CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
May 12th, 2025 (about 2 months ago)
|
CVE-2025-44830 |
Description: EngineerCMS v1.02 through v.2.0.5 has a SQL injection vulnerability in the /project/addprojtemplet interface.
EPSS Score: 0.04%
May 12th, 2025 (about 2 months ago)
|
|
CVE-2024-25221 |
Description: A cross-site scripting (XSS) vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Note Section parameter at /TaskManager/Tasks.php.
EPSS Score: 0.15% SSVC Exploitation: poc
May 12th, 2025 (about 2 months ago)
|
|
CVE-2024-25220 |
Description: Task Manager App v1.0 was discovered to contain a SQL injection vulnerability via the taskID parameter at /TaskManager/EditTask.php.
EPSS Score: 0.08% SSVC Exploitation: poc
May 12th, 2025 (about 2 months ago)
|
|
CVE-2024-25211 |
Description: Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the category parameter at /endpoint/delete_category.php.
EPSS Score: 0.08% SSVC Exploitation: poc
May 12th, 2025 (about 2 months ago)
|
|
Description: Trindel Insurance Fund falls victim to MEDUSA Ransomware
May 12th, 2025 (about 2 months ago)
|
|
Description: J43v3r Defaced the Website of Powerman International
May 12th, 2025 (about 2 months ago)
|
|
Description: The new site is a cozy and chaotic sucessor to 'Twitch plays Pokémon.
May 12th, 2025 (about 2 months ago)
|
|
Description: The payout far outstrips any other state settlements against the tech giant over data privacy.
May 12th, 2025 (about 2 months ago)
|
|
CVE-2025-26841 |
Description: Cross Site Scripting vulnerability in WPEVEREST Everest Forms before 3.0.9 allows an attacker to execute arbitrary code via a file upload.
EPSS Score: 0.04%
May 12th, 2025 (about 2 months ago)
|