Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-28198 |
Description: A SQL injection vulnerability in Hitout car sale 1.0 allows a remote attacker to obtain sensitive information via the orderBy parameter of the StoreController.java component.
EPSS Score: 0.06%
April 15th, 2025 (7 days ago)
|
|
CVE-2025-28144 |
Description: Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a stack overflow vlunerability via peerPin parameter in the formWsc function.
EPSS Score: 0.04%
April 15th, 2025 (7 days ago)
|
|
CVE-2025-28143 |
Description: Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a command injection vulnerability via the groupname at the /boafrm/formDiskCreateGroup.
EPSS Score: 4.33%
April 15th, 2025 (7 days ago)
|
|
CVE-2025-28142 |
Description: Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a command injection vulnerability via the foldername in /boafrm/formDiskCreateShare.
EPSS Score: 4.33%
April 15th, 2025 (7 days ago)
|
|
CVE-2025-24949 |
Description: In JotUrl 2.0, is possible to bypass security requirements during the password change process.
EPSS Score: 0.04%
April 15th, 2025 (7 days ago)
|
|
CVE-2025-24948 |
Description: In JotUrl 2.0, passwords are sent via HTTP GET-type requests, potentially exposing credentials to eavesdropping or insecure records.
EPSS Score: 0.04%
April 15th, 2025 (7 days ago)
|
|
CVE-2024-36842 |
Description: An issue in Oncord+ Android Infotainment Systems OS Android 12, Model Hardware TS17,Hardware part Number F57L_V3.2_20220301, and Build Number PlatformVER:K24-2023/05/09-v0.01 allows a remote attacker to execute arbitrary code via the ADB port component.
EPSS Score: 0.1%
April 15th, 2025 (7 days ago)
|
|
CVE-2024-28676 |
Description: DedeCMS v5.7 was discovered to contain a cross-site scripting (XSS) vulnerability via /dede/article_edit.php.
EPSS Score: 0.26% SSVC Exploitation: poc
April 15th, 2025 (7 days ago)
|
|
CVE-2024-2182 |
Description: A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.
EPSS Score: 0.36% SSVC Exploitation: none
April 15th, 2025 (7 days ago)
|
|
Description: Bolivar Insulation serves all of southwest Missouri including the
areas of Springfield, Bolivar, Branson, Joplin, Columbia and Cam
denton, Missouri for gutter cleaning, repair or new gutter instal
lation.
We are ready to upload more than 9 GB of essential corporate docu
ments such as: financial data (audits, payment details, reports),
contact numbers and e-mail addresses of employees and customers,
SSN’s, driver licenses, passport scans, etc.
April 15th, 2025 (7 days ago)
|