Critical vulnerabilities, curated daily for security professionals
đ¯ SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
đ
Archived Security Brief
This brief includes 7 actively exploited vulnerabilities and 15 additional critical issues requiring immediate attention.
đ¨ High threat activity: 7 vulnerabilities under active exploitation
218 total vulnerabilities disclosed in last 24 hours
The education theme for WordPress is vulnerable to PHP Object Injection in all versions upMultiple Products
The education theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.6.10 via deserialization of untrusted input in the 'themerex_callback_view_more_posts' f...
CVSS Base9.8
â
CRSSelect profile
CVE-2025-4689
9.8
The Ads Pro PluginMultiple Products
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to Local File Inclusion which leads to Remote Code Execution in all versions up to, and including, 4...
CVSS Base9.8
â
CRSSelect profile
CVE-2025-5746
9.8
The Drag and Drop Multiple File UploadMultiple Products
The Drag and Drop Multiple File Upload (Pro) - WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the dnd_upload_cf7_upload_chunks() functi...
CVSS Base9.8
â
CRSSelect profile
CVE-2025-53529
9.8
WeGIA is a web manager for charitableMultiple Products
WeGIA is a web manager for charitable institutions. An SQL Injection vulnerability was identified in the /html/funcionario/profile_funcionario.php endpoint. The id_funcionario parameter is not properl...
CVSS Base9.8
â
CRSSelect profile
CVE-2025-6934
9.8đ
The Opal Estate ProMultiple Products
The Opal Estate Pro â Property Management and Submission plugin for WordPress, used by the FullHouse - Real Estate Responsive WordPress Theme, is vulnerable to privilege escalation via in all versions...
CVSS Base9.8
â
CRSSelect profile
CVE-2025-4779
9.1
UnknownMultiple Products
lunary-ai/lunary versions prior to 1.9.24 are vulnerable to stored cross-site scripting (XSS). An unauthenticated attacker can inject malicious JavaScript into the `v1/runs/ingest` endpoint by adding ...
CVSS Base9.1
â
CRSSelect profile
CVE-2025-37099
9.8đ
A remote code execution vulnerability exists in HPE Insight Remote SupportMultiple Products
A remote code execution vulnerability exists in HPE Insight Remote Support (IRS) prior to v7.15.0.646.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-20309
10đ
A vulnerability in Cisco Unified Communications ManagerMultiple Products
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacke...
Deserialization of Untrusted Data vulnerability in BestWpDeveloper WooCommerce ProductMultiple Products
Deserialization of Untrusted Data vulnerability in BestWpDeveloper WooCommerce Product Multi-Action allows Object Injection. This issue affects WooCommerce Product Multi-Action: from n/a through 1.3.
Marvell QConvergeConsole getFileFromURL Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ...
CVSS Base9.8
â
CRSSelect profile
CVE-2025-6810
9.8
MesciusMultiple Products
Mescius ActiveReports.NET ReadValue Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installation...
CVSS Base9.8
â
CRSSelect profile
CVE-2025-6811
9.8
MesciusMultiple Products
Mescius ActiveReports.NET TypeResolutionService Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected ...
CVSS Base9.8
â
CRSSelect profile
CVE-2025-41672
10
A remote unauthenticated attacker may use default certificates to generate JWT Tokens and gain full access to the tool and all connectedMultiple Products
A remote unauthenticated attacker may use default certificates to generate JWT Tokens and gain full access to the tool and all connected devices.
CVSS Base10
â
CRSSelect profile
â ī¸
High Priority Updates
CVE-2025-52807
8.1đ
WordPressMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ApusWP Kossy - Minimalist eCommerce WordPress Theme allows PHP Local File Inclusion
CVSS Base8.1
â
CRSSelect profile
CVE-2025-6464
7.5
WordPressMultiple Products
The Forminator Forms â Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-4414
8.1
cmsmasters CMSMastersMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in cmsmasters CMSMasters Content Composer allows PHP Local File Inclusion
CVSS Base8.1
â
CRSSelect profile
CVE-2025-5692
8.8đ
WordPressMultiple Products
The Lead Form Data Collection to CRM plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the doFieldAjaxAction() function in all versions up to, and including, 3
CVSS Base8.8
â
CRSSelect profile
CVE-2025-3848
8.8đ
WordPressMultiple Products
The Download Manager and Payment Form WordPress Plugin â WP SmartPay plugin for WordPress is vulnerable to privilege escalation via account takeover in versions 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-5953
8.8đ
WordPressMultiple Products
The WP Human Resource Management plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization in the ajax_insert_employee() and update_empoyee() functions in versions 2
CVSS Base8.8
â
CRSSelect profile
CVE-2025-47627
7.5
LCweb PrivateContentMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in LCweb PrivateContent - Mail Actions allows PHP Local File Inclusion
CVSS Base7.5
â
CRSSelect profile
CVE-2025-49070
7.5
NasaTheme ElessiMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in NasaTheme Elessi allows PHP Local File Inclusion
CVSS Base7.5
â
CRSSelect profile
CVE-2025-4381
7.5đ
WordPressMultiple Products
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to SQL Injection via the â$idâ variable of the getSpace() function in all versions up to, and including, 4
CVSS Base7.5
â
CRSSelect profile
CVE-2025-5339
7.5đ
WordPressMultiple Products
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the âbsa_pro_idâ parameter in all versions up to, and including, 4
CVSS Base7.5
â
CRSSelect profile
CVE-2025-6437
7.5đ
WordPressMultiple Products
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to SQL Injection via the âoidâ parameter in all versions up to, and including, 4
CVSS Base7.5
â
CRSSelect profile
CVE-2025-6782
7.5đ
WordPressMultiple Products
The GoZen Forms plugin for WordPress is vulnerable to SQL Injection via the 'forms-id' parameter of the dirGZActiveForm() function in all versions up to, and including, 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-6783
7.5đ
WordPressMultiple Products
The GoZen Forms plugin for WordPress is vulnerable to SQL Injection via the 'forms-id' parameter of the emdedSc() function in all versions up to, and including, 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-5014
8.8đ
WordPressMultiple Products
The Home Villas | Real Estate WordPress Theme theme for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'wp_rem_cs_widget_file_delete' function in all versions up to, and including, 2
CVSS Base8.8
â
CRSSelect profile
CVE-2025-6459
8.8đ
WordPressMultiple Products
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4
CVSS Base8.8
â
CRSSelect profile
CVE-2025-6463
8.8đ
WordPressMultiple Products
The Forminator Forms â Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'entry_delete_upload_files' function in all versions up to, and including, 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-49713
8.8đ
MicrosoftMultiple Products
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2025-2932
8.8đ
WordPressMultiple Products
The JKDEVKIT plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'font_upload_handler' function in all versions up to, and including, 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-4380
8.1đ
WordPressMultiple Products
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4
CVSS Base8.1
â
CRSSelect profile
CVE-2025-4946
8.1đ
WordPressMultiple Products
The Vikinger theme for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the vikinger_delete_activity_media_ajax() function in all versions up to, and including, 1
CVSS Base8.1
â
CRSSelect profile
CVE-2025-6238
8
WordPressMultiple Products
The AI Engine plugin for WordPress is vulnerable to open redirect in version 2
CVSS Base8
â
CRSSelect profile
CVE-2025-46733
7.9
UnknownMultiple Products
OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology
CVSS Base7.9
â
CRSSelect profile
CVE-2024-46992
7.8
ElectronMultiple Products
Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS
CVSS Base7.8
â
CRSSelect profile
CVE-2025-27461
7.6
DuringMultiple Products
During startup, the device automatically logs in the EPC2 Windows user without requesting a password
CVSS Base7.6
â
CRSSelect profile
CVE-2025-6814
7.5
WordPressMultiple Products
The Booking X plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_now() function in versions 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-52805
7.5
VaultDweller LeykaMultiple Products
Path Traversal vulnerability in VaultDweller Leyka allows PHP Local File Inclusion
CVSS Base7.5
â
CRSSelect profile
CVE-2025-3046
7.5
A vulnerability in theMultiple Products
A vulnerability in the `ObsidianReader` class of the run-llama/llama_index repository, versions 0
CVSS Base7.5
â
CRSSelect profile
CVE-2025-37097
7.5
HPE Insight RemoteMultiple Products
A vulnerability in HPE Insight Remote Support (IRS) prior to v7
CVSS Base7.5
â
CRSSelect profile
CVE-2025-37098
7.5
pathMultiple Products
A path traversal vulnerability exists in HPE Insight Remote Support (IRS) prior to v7
CVSS Base7.5
â
CRSSelect profile
CVE-2025-6713
7.7
MongoDBMultiple Products
An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server
CVSS Base7.7
â
CRSSelect profile
CVE-2025-24780
8.5
printcart PrintcartMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in printcart Printcart Web to Print Product Designer for WooCommerce allows SQL Injection
Deserialization of Untrusted Data vulnerability in designthemes Red Art allows Object Injection
CVSS Base8.8
â
CRSSelect profile
CVE-2025-1708
8.6đ
applicationMultiple Products
The application is vulnerable to SQL injection attacks
CVSS Base8.6
â
CRSSelect profile
CVE-2025-24748
8.5
LambertGroup All InMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup All In One Slider Responsive allows SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2025-28967
8.5
Steve Truman ContactMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Steve Truman Contact Us page - Contact people LITE allows SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2025-28969
8.5
cybio Gallery WidgetMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in cybio Gallery Widget allows SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2025-30947
8.5
gopiplus Cool fadeMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus Cool fade popup allows Blind SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2025-30969
8.5
gopiplus iFrameMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus iFrame Images Gallery allows SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2025-30979
8.5
gopiplus PixelatingMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus Pixelating image slideshow gallery allows SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2025-32297
8.5
quantumcloud SimpleMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in quantumcloud Simple Link Directory allows SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2025-6072
7.5
UnknownMultiple Products
Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE
CVSS Base7.5
â
CRSSelect profile
CVE-2025-6073
7.5
UnknownMultiple Products
Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE
CVSS Base7.5
â
CRSSelect profile
CVE-2025-49870
7.5
Cozmoslabs PaidMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozmoslabs Paid Member Subscriptions allows SQL Injection
CVSS Base7.5
â
CRSSelect profile
CVE-2025-6939
8.8
TOTOLINKMultiple Products
A vulnerability classified as critical has been found in TOTOLINK A3002RU 3
CVSS Base8.8
â
CRSSelect profile
CVE-2025-6940
8.8
TOTOLINKMultiple Products
A vulnerability classified as critical was found in TOTOLINK A702R 4
CVSS Base8.8
â
CRSSelect profile
CVE-2025-6953
8.8
TOTOLINKMultiple Products
A vulnerability, which was classified as critical, was found in TOTOLINK A3002RU 3