicious JavaScript code, which will be...
NA - CVE-2025-27253 - An improper input validation in GE Vernova UR...
An improper input validation in GE Vernova UR IED family devices from version 7.0 up to 8.60 allows an attacker to provide input that enstablishes a TCP connection through a port forwarding. The...