Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-30084 |
Extension - rsjoomla.com - A reflected XSS vulnerability RSMail! component 3.0.0 - 3.3.13 for Joomla
Description: A stored XSS vulnerability in RSMail! component 1.19.20 - 1.22.26 for Joomla was discovered. The issue occurs within the dashboard component, where user-supplied input is not properly sanitized before being stored and rendered. An attacker can inject malicious JavaScript code into text fields or other input points, which is subsequently executed in the browser of any user who clicks on the crafted text in the dashboard.
EPSS Score: 0.03%
June 5th, 2025 (2 days ago)
|
|
CVE-2025-27753 |
Description: A SQLi vulnerability in RSMediaGallery component 1.7.4 - 2.1.6 for Joomla was discovered. The vulnerability is due to the use of unescaped user-supplied parameters in SQL queries within the dashboard component. This allows an authenticated attacker to inject malicious SQL code through unsanitized input fields, which are used directly in SQL queries. Exploiting this flaw can lead to unauthorized database access, data leakage, or modification of records.
EPSS Score: 0.03%
June 5th, 2025 (2 days ago)
|
|
CVE-2025-27445 |
Description: A path traversal vulnerability in RSFirewall component 2.9.7 - 3.1.5 for Joomla was discovered. This vulnerability allows authenticated users to read arbitrary files outside the Joomla root directory. The flaw is caused by insufficient sanitization of user-supplied input in file path parameters, allowing attackers to exploit directory traversal sequences (e.g., ../) to access sensitive files
EPSS Score: 0.08%
June 5th, 2025 (2 days ago)
|
|
Description: The US can't afford to wait for political consensus to catch up to technological change.
June 5th, 2025 (2 days ago)
|
|
Description: RECYCLA provides a waste treatment, disposal and recovery service
for companies in the industrial and artisan sectors based on the
principles of the circular economy.
We are going to upload about 160 GB of corporate data. A lot of d
etailed employee personal information (DOB, addresses, credit car
d details and so on), client data, financial data, contracts and
agreements, NDAs, etc.
June 5th, 2025 (2 days ago)
|
|
|
Description: AMS Paving, Inc. has been providing quality paving and maintenanc
e services throughout Southern California since 1981.
We are going to upload about 17 GB of corporate data. Employee pe
rsonal information (DLs, DOB, addresses, credit card details and
so on), lots of contracts and agreements, client data, financial
data, accounting and financial data, payment details, etc.
June 5th, 2025 (2 days ago)
|
|
|
Description: Accounting Services
Australia
<25 Employees
Ryan Harvie McEnery offers businesses & individuals dedicated professional assistance with taxation, superannuation, accountancy & valuation services.
Revenue <$5 Million
June 5th, 2025 (2 days ago)
|
|
|
Description: [AI generated] Tien Tuan Pharmaceutical Machinery Co. Ltd is a leading provider of integrated software solutions for the pharmaceutical industry. The Vietnam-based company specializes in offering digital solutions to optimize the pharmaceutical manufacturing and distribution process. Their products include solutions for pharmaceutical lifecycle management, manufacturing execution systems, and plant intelligence. Their clients are major global pharmaceutical and biotechnology companies.
June 5th, 2025 (2 days ago)
|
|
Description: Germany's Federal Commissioner for Data Protection and Freedom of Information (BfDI) has imposed fines totaling €45 million against Vodafone GmbH due to significant lapses in data protection and information security that facilitated fraud and unauthorized access to customer data. BfDI's investigation revealed that malicious actors within Vodafone's third-party partner agencies exploited weak internal controls to …
The post Germany Fines Vodafone €45 Million Over Severe Data Protection Failures appeared first on CyberInsider.
June 5th, 2025 (2 days ago)
|
|
Description: The tech would "detect the contour of a target (a person and/or an object) at a distance, optionally penetrating through clothing" and transmit it to a haptic feedback glove.
June 5th, 2025 (2 days ago)
|