SecuPressSecuPress Free <= 2.3.9 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation

First published (updated )

GutenverseGutenverse <= 2.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via countdown Block

First published (updated )

Calculated Fields FormCalculated Fields Form < 5.2.62 - Admin+ Stored XSS

First published (updated )

npm/n8nn8n Vulnerable to Stored XSS through Attachments View Endpoint

First published (updated )

Snowflake Connector for C/C++Snowflake Connector for C/C++ retries malformed requests

3.3
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Snowflake Connector for C/C++Snowflake Connector for C/C++ inserts client-side encryption key in DEBUG logs

3.3
First published (updated )

AudiobookshelfAudiobookshelf Vulnerable to Cross-Site-Scripting Reflected via POST Request in /api/upload

First published (updated )

Trend Micro Apex OneAffected builds of Trend Micro Apex One and Apex One as a Service contain a monitor engine component…

7.5
First published (updated )

Trend Micro Apex OneTrend Micro Apex One Unauthorized Change Prevention Service Memory Corruption Local Privilege Escalation Vulnerability

7.8
First published (updated )

McAfee Total ProtectionMcAfee Total Protection prior to version 16.0.49 contains an uncontrolled search path element vulner…

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

CKANCKAN through 2.9.6 account takeovers by unauthenticated users when an existing user id is sent via a…

8.8
First published (updated )

Trend Micro Apex OneTrend Micro Apex One Unauthorized Change Prevention Service Out-Of-Bounds Access Local Privilege Escalation Vulnerability

7.8
First published (updated )

Trend Micro Apex OneTrend Micro Apex One Out-Of-Bounds Read Information Disclosure Vulnerability

First published (updated )

Sankhya OmXSS

First published (updated )

Billing Management SystemSQL Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Billing Management SystemSQL Injection

First published (updated )

Billing Management SystemSQL Injection

First published (updated )

redhat/libxml2Integer Overflow, Input Validation, Race Condition, Double Free

7.5
First published (updated )

Apache AirflowApache Airlfow Pig Provider RCE

First published (updated )

ZTE ZXA10 C350M FirmwareThere is an access control vulnerability in some ZTE PON OLT products. Due to improper access contro…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Red Hat FedoraA vulnerability was found in keylime. This security issue happens in some circumstances, due to some…

First published (updated )

Klik-socialmediawebsiteSQL Injection

8.8
First published (updated )

composer/silverstripe/frameworkXSS

First published (updated )

ZTE MF286R FirmwareBuffer Overflow, Input Validation

First published (updated )

pip/apache-airflowApache Airflow Pinot provider allowed Command Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

ZTE MF286R FirmwareSQL Injection

8.8
First published (updated )

Silverstripe FrameworkXSS

First published (updated )

Maarch RmThere is a broken access control vulnerability in the Maarch RM 2.8.3 solution. When accessing some …

First published (updated )

HP EliteDesk 800 G2 Desktop Mini PC FirmwareA potential vulnerability has been identified in the system BIOS for certain HP PC products which ma…

8.4
First published (updated )

HP JumpstartA potential security vulnerability has been identified in the HP Jumpstart software, which might all…

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203