CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-10804 |
Description: The Ultimate Video Player WordPress & WooCommerce Plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 10.0 via the content/downloader.php file. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information.
CVSS: HIGH (7.5) EPSS Score: 1.39%
March 7th, 2025 (4 months ago)
|
|
CVE-2025-1886 |
Description: Multiple vulnerabilities in Sage 200 Spain
Fri, 03/07/2025 - 09:58
Aviso
Affected Resources
Sage 200 Spain, versions prior to 2025.35.000.
Description
INCIBE has coordinated the publication of 2 vulnerabilities of high severity, affecting Sage 200 Spain, a business management software. The vulnerabilities have been discovered by Pedro José Navas Pérez.These vulnerabilities have been assigned the following codes, CVSS v4.0 base score, CVSS vector and vulnerability type CWE for each vulnerability:CVE-2025-1886: CVSS v3.1: 7.1 | CVSS AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N | CWE-522CVE-2025-1887: CVSS v3.1: 7.1 | CVSS AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N | CWE-294
Identificador
INCIBE-2025-0126
4 - High
Solution
The vulnerability has been fixed by the Sage team in version 2025.35.000.
Detail
CVE-2025-1886: Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials.CVE-2025-1887: SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to obtain NTLMv2-SSP Hash by changing any of the paths to a UNC path poin...
EPSS Score: 0.03%
March 7th, 2025 (4 months ago)
|
|
CVE-2025-27816 |
Description: A vulnerability was discovered in the Arctera InfoScale 7.0 through 8.0.2 where a .NET remoting endpoint can be exploited due to the insecure deserialization of potentially untrusted messages. The vulnerability is present in the Windows Plugin_Host service, which runs on all the servers where InfoScale is installed. The service is used only when applications are configured for Disaster Recovery (DR) using the DR wizard. Disabling the Plugin_Host service manually will eliminate the vulnerability.
CVSS: CRITICAL (9.8) EPSS Score: 0.06%
March 7th, 2025 (4 months ago)
|
|
CVE-2025-1309 |
Description: The UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the uip_save_form_as_option() function in all versions up to, and including, 3.5.04. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.
CVSS: HIGH (8.8) EPSS Score: 0.04%
March 7th, 2025 (4 months ago)
|
|
CVE-2025-0863 |
Description: The Flexmls® IDX Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'idx_frame' shortcode in all versions up to, and including, 3.14.27 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVSS: MEDIUM (6.4) EPSS Score: 0.03%
March 7th, 2025 (4 months ago)
|
|
CVE-2024-13906 |
Description: The Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.7.3 via deserialization of untrusted input in the 'import_gallery_from_csv' function. This makes it possible for authenticated attackers, with Administrator-level access and above, to inject a PHP Object. No known POP chain is present in the vulnerable software, which means this vulnerability has no impact unless another plugin or theme containing a POP chain is installed on the site. If a POP chain is present via an additional plugin or theme installed on the target system, it may allow the attacker to perform actions like delete arbitrary files, retrieve sensitive data, or execute code depending on the POP chain present.
CVSS: HIGH (7.2) EPSS Score: 0.14%
March 7th, 2025 (4 months ago)
|
|
CVE-2024-12837 |
Description: Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory.
EPSS Score: 0.01%
March 7th, 2025 (4 months ago)
|
|
CVE-2024-12576 |
Description: Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger a crash of the FW running on the GPU freezing graphics output.
EPSS Score: 0.01%
March 7th, 2025 (4 months ago)
|
|
CVE-2025-1475 |
Description: The WPCOM Member plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.7.5. This is due to insufficient verification on the 'user_phone' parameter when logging in. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if SMS login is enabled.
CVSS: CRITICAL (9.8) EPSS Score: 0.16%
March 7th, 2025 (4 months ago)
|
|
CVE-2024-13655 |
Description: The Flex Mag - Responsive WordPress News Theme theme for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the propanel_of_ajax_callback() function in all versions up to, and including, 3.5.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary option values on the WordPress site. This can be leveraged to delete an option that would create an error on the site and deny service to legitimate users.
CVSS: HIGH (8.1) EPSS Score: 0.03%
March 7th, 2025 (4 months ago)
|