Subscribe, build a custom feed, or pitch a sponsorship at hello@acadenix.com
Latest intel// live feed
CVE-2025-3604 — Flynax Flynax_bridge: The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover
The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email. This makes it possible for unauthenticated attackers to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-3603 — Flynax Flynax_bridge: The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover
The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.0. This is due to the plugin not properly validating a user's identity prior to updating their details like password. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-3058 — Xelion: The Xelion Webchat plugin for WordPress is vulnerable to unauthorized modification of data that
The Xelion Webchat plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the xwc_save_settings() function in all versions up to, and including, 9.1.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable CVSSv3.1 8.8 (HIGH)
New Pacu Module: Secret Enumeration in Elastic Beanstalk
Rhino Security Labs released a new Pacu module (elasticbeanstalk__enum) that automates enumeration of AWS Elastic Beanstalk applications, environments, configuration settings, and source code to discover hardcoded secrets and credentials. The module addresses a gap in AWS penetration testing tooling by streamlining the discovery of sensitive data stored in environment properties, configuration files, and application source code—a common misconfiguration that enables lateral movement and privilege escalation.
Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows
Volexity reports on two Russian threat actor groups (UTA0352, UTA0355) conducting targeted OAuth phishing campaigns against Microsoft 365 users since March 2025, pivoting from Device Code Authentication attacks to abuse of legitimate M365 OAuth workflows. Attackers use social engineering via Signal/WhatsApp impersonating European diplomats and Ukrainian officials, tricking victims into sharing OAuth authorization codes that grant account access and, in UTA0355's case, device registration for persistent access.
CVE-2025-46241 — Codepeople Appointment_booking_calendar: Cross-Site Request Forgery (CSRF) vulnerability in codepeople Appointment Booking Calendar appointment-booking-calendar allows SQL Injection.T
Cross-Site Request Forgery (CSRF) vulnerability in codepeople Appointment Booking Calendar appointment-booking-calendar allows SQL Injection.This issue affects Appointment Booking Calendar: from n/a through <= 1.3.92. CVSSv3.1 8.2 (HIGH)
CVE-2025-29287 — Mingsoft Mcms: An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers
An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file. CVSSv3.1 9.8 (CRITICAL) · EPSS 50th percentile
CVE-2025-29513 — Nodebb Nodebb: Cross-Site Scripting (XSS) vulnerability in NodeBB v4.0.4 and before allows remote attackers to store
Cross-Site Scripting (XSS) vulnerability in NodeBB v4.0.4 and before allows remote attackers to store arbitrary code in the admin API Access token generator. CVSSv3.1 6.1 (MEDIUM) · EPSS 95th percentile
CVE-2025-39471 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in pantherius Modal Survey modal-survey.This issue affects Modal Survey: from n/a through <= 2.0.2.0.1. CVSSv3.1 9.3 (CRITICAL)
CVE-2025-39470 — Path: Traversal: '.../...//' vulnerability in ThimPress Ivy School ivy-school allows PHP Local File Inclusion.This
Path Traversal: '.../...//' vulnerability in ThimPress Ivy School ivy-school allows PHP Local File Inclusion.This issue affects Ivy School: from n/a through <= 1.6.0. CVSSv3.1 8.1 (HIGH)
CVE-2025-39596 — Weak: Authentication vulnerability in Quentn.com GmbH Quentn WP quentn-wp allows Privilege Escalation.This issue affects
Weak Authentication vulnerability in Quentn.com GmbH Quentn WP quentn-wp allows Privilege Escalation.This issue affects Quentn WP: from n/a through <= 1.2.8. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-39595 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Quentn.com GmbH Quentn WP quentn-wp allows SQL Injection.This issue affects Quentn WP: from n/a through <= 1.2.8. CVSSv3.1 9.3 (CRITICAL)
CVE-2025-39588 — Deserialization: of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows
Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Object Injection.This issue affects Ultimate Store Kit Elementor Addons: from n/a through <= 2.4.0. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-39587 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix Cost Calculator Builder cost-calculator-builder allows SQL Injection.This issue affects Cost Calculator Builder: from n/a through <= 3.2.65. CVSSv3.1 9.3 (CRITICAL)
CVE-2025-39586 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities allows SQL Injection.This issue affects ProfileGrid : from n/a through <= 5.9.4.8. CVSSv3.1 8.5 (HIGH)
CVE-2025-39569 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in taskbuilder Taskbuilder taskbuilder allows Blind SQL Injection.This issue affects Taskbuilder: from n/a through <= 4.0.1. CVSSv3.1 8.5 (HIGH)
CVE-2025-39551 — Deserialization: of Untrusted Data vulnerability in Mahmudul Hasan Arif FluentBoards fluent-boards allows Object Injection.This
Deserialization of Untrusted Data vulnerability in Mahmudul Hasan Arif FluentBoards fluent-boards allows Object Injection.This issue affects FluentBoards: from n/a through <= 1.47. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-39550 — Deserialization: of Untrusted Data vulnerability in Shahjahan Jewel FluentCommunity fluent-community allows Object Injection.This issue
Deserialization of Untrusted Data vulnerability in Shahjahan Jewel FluentCommunity fluent-community allows Object Injection.This issue affects FluentCommunity: from n/a through <= 1.2.15. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-39542 — Incorrect: Privilege Assignment vulnerability in Jauhari Xelion Xelion Webchat xelion-webchat allows Privilege Escalation.This issue
Incorrect Privilege Assignment vulnerability in Jauhari Xelion Xelion Webchat xelion-webchat allows Privilege Escalation.This issue affects Xelion Webchat: from n/a through <= 9.1.0. CVSSv3.1 8.8 (HIGH)
CVE-2025-39533 — Authorization: Missing Authorization vulnerability in Starfish Reviews Starfish Review Generation & Marketing starfish-reviews allows Privilege
Missing Authorization vulnerability in Starfish Reviews Starfish Review Generation & Marketing starfish-reviews allows Privilege Escalation.This issue affects Starfish Review Generation & Marketing: from n/a through <= 3.1.19. CVSSv3.1 8.8 (HIGH)
CVE-2025-39527 — Deserialization: of Untrusted Data vulnerability in bestweblayout Rating by BestWebSoft rating-bws allows Object Injection.This
Deserialization of Untrusted Data vulnerability in bestweblayout Rating by BestWebSoft rating-bws allows Object Injection.This issue affects Rating by BestWebSoft: from n/a through <= 1.7. CVSSv3.1 8.8 (HIGH)
CVE-2025-39526 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through <= 3.6. CVSSv3.1 8.1 (HIGH)
CVE-2025-39436 — Upload: Unrestricted Upload of File with Dangerous Type vulnerability in aidraw I Draw idraw allows
Unrestricted Upload of File with Dangerous Type vulnerability in aidraw I Draw idraw allows Using Malicious Files.This issue affects I Draw: from n/a through <= 1.0. CVSSv3.1 9.1 (CRITICAL)
CVE-2025-32686 — Deserialization: of Untrusted Data vulnerability in WPSpeedo Team Members wps-team allows Object Injection.This issue
Deserialization of Untrusted Data vulnerability in WPSpeedo Team Members wps-team allows Object Injection.This issue affects Team Members: from n/a through <= 3.4.4. CVSSv3.1 8.8 (HIGH)
CVE-2025-32682 — Upload: Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg-lite-interactive-vector-maps allows Upload
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg-lite-interactive-vector-maps allows Upload a Web Shell to a Web Server.This issue affects MapSVG: from n/a through <= 8.6.4. CVSSv3.1 9.9 (CRITICAL)