Critical vulnerabilities, curated daily for security professionals
🎯 SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
📊
Archived Security Brief
This week's security landscape witnessed unprecedented chaos with a critical Nx supply chain attack targeting thousands of development pipelines, multiple EXPIRED federal KEV deadlines for Cisco firewall vulnerabilities under active exploitation, and a surge in WordPress plugin compromises. The week began with 38 critical CVEs on Monday, peaked with supply chain attacks mid-week, and ended with emergency Cisco patches. With over 150 critical vulnerabilities and 500+ high-priority issues disclosed this week, including 20+ CISA KEV entries, organizations face an overwhelming remediation burden heading into the weekend.
WEEK IN CRISIS: 150+ critical CVEs including supply chain attacks and expired federal deadlines
Nx build system compromised via malicious npm packages affecting enterprise CI/CD pipelines
Multiple Cisco ASA/FTD firewall vulnerabilities with EXPIRED federal compliance deadlines
WordPress ecosystem under siege with 15+ plugin vulnerabilities enabling site takeover
Google Chrome V8 engine zero-day (CVE-2025-10585) actively exploited in the wild
SolarWinds Web Help Desk RCE and multiple database exposure incidents
CISA KEV catalog expanded with 20+ entries requiring immediate federal response
Immediate action: WEEKEND EMERGENCY RESPONSE REQUIRED: Organizations must dedicate weekend resources to address the backlog of critical vulnerabilities from this week. Priority #1: Patch all Cisco firewall vulnerabilities with expired KEV deadlines. Priority #2: Audit npm dependencies for Nx supply chain compromise. Priority #3: Update all WordPress plugins with known vulnerabilities. Security teams should maintain 24/7 monitoring throughout the weekend given the high volume of unpatched critical issues.
💡 Tip: Swipe CVE cards left to ⭐ star, right to ❌ remove
Section Navigation
⚠️
CISA Known Exploited Vulnerabilities
⚠️ CISA KEV
CVE-2025-20333
9.9
A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security ApplianceMultiple Products
⏰ Federal Deadline:September 25, 2025
A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, remote a...
CVSS Base9.9
→
CRSSelect profile
⚠️ CISA KEVURGENT
CVE-2025-5086
9.5
Dassault SystèmesDELMIA Apriso
⏰ Federal Deadline:October 1, 2025(6 days remaining)
Dassault Systèmes DELMIA Apriso Deserialization of Untrusted Data Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
→
CRSSelect profile
⚠️ CISA KEV
CVE-2025-10585
9.5📝
GoogleChromium V8
⏰ Federal Deadline:October 13, 2025(18 days remaining)
Google Chromium V8 Type Confusion Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
→
CRSSelect profile
🚨
Critical Vulnerabilities
CVE-2025-20363
9📝
A vulnerability in the web services of Cisco Secure Firewall Adaptive Security ApplianceMultiple Products
A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Threat Defense (FTD) Software, Cisco IOS Software, Cisco IOS XE Software,...
CVSS Base9
→
CRSSelect profile
CVE-2025-60156
9.6📝
UnknownMultiple Products
Cross-Site Request Forgery (CSRF) vulnerability in webandprint AR For WordPress allows Upload a Web Shell to a Web Server. This issue affects AR For WordPress: from n/a through 7.98.
CVSS Base9.6
→
CRSSelect profile
CVE-2025-59834
9.8📝
ADB MCP Server is a MCPMultiple Products
ADB MCP Server is a MCP (Model Context Protocol) server for interacting with Android devices through ADB. In versions 0.1.0 and prior, the MCP Server is written in a way that is vulnerable to command ...
CVSS Base9.8
→
CRSSelect profile
CVE-2025-59823
9.9📝
Project Gardener implements the automated management and operation of Kubernetes clusters as aMultiple Products
Project Gardener implements the automated management and operation of Kubernetes clusters as a service. Code injection may be possible in Gardener Extensions for AWS providers prior to version 1.64.0,...
CVSS Base9.9
→
CRSSelect profile
CVE-2025-60219
10📝
Unrestricted Upload of File with Dangerous Type vulnerability in HaruTheme WooCommerce Designer Pro allows Upload a Web Shell to a WebMultiple Products
Unrestricted Upload of File with Dangerous Type vulnerability in HaruTheme WooCommerce Designer Pro allows Upload a Web Shell to a Web Server. This issue affects WooCommerce Designer Pro: from n/a thr...
CVSS Base10
→
CRSSelect profile
CVE-2025-58384
10📝
In DOXENSE WATCHDOC beforeMultiple Products
In DOXENSE WATCHDOC before 6.1.1.5332, Deserialization of Untrusted Data can lead to remote code execution through the .NET Remoting library in the Watchdoc administration interface.
CVSS Base10
→
CRSSelect profile
CVE-2025-59841
9.8📝
Flag Forge is a Capture The FlagMultiple Products
Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.2.0 to before 2.3.1, the FlagForge web application improperly handles session invalidation. Authenticated users can continue to acce...
CVSS Base9.8
→
CRSSelect profile
CVE-2025-59832
9.9📝
Horilla is a free and open source Human Resource Management SystemMultiple Products
Horilla is a free and open source Human Resource Management System (HRMS). Prior to version 1.4.0, there is a stored XSS vulnerability in the ticket comment editor. A low-privilege authenticated user ...
CVSS Base9.9
→
CRSSelect profile
CVE-2025-55187
9.9📝
In DriveLockMultiple Products
In DriveLock 24.1.4 before 24.1.5, 24.2.5 before 24.2.6, and 25.1.2 before 25.1.4, attackers can gain elevated privileges.
CVSS Base9.9
→
CRSSelect profile
CVE-2025-10542
9.8📝
iMonitor EAMMultiple Products
iMonitor EAM 9.6394 ships with default administrative credentials that are also displayed within the management client’s connection dialog. If the administrator does not change these defaults, a remot...
CVSS Base9.8
→
CRSSelect profile
CVE-2025-59934
9.4📝
Formbricks is an open source qualtricsMultiple Products
Formbricks is an open source qualtrics alternative. Prior to version 4.0.1, Formbricks is missing JWT signature verification. This vulnerability stems from a token validation routine that only decodes...
CVSS Base9.4
→
CRSSelect profile
⚠️
High Priority Updates
CVE-2025-59814
8.8📝
ThisMultiple Products
This vulnerability allows malicious actors to gain unauthorized access to the Zenitel ICX500 and ICX510 Gateway Billing Admin endpoint, enabling them to read the entire contents of the Billing Admin database
CVSS Base8.8
→
CRSSelect profile
CVE-2025-60126
8.8📝
PluginOps TestimonialMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in PluginOps Testimonial Slider allows PHP Local File Inclusion
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Potenzaglobalsolutions PGS Core allows SQL Injection
CVSS Base8.5
→
CRSSelect profile
CVE-2025-57317
7.5📝
UnknownMultiple Products
apidoc-core is the core parser library to generate apidoc result following the apidoc-spec
CVSS Base7.5
→
CRSSelect profile
CVE-2025-60150
7.5📝
wpshuffle SubscribeMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpshuffle Subscribe to Download allows PHP Local File Inclusion
CVSS Base7.5
→
CRSSelect profile
CVE-2025-60153
7.5📝
wpshuffle SubscribeMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpshuffle Subscribe To Unlock allows PHP Local File Inclusion
CVSS Base7.5
→
CRSSelect profile
CVE-2025-10941
7.8📝
SERVCoreMultiple Products
A vulnerability was determined in Topaz SERVCore Teller 2
CVSS Base7.8
→
CRSSelect profile
CVE-2025-10967
7.3📝
wasMultiple Products
A vulnerability was detected in MuFen-mker PHP-Usermm up to 37f2d24e51b04346dfc565b93fc2fc6b37bdaea9
CVSS Base7.3
→
CRSSelect profile
CVE-2025-59816
7.3📝
ThisMultiple Products
This vulnerability allows attackers to directly query the underlying database, potentially retrieving all data stored in the Billing Admin database, including user credentials
CVSS Base7.3
→
CRSSelect profile
CVE-2025-10747
7.2📝
WordPressMultiple Products
The WP-DownloadManager plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the download-add
CVSS Base7.2
→
CRSSelect profile
CVE-2025-59830
7.5📝
webMultiple Products
Rack is a modular Ruby web server interface
CVSS Base7.5
→
CRSSelect profile
CVE-2025-43993
7.8📝
DellMultiple Products
Dell Wireless 5932e and Qualcomm Snapdragon X62 Firmware and GNSS/GPS Driver, versions prior to 3
CVSS Base7.8
→
CRSSelect profile
CVE-2024-48014
7.5📝
DellMultiple Products
Dell BSAFE Micro Edition Suite, versions prior to 5
CVSS Base7.5
→
CRSSelect profile
CVE-2025-54831
7.5📝
ApacheMultiple Products
Apache Airflow 3 introduced a change to the handling of sensitive information in Connections
CVSS Base7.5
→
CRSSelect profile
CVE-2025-10948
8.8
MikroTikMultiple Products
A vulnerability has been found in MikroTik RouterOS 7
CVSS Base8.8
→
CRSSelect profile
CVE-2025-59815
8.4📝
ThisMultiple Products
This vulnerability allows malicious actors to execute arbitrary commands on the underlying system of the Zenitel ICX500 and ICX510 Gateway, granting shell access
CVSS Base8.4
→
CRSSelect profile
CVE-2025-60169
7.1
ContactMultiple Products
Cross-Site Request Forgery (CSRF) vulnerability in W3S Cloud Technology W3SCloud Contact Form 7 to Zoho CRM allows Stored XSS
CVSS Base7.1
→
CRSSelect profile
CVE-2025-60171
7.1
yourpluginsMultiple Products
Cross-Site Request Forgery (CSRF) vulnerability in yourplugins Conditional Cart Messages for WooCommerce – YourPlugins
CVSS Base7.1
→
CRSSelect profile
CVE-2025-60173
7.1
Ashwani kumar GSTMultiple Products
Cross-Site Request Forgery (CSRF) vulnerability in Ashwani kumar GST for WooCommerce allows Stored XSS
CVSS Base7.1
→
CRSSelect profile
CVE-2025-60107
8.5
LambertGroupMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup LambertGroup - AllInOne - Banner with Playlist allows Blind SQL Injection
CVSS Base8.5
→
CRSSelect profile
CVE-2025-60108
8.5
LambertGroupMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup LambertGroup - AllInOne - Banner with Thumbnails allows Blind SQL Injection
CVSS Base8.5
→
CRSSelect profile
CVE-2025-60109
8.5
LambertGroupMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup LambertGroup - AllInOne - Content Slider allows Blind SQL Injection
CVSS Base8.5
→
CRSSelect profile
CVE-2025-60110
8.5
LambertGroup AllInOneMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup AllInOne - Banner Rotator allows SQL Injection
CVSS Base8.5
→
CRSSelect profile
CVE-2025-57446
7.5
SubscriptionMultiple Products
An issue in O-RAN Near Realtime RIC ric-plt-submgr in the J-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the Subscription Manager API component
CVSS Base7.5
→
CRSSelect profile
CVE-2025-36274
7.5
IBMMultiple Products
IBM Aspera HTTP Gateway 2
CVSS Base7.5
→
CRSSelect profile
CVE-2025-55558
7.5
bufferMultiple Products
A buffer overflow occurs in pytorch v2
CVSS Base7.5
→
CRSSelect profile
CVE-2025-55847
7.5
WavlinkMultiple Products
Wavlink M86X3A_V240730 contains a buffer overflow vulnerability in the /cgi-bin/ExportAllSettings
CVSS Base7.5
→
CRSSelect profile
CVE-2025-10467
8.9
PROLIZ ComputerMultiple Products
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PROLIZ Computer Software Hardware Service Trade Ltd
CVSS Base8.9
→
CRSSelect profile
CVE-2025-10942
8.8
wasMultiple Products
A vulnerability was identified in H3C Magic B3 up to 100R002
CVSS Base8.8
→
CRSSelect profile
CVE-2025-10953
8.8
securityMultiple Products
A security vulnerability has been detected in UTT 1200GW and 1250GW up to 3
CVSS Base8.8
→
CRSSelect profile
CVE-2025-9642
8.7
versionsMultiple Products
An issue has been discovered in GitLab CE/EE affecting all versions from 14
CVSS Base8.7
→
CRSSelect profile
CVE-2025-10438
8.6
PathMultiple Products
Path Traversal: 'dir/
CVSS Base8.6
→
CRSSelect profile
CVE-2025-10449
8.6
Saysis ComputerMultiple Products
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saysis Computer Systems Trade Ltd
CVSS Base8.6
→
CRSSelect profile
CVE-2025-59839
8.6
EmbedVideoMultiple Products
The EmbedVideo Extension is a MediaWiki extension which adds a parser function called #ev and various parser tags for embedding video clips from various video sharing services
CVSS Base8.6
→
CRSSelect profile
CVE-2025-59817
8.4
ThisMultiple Products
This vulnerability allows attackers to execute arbitrary commands on the underlying system
CVSS Base8.4
→
CRSSelect profile
CVE-2025-60017
8.2
devicesMultiple Products
Unitree Go2, G1, H1, and B2 devices through 2025-09-20 allow root OS command injection via the hostapd_restart
CVSS Base8.2
→
CRSSelect profile
CVE-2025-59362
8.2
SquidMultiple Products
Squid through 7
CVSS Base8.2
→
CRSSelect profile
CVE-2025-59845
8.2
ApolloMultiple Products
Apollo Studio Embeddable Explorer & Embeddable Sandbox are website embeddable software solutions from Apollo GraphQL
CVSS Base8.2
→
CRSSelect profile
CVE-2025-10541
7.8
iMonitorMultiple Products
iMonitor EAM 9
CVSS Base7.8
→
CRSSelect profile
CVE-2025-59002
7.7
SeaTheme BM ContentMultiple Products
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in SeaTheme BM Content Builder allows Path Traversal
CVSS Base7.7
→
CRSSelect profile
CVE-2025-26278
7.5
prototypeMultiple Products
A prototype pollution in the lib
CVSS Base7.5
→
CRSSelect profile
CVE-2025-55560
7.5
issueMultiple Products
An issue in pytorch v2
CVSS Base7.5
→
CRSSelect profile
CVE-2025-48707
7.5
issueMultiple Products
An issue was discovered in Stormshield Network Security (SNS) before 5
CVSS Base7.5
→
CRSSelect profile
CVE-2025-57632
7.5
UnknownMultiple Products
libsmb2 6
CVSS Base7.5
→
CRSSelect profile
CVE-2025-59404
7.5
FlockMultiple Products
Flock Safety Bravo Edge AI Compute Device BRAVO_00
CVSS Base7.5
→
CRSSelect profile
CVE-2025-10858
7.5
versionsMultiple Products
An issue was discovered in GitLab CE/EE affecting all versions before 18
CVSS Base7.5
→
CRSSelect profile
CVE-2025-11021
7.5
flawMultiple Products
A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other applications for web communication
CVSS Base7.5
→
CRSSelect profile
CVE-2025-59010
7.5
PermalinkMultiple Products
Insertion of Sensitive Information Into Sent Data vulnerability in Maciej Bis Permalink Manager Lite allows Retrieve Embedded Sensitive Data
CVSS Base7.5
→
CRSSelect profile
CVE-2025-59011
7.5
shinetheme TravelerMultiple Products
Missing Authorization vulnerability in shinetheme Traveler allows Exploiting Incorrectly Configured Access Control Security Levels
CVSS Base7.5
→
CRSSelect profile
CVE-2025-10951
7.3
wasMultiple Products
A vulnerability was identified in geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743
CVSS Base7.3
→
CRSSelect profile
CVE-2025-10973
7.3
flawMultiple Products
A flaw has been found in JackieDYH Resume-management-system up to fb6b857d852dd796e748ce30c606fe5e61c18273
CVSS Base7.3
→
CRSSelect profile
CVE-2025-59408
7.3
FlockMultiple Products
Flock Safety Bravo Edge AI Compute Device BRAVO_00
CVSS Base7.3
→
CRSSelect profile
CVE-2025-35027
7.3
MultipleMultiple Products
Multiple robotic products by Unitree sharing a common firmware, including the Go2, G1, H1, and B2 devices, contain a command injection vulnerability
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11030
7.3
wasMultiple Products
A vulnerability was detected in Tutorials-Website Employee Management System up to 611887d8f8375271ce8abc704507d46340837a60
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11032
7.3
flawMultiple Products
A flaw has been found in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11033
7.3
hasMultiple Products
A vulnerability has been found in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11036
7.3
CommerceMultiple Products
A vulnerability was identified in code-projects E-Commerce Website 1
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11037
7.3
CommerceMultiple Products
A security flaw has been discovered in code-projects E-Commerce Website 1
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11039
7.3
InventoryMultiple Products
A security vulnerability has been detected in Campcodes Computer Sales and Inventory System 1
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11040
7.3
ManagementMultiple Products
A vulnerability was detected in code-projects Hostel Management System 1
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11045
7.3
wasMultiple Products
A vulnerability was identified in WAYOS LQ_04, LQ_05, LQ_06, LQ_07 and LQ_09 22
CVSS Base7.3
→
CRSSelect profile
CVE-2025-11046
7.3
TencentMultiple Products
A security flaw has been discovered in Tencent WeKnora 0
CVSS Base7.3
→
CRSSelect profile
CVE-2025-48107
7.1
ImproperMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in undsgn Uncode allows Reflected XSS
CVSS Base7.1
→
CRSSelect profile
CVE-2025-4957
7.1
Metagauss ProfileGridMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss ProfileGrid allows Reflected XSS
CVSS Base7.1
→
CRSSelect profile
CVE-2025-59012
7.1
shinetheme TravelerMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in shinetheme Traveler allows Reflected XSS