Overview
Description
Statistics
- 1 Post
Fediverse
CVE-2025-68613: n8n RCE Vulnerability
Exploit/PoC: https://github.com/wioui/n8n-CVE-2025-68613-exploit
n8n has a critical security flaw that lets authenticated users execute arbitrary code through its workflow expression system. When users configure workflows, the expressions they provide can sometimes be evaluated without proper isolation from the underlying runtime environment.
Credit: NexxelSecurity
Overview
- Red Hat
- Enterprise Linux 9
- OpenSSH
Description
Statistics
- 1 Post
Bluesky
Overview
Description
Statistics
- 1 Post
Fediverse
🟠 CVE-2025-15428 - High (8.8)
A weakness has been identified in UTT 进取 512W 1.7.7-171114. Affected is the function strcpy of the file /goform/formRemoteControl. This manipulation of the argument Profile causes buffer overflow. It is possible to initiate the attack remotely...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15428/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda
Overview
Description
Statistics
- 1 Post
Fediverse
🟠 CVE-2026-21433 - High (7.7)
Emlog is an open source website building system. Versions up to and including 2.5.19 are vulnerable to server-side Out-of-Band (OOB) requests / SSRF via uploaded SVG files. An attacker can upload a crafted SVG to http[:]//emblog/admin/media[.]php ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21433/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda
Overview
- wpmudev
- Branda – White Label & Branding, Free Login Page Customizer
Description
Statistics
- 1 Post
Fediverse
🔴 CVE-2025-14998 - Critical (9.8)
The Branda plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.4.24. This is due to the plugin not properly validating a user's identity prior to updating their password. This mak...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14998/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda
Overview
Description
Statistics
- 1 Post
Fediverse
🟠 CVE-2025-66723 - High (7.5)
inMusic Brands Engine DJ 4.3.0 suffers from Insecure Permissions due to exposed HTTP service in the Remote Library, which allows attackers to access all files and network paths.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-66723/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda
Overview
Description
Statistics
- 2 Posts
Fediverse
🟠 CVE-2025-15431 - High (8.8)
A flaw has been found in UTT 进取 512W 1.7.7-171114. This affects the function strcpy of the file /goform/formFtpServerDirConfig. Executing manipulation of the argument filename can lead to buffer overflow. The attack can be launched remotely. T...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15431/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda
Overview
- Unknown
- Knowband Mobile App Builder
Description
Statistics
- 1 Post
Fediverse
🟠 CVE-2025-13029 - High (7.5)
The Knowband Mobile App Builder WordPress plugin before 3.0.0 does not have authorisation when deleting users via its REST API, allowing unauthenticated attackers to delete arbitrary users.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-13029/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda
Overview
Description
Statistics
- 1 Post
Overview
Description
Statistics
- 1 Post