24h | 7d | 30d

Overview

  • o2oe
  • E-Invoice App Malaysia
  • einvoiceapp-malaysia

30 Dec 2025
Published
30 Dec 2025
Updated

CVSS
Pending
EPSS
0.02%

KEV

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in o2oe E-Invoice App Malaysia einvoiceapp-malaysia allows Retrieve Embedded Sensitive Data.This issue affects E-Invoice App Malaysia: from n/a through <= 1.1.0.

Statistics

  • 1 Post

Last activity: 1 hour ago

Fediverse

Profile picture

๐ŸŸ  CVE-2025-68988 - High (7.5)

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in o2oe E-Invoice App Malaysia einvoiceapp-malaysia allows Retrieve Embedded Sensitive Data.This issue affects E-Invoice App Malaysia: from n/a through &lt;= ...

๐Ÿ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda

  • 0
  • 0
  • 0
  • 1h ago

Overview

  • thembay
  • Aora
  • aora

30 Dec 2025
Published
30 Dec 2025
Updated

CVSS
Pending
EPSS
0.05%

KEV

Description

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Aora aora allows PHP Local File Inclusion.This issue affects Aora: from n/a through <= 1.3.15.

Statistics

  • 1 Post

Last activity: 2 hours ago

Fediverse

Profile picture

๐Ÿ”ด CVE-2025-68985 - Critical (9.8)

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Aora aora allows PHP Local File Inclusion.This issue affects Aora: from n/a through &lt;= 1.3.15.

๐Ÿ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda

  • 0
  • 0
  • 0
  • 2h ago

Overview

  • Appointify
  • Appointify
  • appointify

30 Dec 2025
Published
30 Dec 2025
Updated

CVSS v3.1
HIGH (7.6)
EPSS
Pending

KEV

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Appointify allows Blind SQL Injection.This issue affects Appointify: from n/a through 1.0.8.

Statistics

  • 1 Post

Last activity: 8 hours ago

Fediverse

Profile picture

๐ŸŸ  CVE-2025-59129 - High (7.6)

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Appointify allows Blind SQL Injection.This issue affects Appointify: from n/a through 1.0.8.

๐Ÿ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda

  • 0
  • 0
  • 0
  • 8h ago

Overview

  • Pending

Pending
Published
Pending
Updated

CVSS
Pending
EPSS
Pending

KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

  • 1 Post

Last activity: 8 hours ago

Bluesky

Profile picture
๐Ÿ“ข Abus de lโ€™en-tรชte Listโ€‘Unsubscribe : XSS stockรฉe (CVE-2025-68673) dans Horde et SSRF via Nextcloud Mail ๐Ÿ“ Dans un billet techniquโ€ฆ https://cyberveille.ch/posts/2025-12-29-abus-de-len-tete-list-unsubscribe-xss-stockee-cve-2025-68673-dans-horde-et-ssrf-via-nextcloud-mail/ #Horde_Webmail #Cyberveille
  • 0
  • 0
  • 0
  • 8h ago

Overview

  • MadrasThemes
  • MAS Videos
  • masvideos

30 Dec 2025
Published
30 Dec 2025
Updated

CVSS v3.1
HIGH (7.5)
EPSS
Pending

KEV

Description

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in MadrasThemes MAS Videos allows PHP Local File Inclusion.This issue affects MAS Videos: from n/a through 1.3.2.

Statistics

  • 1 Post

Last activity: 2 hours ago

Fediverse

Profile picture

๐ŸŸ  CVE-2025-62753 - High (7.5)

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in MadrasThemes MAS Videos allows PHP Local File Inclusion.This issue affects MAS Videos: from n/a through 1.3.2.

๐Ÿ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda

  • 0
  • 0
  • 0
  • 2h ago

Overview

  • Edge-Themes
  • Cinerama - A WordPress Theme for Movie Studios and Filmmakers
  • cinerama

30 Dec 2025
Published
30 Dec 2025
Updated

CVSS
Pending
EPSS
0.05%

KEV

Description

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Edge-Themes Cinerama - A WordPress Theme for Movie Studios and Filmmakers cinerama allows PHP Local File Inclusion.This issue affects Cinerama - A WordPress Theme for Movie Studios and Filmmakers: from n/a through <= 2.4.

Statistics

  • 1 Post

Last activity: 1 hour ago

Fediverse

Profile picture

๐Ÿ”ด CVE-2025-68987 - Critical (9.8)

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Edge-Themes Cinerama - A WordPress Theme for Movie Studios and Filmmakers cinerama allows PHP Local File Inclusion.This issue ...

๐Ÿ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda

  • 0
  • 0
  • 0
  • 1h ago

Overview

  • Pending

03 Jul 2023
Published
30 Dec 2025
Updated

CVSS
Pending
EPSS
0.10%

KEV

Description

Buffer Overflow vulnerability in mtrojnar osslsigncode v.2.3 and before allows a local attacker to execute arbitrary code via a crafted .exe, .sys, and .dll files.

Statistics

  • 1 Post

Last activity: 11 hours ago

Bluesky

Profile picture
URGENT: CVE-2023-36377 - Critical buffer overflow patched in osslsigncode for #Debian 11. This Authenticode signing tool vulnerability allows arbitrary code execution via crafted files. Read more: ๐Ÿ‘‰ tinyurl.com/3fpeyb8f #Security
  • 0
  • 0
  • 0
  • 11h ago

Overview

  • Eagle-Themes
  • Eagle Booking
  • eagle-booking

30 Dec 2025
Published
30 Dec 2025
Updated

CVSS
Pending
EPSS
0.02%

KEV

Description

Authorization Bypass Through User-Controlled Key vulnerability in Eagle-Themes Eagle Booking eagle-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Eagle Booking: from n/a through <= 1.3.4.3.

Statistics

  • 1 Post

Last activity: Last hour

Fediverse

Profile picture

๐ŸŸ  CVE-2025-68975 - High (8.1)

Authorization Bypass Through User-Controlled Key vulnerability in Eagle-Themes Eagle Booking eagle-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Eagle Booking: from n/a through &lt;= 1.3.4.3.

๐Ÿ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda

  • 0
  • 0
  • 0
  • Last hour

Overview

  • Tenda
  • M3

30 Dec 2025
Published
30 Dec 2025
Updated

CVSS v4.0
HIGH (8.7)
EPSS
0.05%

KEV

Description

A security flaw has been discovered in Tenda M3 1.0.0.13(4903). This issue affects the function formSetAdInfoDetails of the file /goform/setAdInfoDetail. The manipulation of the argument adName/smsPassword/smsAccount/weixinAccount/weixinName/smsSignature/adRedirectUrl/adCopyRight/smsContent/adItemUID results in heap-based buffer overflow. The attack may be performed from remote. The exploit has been released to the public and may be exploited.

Statistics

  • 1 Post

Last activity: 17 hours ago

Fediverse

Profile picture

๐ŸŸ  CVE-2025-15233 - High (8.8)

A security flaw has been discovered in Tenda M3 1.0.0.13(4903). This issue affects the function formSetAdInfoDetails of the file /goform/setAdInfoDetail. The manipulation of the argument adName/smsPassword/smsAccount/weixinAccount/weixinName/smsSi...

๐Ÿ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda

  • 0
  • 0
  • 0
  • 17h ago

Overview

  • Go standard library
  • encoding/pem
  • encoding/pem

29 Oct 2025
Published
04 Nov 2025
Updated

CVSS
Pending
EPSS
0.03%

KEV

Description

The processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input. This affects programs which parse untrusted PEM inputs.

Statistics

  • 1 Post

Last activity: 15 hours ago

Bluesky

Profile picture
ust published a deep-dive on CVE-2025-61723, the critical JWT vulnerability in #Fedora 42's Go library. Went beyond the advisory to explore. Read more: ๐Ÿ‘‰ tinyurl.com/5jxhdcuj #Security
  • 0
  • 0
  • 0
  • 15h ago
Showing 11 to 20 of 60 CVEs