CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: A new tool called 'Defendnot' can disable Microsoft Defender on Windows devices by registering a fake antivirus product, even when no real AV is installed. [...]
May 17th, 2025 (about 1 month ago)
|
|
Description: This week, we have stories about wild horses, wild chimps, and wild cosmic deaths.
May 17th, 2025 (about 1 month ago)
|
CVE-2025-4190 |
Description: The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to (for example in multisite setup)
EPSS Score: 0.05%
May 17th, 2025 (about 1 month ago)
|
|
Description: Posted by CVE - VULSec Labs via Fulldisclosure on May 16=== SUMMARY ===
Vendor: ArcGIS Product: ArcGIS Subject: ArcGIS Hidden Functionality Allows Insecure OAuth 2.0 Based Authentication -
CVE-2025-0020 VSL-2025-21
CVSS: 7.9 (high) CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/U:Amber
Credit: Erez Kalman
Author: VULSec Labs
Date: 2025-05-14
=== DETAILS ===
CWE/CAPEC: Violation of Secure Design Principles, Hidden Functionality, Incorrect Provision of Specified Functionality...
May 17th, 2025 (about 1 month ago)
|
|
|
Description: Posted by Flo Schäfer via Fulldisclosure on May 16secuvera-SA-2025-01: Privilege Escalation
Affected Products
Automic Automation Agent Unix <24.3.0 HF4, <21.0.13 HF1
References
secuvera-SA-2025-01
CVE not assigned yet
CWE-426: Untrusted Search Path
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L
Summary:
An agent configured to run in privileged mode using the SetUID-Bit can be used to escalate privileges, by supplying
an ini file with the...
May 17th, 2025 (about 1 month ago)
|
|
|
Description: Posted by Egidio Romano on May 16---------------------------------------------------------------------------
Invision Community <= 5.0.6 (customCss) Remote Code Execution Vulnerability
---------------------------------------------------------------------------
[-] Software Link:
https://invisioncommunity.com
[-] Affected Versions:
All versions from 5.0.0 to 5.0.6.
[-] Vulnerability Description:
The vulnerability is located in the...
May 17th, 2025 (about 1 month ago)
|
|
Description: Gearhiser, Peters, Elliott & Cannon, PLLC provides a wide range of general and specialized legal services with the primary goal of giving their clients quality, prompt, and affordable legal representation. They represent individuals, new businesses, and established businesses across the United States. Each of their attorneys has substantial legal experience. This experience, combined with the excellence of their professional support staff, enables them to effectively and efficiently provide a broad range of quality legal representation to their clients. These areas include litigation, business, corporate and tax law, personal injury, estate planning and administration, banking, commercial, bankruptcy, and environmental law.
May 17th, 2025 (about 1 month ago)
|
|
May 16th, 2025 (about 1 month ago)
|
|
|
Description: www.diyar.com - Architecture, Engineering & Design
May 16th, 2025 (about 1 month ago)
|
|
|
Description: [AI generated] N/A
May 16th, 2025 (about 1 month ago)
|