Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-25181
A SQL injection vulnerability in timeoutWarning.asp in Advantive VeraCore through 2025.1.0 allows remote attackers to execute arbitrary SQL...
🚨 Marked as known exploited on March 10th, 2025 (about 1 month ago).
Description: A SQL injection vulnerability in timeoutWarning.asp in Advantive VeraCore through 2025.1.0 allows remote attackers to execute arbitrary SQL commands via the PmSess1 parameter.

CVSS: MEDIUM (5.8)

EPSS Score: 0.05%

Source: CVE
February 4th, 2025 (2 months ago)

CVE-2024-12686
Command Injection vulnerability in Remote Support(RS) & Privilege Remote Access (PRA)
🚨 Marked as known exploited on January 13th, 2025 (3 months ago).
Description: A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) which can allow an attacker with existing administrative privileges to inject commands and run as a site user.

CVSS: MEDIUM (6.6)

EPSS Score: 6.18%

Source: CVE
December 19th, 2024 (4 months ago)