CyberAlerts

CVE-2025-0520

ShowDoc Unauthenticated File Upload Remote Code Execution

Description: An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7.

CVSS: CRITICAL (9.4)

EPSS Score: 0.3%

Source: CVE

April 29th, 2025 (about 1 month ago)

CVE-2025-31324

Description: SAP NetWeaver Visual Composer Metadata Uploader

CVSS: CRITICAL (10.0)

EPSS Score: 78.65%

Source: Horizon3.ai Attack Research

April 29th, 2025 (about 1 month ago)

CVE-2025-31324

SAP NetWeaver Unrestricted File Upload Vulnerability

Description: SAP NetWeaver Visual Composer Metadata Uploader contains an unrestricted file upload vulnerability that allows an unauthenticated agent to upload potentially malicious executable binaries.

CVSS: CRITICAL (10.0)

EPSS Score: 78.65%

Source: CISA KEV

April 29th, 2025 (about 1 month ago)

CVE-2025-40619

Improper access control vulnerability in Bookgy

Description: Bookgy does not provide for proper authorisation control in multiple areas of the application. This deficiency could allow a malicious actor, without authentication, to reach private areas and/or areas intended for other roles.

CVSS: CRITICAL (9.3)

EPSS Score: 0.06%

Source: CVE

April 29th, 2025 (about 1 month ago)

CVE-2025-40618

SQL injection vulnerability in Bookgy

Description: SQL injection vulnerability in Bookgy. This vulnerability could allow an attacker to retrieve, create, update and delete databases by sending an HTTP request through the "IDRESERVA" parameter in /bkg_imprimir_comprobante.php

CVSS: CRITICAL (9.3)

EPSS Score: 0.04%

SSVC Exploitation: none

Source: CVE

April 29th, 2025 (about 1 month ago)

CVE-2025-40617

SQL injection vulnerability in Bookgy

Description: SQL injection vulnerability in Bookgy. This vulnerability could allow an attacker to retrieve, create, update and delete databases by sending an HTTP request through the "IDTIPO", "IDPISTA" and "IDSOCIO" parameters in /bkg_seleccionar_hora_ajax.php.

CVSS: CRITICAL (9.3)

EPSS Score: 0.04%

Source: CVE

April 29th, 2025 (about 1 month ago)

CVE-2025-24252

A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5,...

Description: A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An attacker on the local network may be able to corrupt process memory.

CVSS: CRITICAL (9.8)

EPSS Score: 0.02%

SSVC Exploitation: none

Source: CVE

April 29th, 2025 (about 1 month ago)

CVE-2025-31324

SAP NetWeaver Visual Composer Flaw Under Active Exploitation

🚨 Marked as known exploited on April 28th, 2025 (about 1 month ago).

Description: CVE-2025-31324 is a maximum severity bug that attackers exploited weeks before SAP released a patch for it.

CVSS: CRITICAL (10.0)

EPSS Score: 78.65%

Source: Dark Reading

April 28th, 2025 (about 1 month ago)

CVE-2025-42599

Qualitia Active! Mail Stack-Based Buffer Overflow Vulnerability

Description: Qualitia Active! Mail contains a stack-based buffer overflow vulnerability that allows a remote, unauthenticated attacker to execute arbitrary or trigger a denial-of-service via a specially crafted request.

CVSS: CRITICAL (9.8)

EPSS Score: 13.86%

Source: CISA KEV

April 28th, 2025 (about 1 month ago)

Active exploitation of SAP NetWeaver Visual Composer CVE-2025-31324

🚨 Marked as known exploited on April 28th, 2025 (about 1 month ago).

Description: A critical SAP NetWeaver zero-day vulnerability (CVE-2025-31324) that allows for full SAP server compromise is being actively exploited in the wild.

CVSS: CRITICAL (10.0)

EPSS Score: 78.65%

Source: Rapid7

April 28th, 2025 (about 1 month ago)

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-0520	ShowDoc Unauthenticated File Upload Remote Code Execution Description: An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7. CVSS: CRITICAL (9.4) EPSS Score: 0.3% Source: CVE April 29th, 2025 (about 1 month ago)
	CVE-2025-31324 Description: SAP NetWeaver Visual Composer Metadata Uploader CVSS: CRITICAL (10.0) EPSS Score: 78.65% Source: Horizon3.ai Attack Research April 29th, 2025 (about 1 month ago)
CVE-2025-31324	SAP NetWeaver Unrestricted File Upload Vulnerability Description: SAP NetWeaver Visual Composer Metadata Uploader contains an unrestricted file upload vulnerability that allows an unauthenticated agent to upload potentially malicious executable binaries. CVSS: CRITICAL (10.0) EPSS Score: 78.65% Source: CISA KEV April 29th, 2025 (about 1 month ago)
CVE-2025-40619	Improper access control vulnerability in Bookgy Description: Bookgy does not provide for proper authorisation control in multiple areas of the application. This deficiency could allow a malicious actor, without authentication, to reach private areas and/or areas intended for other roles. CVSS: CRITICAL (9.3) EPSS Score: 0.06% Source: CVE April 29th, 2025 (about 1 month ago)
CVE-2025-40618	SQL injection vulnerability in Bookgy Description: SQL injection vulnerability in Bookgy. This vulnerability could allow an attacker to retrieve, create, update and delete databases by sending an HTTP request through the "IDRESERVA" parameter in /bkg_imprimir_comprobante.php CVSS: CRITICAL (9.3) EPSS Score: 0.04% SSVC Exploitation: none Source: CVE April 29th, 2025 (about 1 month ago)
CVE-2025-40617	SQL injection vulnerability in Bookgy Description: SQL injection vulnerability in Bookgy. This vulnerability could allow an attacker to retrieve, create, update and delete databases by sending an HTTP request through the "IDTIPO", "IDPISTA" and "IDSOCIO" parameters in /bkg_seleccionar_hora_ajax.php. CVSS: CRITICAL (9.3) EPSS Score: 0.04% Source: CVE April 29th, 2025 (about 1 month ago)
CVE-2025-24252	A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5,... Description: A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An attacker on the local network may be able to corrupt process memory. CVSS: CRITICAL (9.8) EPSS Score: 0.02% SSVC Exploitation: none Source: CVE April 29th, 2025 (about 1 month ago)
CVE-2025-31324	SAP NetWeaver Visual Composer Flaw Under Active Exploitation 🚨 Marked as known exploited on April 28th, 2025 (about 1 month ago). Description: CVE-2025-31324 is a maximum severity bug that attackers exploited weeks before SAP released a patch for it. CVSS: CRITICAL (10.0) EPSS Score: 78.65% Source: Dark Reading April 28th, 2025 (about 1 month ago)
CVE-2025-42599	Qualitia Active! Mail Stack-Based Buffer Overflow Vulnerability Description: Qualitia Active! Mail contains a stack-based buffer overflow vulnerability that allows a remote, unauthenticated attacker to execute arbitrary or trigger a denial-of-service via a specially crafted request. CVSS: CRITICAL (9.8) EPSS Score: 13.86% Source: CISA KEV April 28th, 2025 (about 1 month ago)
	Active exploitation of SAP NetWeaver Visual Composer CVE-2025-31324 🚨 Marked as known exploited on April 28th, 2025 (about 1 month ago). Description: A critical SAP NetWeaver zero-day vulnerability (CVE-2025-31324) that allows for full SAP server compromise is being actively exploited in the wild. CVSS: CRITICAL (10.0) EPSS Score: 78.65% Source: Rapid7 April 28th, 2025 (about 1 month ago)