CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-1714	Lack of Rate Limiting in Sign-up workflow in Perforce Gliffy prior to version 4.14.0-7 on Gliffy online allows attacker to enumerate valid user... Description: Lack of Rate Limiting in Sign-up workflow in Perforce Gliffy prior to version 4.14.0-7 on Gliffy online allows attacker to enumerate valid user emails and potentially DOS the server CVSS: MEDIUM (6.9) EPSS Score: 0.05% Source: CVE March 5th, 2025 (4 months ago)
CVE-2024-13147	SQLi in Merkur Software's B2B Login Panel Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Merkur Software B2B Login Panel allows SQL Injection.This issue affects B2B Login Panel: before 15.01.2025. CVSS: CRITICAL (9.8) EPSS Score: 0.04% SSVC Exploitation: none Source: CVE March 5th, 2025 (4 months ago)
CVE-2024-12799	Insufficiently Protected Credentials Description: Insufficiently Protected Credentials vulnerability in OpenText Identity Manager Advanced Edition on Windows, Linux, 64 bit allows Privilege Abuse. This vulnerability could allow an authenticated user to obtain higher privileged user’s sensitive information via crafted payload. This issue affects Identity Manager Advanced Edition: from 4.8.0.0 through 4.8.7.0102, 4.9.0.0. CVSS: CRITICAL (10.0) EPSS Score: 0.05% Source: CVE March 5th, 2025 (4 months ago)
	United States Sanctions Nemesis Darknet Market Admin with 49 Crypto Addresses Description: United States Sanctions Nemesis Darknet Market Admin with 49 Crypto Addresses Source: DarkWebInformer March 5th, 2025 (4 months ago)
	Look up: The new frontier of cyberthreats is in the sky Description: With increased unidentified drone sightings worldwide, some are concerned they pose a cybersecurity risk. Learn more from Acronis about these risks and a real attack on a Taiwan drone manufacturer. [...] Source: BleepingComputer March 5th, 2025 (4 months ago)
	YouTube warns of AI-generated video of its CEO used in phishing attacks Description: YouTube warns that scammers are using an AI-generated video featuring the company's CEO in phishing attacks to steal creators' credentials. [...] Source: BleepingComputer March 5th, 2025 (4 months ago)
	Why Security Leaders Are Opting for Consulting Gigs Description: Many CISOs are weighing the benefits of going virtual as a consultant. Can the pendulum swing in the other direction? Source: Dark Reading March 5th, 2025 (4 months ago)
	Blinkers Claims to have Leaked the Data of Tuipoint International Limited Description: Blinkers Claims to have Leaked the Data of Tuipoint International Limited Source: DarkWebInformer March 5th, 2025 (4 months ago)
	Archivists Recreate Pre-Trump CDC Website, Are Hosting It in Europe Description: The team used a Reddit-made archive of the CDC website to create a new live mirror of the site before it was purged. Source: 404 Media March 5th, 2025 (4 months ago)
	A Threat Actor Claims to be Selling Stolen Login Credentials for Betting and Telecom Accounts Description: A Threat Actor Claims to be Selling Stolen Login Credentials for Betting and Telecom Accounts Source: DarkWebInformer March 5th, 2025 (4 months ago)