Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-29449
An issue in twonav v.2.1.18-20241105 allows a remote attacker to obtain sensitive information via the link identification function.
Description: An issue in twonav v.2.1.18-20241105 allows a remote attacker to obtain sensitive information via the link identification function.

EPSS Score: 0.05%

Source: CVE
April 17th, 2025 (2 days ago)
🏴‍☠️ Lynx has just published a new victim : Sally B Gold
Description: Law Offices of Sally B. Gold, LLC is a law firm based in downtown Baltimore, Maryland, founded in 1992. The firm focuses primarily on family law, including prenuptial agreements, divorce, alimony, child custody, separation agreements, and domestic violence cases.
Source: Ransomware.live
April 17th, 2025 (2 days ago)
🏴‍☠️ Qilin has just published a new victim : 1sthealthinc.com
Description: 1st Health Inc provides world-class care to individuals involved in automobile accidents. We provide prompt, professional medical care, from X-Rays and massage to therapeutic modalities. To make your life easier after an accident, we'll even ...
Source: Ransomware.live
April 17th, 2025 (2 days ago)

CVE-2025-29451
An issue in Seo Panel 4.11.0 allows a remote attacker to obtain sensitive information via the Mail Setting component.
Description: An issue in Seo Panel 4.11.0 allows a remote attacker to obtain sensitive information via the Mail Setting component.

EPSS Score: 0.05%

Source: CVE
April 17th, 2025 (2 days ago)
Entertainment services giant Legends International discloses data breach
Description: Entertainment venue management firm Legends International warns it suffered a data breach in November 2024, which has impacted employees and people who visited venues under its management. [...]
Source: BleepingComputer
April 17th, 2025 (2 days ago)

CVE-2025-29316
An issue in DataPatrol Screenshot watermark, printing watermark agent v.3.5.2.0 allows a physically proximate attacker to obtain sensitive information
Description: An issue in DataPatrol Screenshot watermark, printing watermark agent v.3.5.2.0 allows a physically proximate attacker to obtain sensitive information

EPSS Score: 0.02%

Source: CVE
April 17th, 2025 (2 days ago)
Android Phones Pre-Downloaded With Malware Target User Crypto Wallets
Description: The threat actors lace pre-downloaded applications with malware to steal cryptocurrency by covertly swapping users' wallet addresses with their own.
Source: Dark Reading
April 17th, 2025 (2 days ago)
Dogged by Trump, Chris Krebs Resigns from SentinelOne
Description: The president revoked the former CISA director's security clearance, half a decade after Krebs challenged right-wing election disinformation, prompting his eventual resignation.
Source: Dark Reading
April 17th, 2025 (2 days ago)

CVE-2025-28009
A SQL Injection vulnerability exists in the `u` parameter of the progress-body-weight.php endpoint of Dietiqa App v1.0.20.
Description: A SQL Injection vulnerability exists in the `u` parameter of the progress-body-weight.php endpoint of Dietiqa App v1.0.20.

EPSS Score: 0.03%

SSVC Exploitation: none

Source: CVE
April 17th, 2025 (2 days ago)

CVE-2024-22051
CommonMarker Integer Overflow Vulnerability
Description: CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attackers to cause heap memory corruption, potentially leading to an information leak or remote code execution, via parsing tables with marker rows that contain more than UINT16_MAX columns.

EPSS Score: 5.38%

SSVC Exploitation: none

Source: CVE
April 17th, 2025 (2 days ago)