Threat and Vulnerability Intelligence Database

Example Searches:

	[webapps] Drupal 11.x-dev - Full Path Disclosure Description: Drupal 11.x-dev - Full Path Disclosure Source: ExploitDB April 19th, 2025 (about 2 hours ago)
	🏴‍☠️ Ralord has just published a new victim : bettininformatica - suporteon company Description: BThe website bettininformatica.com.br belongs to Bettin Soluções em Informática, a technology company based in Marília, São Paulo, Brazil. They offer services such as computer maintenance... Source: Ransomware.live April 19th, 2025 (about 2 hours ago)
	🏴‍☠️ Flocker has just published a new victim : Z**a.com Description: To the Leadership Of S*r We have gained access to your main system, Z***a.com and took backup of all data. […] Source: Ransomware.live April 19th, 2025 (about 4 hours ago)
CVE-2025-29058	An issue in Qimou CMS v.3.34.0 allows a remote attacker to execute arbitrary code via the upgrade.php component. Description: An issue in Qimou CMS v.3.34.0 allows a remote attacker to execute arbitrary code via the upgrade.php component. Source: CVE April 18th, 2025 (about 9 hours ago)
CVE-2025-25985	An issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302 allows a physically proximate attacker to execute... Description: An issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302 allows a physically proximate attacker to execute arbitrary code via the /mnt/mtd/mvconf/wifi.ini and /mnt/mtd/mvconf/user_info.ini components. SSVC Exploitation: poc Source: CVE April 18th, 2025 (about 9 hours ago)
CVE-2025-25984	An issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302 allows a physically proximate attacker to execute... Description: An issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302 allows a physically proximate attacker to execute arbitrary code via UART component. SSVC Exploitation: poc Source: CVE April 18th, 2025 (about 9 hours ago)
CVE-2025-25983	An issue in Macro-video Technologies Co.,Ltd V380 Pro android application 2.1.44 and V380 Pro android application 2.1.64 allows an attacker to... Description: An issue in Macro-video Technologies Co.,Ltd V380 Pro android application 2.1.44 and V380 Pro android application 2.1.64 allows an attacker to obtain sensitive information via the QE code based sharing component. SSVC Exploitation: poc Source: CVE April 18th, 2025 (about 9 hours ago)
CVE-2024-53591	An issue in the login page of Seclore v3.27.5.0 allows attackers to bypass authentication via a brute force attack. Description: An issue in the login page of Seclore v3.27.5.0 allows attackers to bypass authentication via a brute force attack. Source: CVE April 18th, 2025 (about 9 hours ago)
	When Vulnerability Information Flows are Vulnerable Themselves Source: RecordedFuture April 18th, 2025 (about 10 hours ago)
CVE-2025-28197	Crawl4AI <=0.4.247 is vulnerable to SSRF in /crawl4ai/async_dispatcher.py. Description: Crawl4AI <=0.4.247 is vulnerable to SSRF in /crawl4ai/async_dispatcher.py. Source: CVE April 18th, 2025 (about 10 hours ago)