Security Vulnerabilities

WordPress WP Go Maps Plugin is vulnerable to Cross Site Request Forgery (CVE-2025-24742)

January 27, 2025 Jason Davies 3521 Views 0 Comments CSRF, CVE-2025-24742, Cyber Security, WordPress, WordPress Plugin Vulnerability, WP Go Maps 0 min read

CVE-2025-24742 – There is a Cross-Site Request Forgery (CSRF) vulnerability in WP Go Maps (formerly WP Google Maps) WP Go Maps.

News Security Vulnerabilities

Cisco BroadWorks SIP Denial of Service Vulnerability (CVE-2025-20165)

January 24, 2025 Jason Davies 1287 Views 0 Comments Cisco, Cisco BroadWorks, CVE-2025-20165, Cyber Security, DoS Vulnerability 1 min read

A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in a denial of service (DoS) condition.

News Security Vulnerabilities

Cisco Meeting Management REST API Privilege Escalation Vulnerability (CVE-2025-20156)

January 23, 2025 Jason Davies 1400 Views 0 Comments API, Cisco, Cisco Meeting Management, CVE-2025-20156, Cyber Security, Privilege Escalation Vulnerability 0 min read

A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated attacker with low privileges to elevate privileges to administrator on an affected device.

News Security Vulnerabilities

Adobe Photoshop node_modules Uncontrolled Search Path Element Local Privilege Escalation Vulnerability (CVE-2025-21127)

January 21, 2025 Duncan 1371 Views 0 Comments Adobe, Adobe Photoshop, CVE-2025-21127, Cyber Security, Local Privilege Escalation 0 min read

CVE number – CVE-2025-21127 This vulnerability allows local attackers to escalate privileges on affected installations of Adobe Photoshop. An attacker

News Security Vulnerabilities

WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2024-8811)

January 21, 2025 Luke Simmonds 1175 Views 0 Comments CVE-2024-8811, Cyber Security, Remote Code Execution Vulnerability, WinZip 0 min read

CVE number – CVE-2024-8811 This vulnerability allows remote attackers to execute arbitrary code on affected installations of WinZip. User interaction

News Security Vulnerabilities

Cisco ThousandEyes Endpoint Agent for MacOS and RoomOS Certificate Validation Vulnerability (CVE-2025-20126)

January 17, 2025 Luke Simmonds 1405 Views 0 Comments Certificate Validation Vulnerability, Cisco, Cisco ThousandEyes, CVE-2025-20126, Cyber Security 0 min read

CVE number – CVE-2025-20126 A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could

News Security Vulnerabilities

Tenda AC8v4 stack overflow vulnerability (CVE-2024-57703)

January 17, 2025 Jason Davies 1400 Views 0 Comments CVE-2024-57703, Cyber Security, Tenda 0 min read

CVE number – CVE-2024-57703 The Tenda AC8v4 V16.03.34.06 firmware has a stack overflow vulnerability in the setSchedWifi function. The src variable receives the schedStartTime parameter from

News Security Vulnerabilities

Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability (CVE-2025-21331)

January 17, 2025 Jason Davies 1528 Views 0 Comments CVE-2025-21331, Cyber Security, Microsoft, Microsoft Windows, Privilege Escalation Vulnerability 0 min read

CVE Number – CVE-2025-21331 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker

News Security Vulnerabilities

Microsoft Office Word RTF File Parsing Memory Corruption Remote Code Execution Vulnerability (CVE-2025-21298)

January 15, 2025 Luke Simmonds 2803 Views 0 Comments CVE-2025-21298, Google Password Checkup, Microsoft, Microsoft Word, Remote Code Execution Vulnerability 0 min read

CVE number = CVE-2025-21298 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word.

News Security Vulnerabilities

Google Chrome VideoFrame Use-After-Free Remote Code Execution Vulnerability (CVE-2024-2886)

January 15, 2025 Jason Davies 2162 Views 0 Comments CVE-2024-2886, Cyber Security, Google, Google Chrome 0 min read

CVE number = CVE-2024-2886 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Google Chrome. User

WordPress WP Go Maps Plugin is vulnerable to Cross Site Request Forgery (CVE-2025-24742)

Like this:

Cisco BroadWorks SIP Denial of Service Vulnerability (CVE-2025-20165)

Like this:

Cisco Meeting Management REST API Privilege Escalation Vulnerability (CVE-2025-20156)

Like this:

Adobe Photoshop node_modules Uncontrolled Search Path Element Local Privilege Escalation Vulnerability (CVE-2025-21127)

Like this:

WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2024-8811)

Like this:

Cisco ThousandEyes Endpoint Agent for MacOS and RoomOS Certificate Validation Vulnerability (CVE-2025-20126)

Like this:

Tenda AC8v4 stack overflow vulnerability (CVE-2024-57703)

Like this:

Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability (CVE-2025-21331)

Like this:

Microsoft Office Word RTF File Parsing Memory Corruption Remote Code Execution Vulnerability (CVE-2025-21298)

Like this:

Google Chrome VideoFrame Use-After-Free Remote Code Execution Vulnerability (CVE-2024-2886)

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this: