2025-04-24
2025-04-24 09:15Z
CRIT

CVE-2025-3604 — Flynax Flynax_bridge: The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-3604

The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email. This makes it possible for unauthenticated attackers to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account. CVSSv3.1 9.8 (CRITICAL)

CWECWE 862VNDFlynaxTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-04-24
2025-04-24 09:15Z
CRIT

CVE-2025-3603 — Flynax Flynax_bridge: The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-3603

The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.0. This is due to the plugin not properly validating a user's identity prior to updating their details like password. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account. CVSSv3.1 9.8 (CRITICAL)

CWECWE 620VNDFlynaxTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-04-24
2025-04-24 09:15Z
HIGH

CVE-2025-3058 — Xelion: The Xelion Webchat plugin for WordPress is vulnerable to unauthorized modification of data that

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-3058

The Xelion Webchat plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the xwc_save_settings() function in all versions up to, and including, 9.1.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable CVSSv3.1 8.8 (HIGH)

CWECWE 862VNDXelionTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2025-04-22
2025-04-22 12:22Z
HIGH

New Pacu Module: Secret Enumeration in Elastic Beanstalk

Rhino Security Labs·rhinosecuritylabs.com

Rhino Security Labs released a new Pacu module (elasticbeanstalk__enum) that automates enumeration of AWS Elastic Beanstalk applications, environments, configuration settings, and source code to discover hardcoded secrets and credentials. The module addresses a gap in AWS penetration testing tooling by streamlining the discovery of sensitive data stored in environment properties, configuration files, and application source code—a common misconfiguration that enables lateral movement and privilege escalation.

TACTA0007SRFCloudVNDAwsVNDPacuTYPResearchTYPToolSTGCred AccessSTGRecon
76
Edit Score
2025-04-22
2025-04-22 12:00Z
HIGH

Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows

Volexity·volexity.comin the wild

Volexity reports on two Russian threat actor groups (UTA0352, UTA0355) conducting targeted OAuth phishing campaigns against Microsoft 365 users since March 2025, pivoting from Device Code Authentication attacks to abuse of legitimate M365 OAuth workflows. Attackers use social engineering via Signal/WhatsApp impersonating European diplomats and Ukrainian officials, tricking victims into sharing OAuth authorization codes that grant account access and, in UTA0355's case, device registration for persistent access.

TACTA0001TACTA0006SRFIdentitySRFCloudVNDMicrosoftTYPResearchTYPThreat IntelSTGInitial Access
82
Edit Score
2025-04-22
2025-04-22 10:15Z
HIGH

CVE-2025-46241 — Codepeople Appointment_booking_calendar: Cross-Site Request Forgery (CSRF) vulnerability in codepeople Appointment Booking Calendar appointment-booking-calendar allows SQL Injection.T

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-46241

Cross-Site Request Forgery (CSRF) vulnerability in codepeople Appointment Booking Calendar appointment-booking-calendar allows SQL Injection.This issue affects Appointment Booking Calendar: from n/a through <= 1.3.92. CVSSv3.1 8.2 (HIGH)

CWECWE 352VNDCodepeopleTYPVulnerability
8.2
CVSS v3.1
91
Edit Score
2025-04-21
2025-04-21 15:15Z
CRIT

CVE-2025-29287 — Mingsoft Mcms: An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-29287

An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file. CVSSv3.1 9.8 (CRITICAL) · EPSS 50th percentile

CWECWE 434VNDMingsoftTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
728 × 90 / responsive · programmatic ad slot
2025-04-18
2025-04-18 18:15Z
MED

CVE-2025-29513 — Nodebb Nodebb: Cross-Site Scripting (XSS) vulnerability in NodeBB v4.0.4 and before allows remote attackers to store

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-29513

Cross-Site Scripting (XSS) vulnerability in NodeBB v4.0.4 and before allows remote attackers to store arbitrary code in the admin API Access token generator. CVSSv3.1 6.1 (MEDIUM) · EPSS 95th percentile

CWECWE 79VNDNodebbTYPVulnerability
6.1
CVSS v3.1
84
Edit Score
2025-04-18
2025-04-18 05:15Z
CRIT

CVE-2025-39471 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39471

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in pantherius Modal Survey modal-survey.This issue affects Modal Survey: from n/a through <= 2.0.2.0.1. CVSSv3.1 9.3 (CRITICAL)

CWECWE 89TYPVulnerability
9.3
CVSS v3.1
97
Edit Score
2025-04-18
2025-04-18 05:15Z
HIGH

CVE-2025-39470 — Path: Traversal: '.../...//' vulnerability in ThimPress Ivy School ivy-school allows PHP Local File Inclusion.This

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39470

Path Traversal: '.../...//' vulnerability in ThimPress Ivy School ivy-school allows PHP Local File Inclusion.This issue affects Ivy School: from n/a through <= 1.6.0. CVSSv3.1 8.1 (HIGH)

CWECWE 35TYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-04-17
2025-04-17 16:15Z
CRIT

CVE-2025-39596 — Weak: Authentication vulnerability in Quentn.com GmbH Quentn WP quentn-wp allows Privilege Escalation.This issue affects

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39596

Weak Authentication vulnerability in Quentn.com GmbH Quentn WP quentn-wp allows Privilege Escalation.This issue affects Quentn WP: from n/a through <= 1.2.8. CVSSv3.1 9.8 (CRITICAL)

CWECWE 1390VNDWeakTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-04-17
2025-04-17 16:15Z
CRIT

CVE-2025-39595 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39595

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Quentn.com GmbH Quentn WP quentn-wp allows SQL Injection.This issue affects Quentn WP: from n/a through <= 1.2.8. CVSSv3.1 9.3 (CRITICAL)

CWECWE 89TYPVulnerability
9.3
CVSS v3.1
97
Edit Score
2025-04-17
2025-04-17 16:15Z
CRIT

CVE-2025-39588 — Deserialization: of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39588

Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Object Injection.This issue affects Ultimate Store Kit Elementor Addons: from n/a through <= 2.4.0. CVSSv3.1 9.8 (CRITICAL)

CWECWE 502TYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-04-17
2025-04-17 16:15Z
CRIT

CVE-2025-39587 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39587

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix Cost Calculator Builder cost-calculator-builder allows SQL Injection.This issue affects Cost Calculator Builder: from n/a through <= 3.2.65. CVSSv3.1 9.3 (CRITICAL)

CWECWE 89TYPVulnerability
9.3
CVSS v3.1
97
Edit Score
2025-04-17
2025-04-17 16:15Z
HIGH

CVE-2025-39586 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39586

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities allows SQL Injection.This issue affects ProfileGrid : from n/a through <= 5.9.4.8. CVSSv3.1 8.5 (HIGH)

CWECWE 89TYPVulnerability
8.5
CVSS v3.1
93
Edit Score
2025-04-17
2025-04-17 16:15Z
HIGH

CVE-2025-39569 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39569

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in taskbuilder Taskbuilder taskbuilder allows Blind SQL Injection.This issue affects Taskbuilder: from n/a through <= 4.0.1. CVSSv3.1 8.5 (HIGH)

CWECWE 89TYPVulnerability
8.5
CVSS v3.1
93
Edit Score
2025-04-17
2025-04-17 16:15Z
CRIT

CVE-2025-39551 — Deserialization: of Untrusted Data vulnerability in Mahmudul Hasan Arif FluentBoards fluent-boards allows Object Injection.This

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39551

Deserialization of Untrusted Data vulnerability in Mahmudul Hasan Arif FluentBoards fluent-boards allows Object Injection.This issue affects FluentBoards: from n/a through <= 1.47. CVSSv3.1 9.8 (CRITICAL)

CWECWE 502TYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-04-17
2025-04-17 16:15Z
CRIT

CVE-2025-39550 — Deserialization: of Untrusted Data vulnerability in Shahjahan Jewel FluentCommunity fluent-community allows Object Injection.This issue

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39550

Deserialization of Untrusted Data vulnerability in Shahjahan Jewel FluentCommunity fluent-community allows Object Injection.This issue affects FluentCommunity: from n/a through <= 1.2.15. CVSSv3.1 9.8 (CRITICAL)

CWECWE 502TYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-04-17
2025-04-17 16:15Z
HIGH

CVE-2025-39542 — Incorrect: Privilege Assignment vulnerability in Jauhari Xelion Xelion Webchat xelion-webchat allows Privilege Escalation.This issue

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39542

Incorrect Privilege Assignment vulnerability in Jauhari Xelion Xelion Webchat xelion-webchat allows Privilege Escalation.This issue affects Xelion Webchat: from n/a through <= 9.1.0. CVSSv3.1 8.8 (HIGH)

CWECWE 266TYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2025-04-17
2025-04-17 16:15Z
HIGH

CVE-2025-39533 — Authorization: Missing Authorization vulnerability in Starfish Reviews Starfish Review Generation & Marketing starfish-reviews allows Privilege

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39533

Missing Authorization vulnerability in Starfish Reviews Starfish Review Generation & Marketing starfish-reviews allows Privilege Escalation.This issue affects Starfish Review Generation & Marketing: from n/a through <= 3.1.19. CVSSv3.1 8.8 (HIGH)

CWECWE 862TYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2025-04-17
2025-04-17 16:15Z
HIGH

CVE-2025-39527 — Deserialization: of Untrusted Data vulnerability in bestweblayout Rating by BestWebSoft rating-bws allows Object Injection.This

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39527

Deserialization of Untrusted Data vulnerability in bestweblayout Rating by BestWebSoft rating-bws allows Object Injection.This issue affects Rating by BestWebSoft: from n/a through <= 1.7. CVSSv3.1 8.8 (HIGH)

CWECWE 502TYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2025-04-17
2025-04-17 16:15Z
HIGH

CVE-2025-39526 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39526

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through <= 3.6. CVSSv3.1 8.1 (HIGH)

CWECWE 98TYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-04-17
2025-04-17 16:15Z
CRIT

CVE-2025-39436 — Upload: Unrestricted Upload of File with Dangerous Type vulnerability in aidraw I Draw idraw allows

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-39436

Unrestricted Upload of File with Dangerous Type vulnerability in aidraw I Draw idraw allows Using Malicious Files.This issue affects I Draw: from n/a through <= 1.0. CVSSv3.1 9.1 (CRITICAL)

CWECWE 434TYPVulnerability
9.1
CVSS v3.1
96
Edit Score
2025-04-17
2025-04-17 16:15Z
HIGH

CVE-2025-32686 — Deserialization: of Untrusted Data vulnerability in WPSpeedo Team Members wps-team allows Object Injection.This issue

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-32686

Deserialization of Untrusted Data vulnerability in WPSpeedo Team Members wps-team allows Object Injection.This issue affects Team Members: from n/a through <= 3.4.4. CVSSv3.1 8.8 (HIGH)

CWECWE 502TYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2025-04-17
2025-04-17 16:15Z
CRIT

CVE-2025-32682 — Upload: Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg-lite-interactive-vector-maps allows Upload

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-32682

Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg-lite-interactive-vector-maps allows Upload a Web Shell to a Web Server.This issue affects MapSVG: from n/a through <= 8.6.4. CVSSv3.1 9.9 (CRITICAL)

CWECWE 434TYPVulnerability
9.9
CVSS v3.1
100
Edit Score