CVE ID : CVE-2025-49131 Published : June 9, 2025, 1:15 p.m. | 2 hours, 12 minutes ago Description : FastGPT is an open-source project that provides a platform for building, deploying, and operating AI-driven workflows and conversational agents. The Sandbox container (fastgpt-sandbox) is a specialized, isolated environment used by FastGPT to safely execute user-submitted or dynamically generated…

CVE ID : CVE-2025-49130 Published : June 9, 2025, 1:15 p.m. | 2 hours, 12 minutes ago Description : Laravel Translation Manager is a package to manage Laravel translation files. Prior to version 0.6.8, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect input validation and sanitization of user-input data. An attacker can inject…

CVE ID : CVE-2025-49013 Published : June 9, 2025, 1:15 p.m. | 1 hour, 43 minutes ago Description : WilderForge is a Wildermyth coremodding API. A critical vulnerability has been identified in multiple projects across the WilderForge organization. The issue arises from unsafe usage of `${{ github.event.review.body }}` and other user controlled variables directly inside shell script…

CVE ID : CVE-2025-5875 Published : June 9, 2025, 12:15 p.m. | 2 hours, 43 minutes ago Description : A vulnerability classified as critical has been found in TP-Link TL-IPC544EP-W4 1.0.9 Build 240428 Rel 69493n. Affected is the function sub_69064 of the file /bin/main. The manipulation of the argument text leads to buffer overflow. It is possible…

CVE ID : CVE-2025-41444 Published : June 9, 2025, 12:15 p.m. | 2 hours, 43 minutes ago Description : Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the alerts module. Severity: 8.3 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more… Go…

CVE ID : CVE-2025-3835 Published : June 9, 2025, 11:15 a.m. | 3 hours, 43 minutes ago Description : Zohocorp ManageEngine Exchange Reporter Plus versions 5721 and prior are vulnerable to Remote code execution in the Content Search module. Severity: 9.6 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more… Go to…

CVE ID : CVE-2025-36528 Published : June 9, 2025, 11:15 a.m. | 3 hours, 43 minutes ago Description : Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in Service Account Auditing reports. Severity: 8.3 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more……

CVE ID : CVE-2025-27709 Published : June 9, 2025, 11:15 a.m. | 3 hours, 43 minutes ago Description : Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the Service Account Auditing reports. Severity: 8.3 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and…

CVE ID : CVE-2025-5869 Published : June 9, 2025, 9:15 a.m. | 5 hours, 43 minutes ago Description : A vulnerability, which was classified as critical, was found in RT-Thread 5.1.0. Affected is the function sys_recvfrom of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument from leads to memory corruption. Severity: 8.0 | HIGH Visit the link…

CVE ID : CVE-2025-5894 Published : June 9, 2025, 8:15 a.m. | 6 hours, 43 minutes ago Description : Smart Parking Management System from Honding Technology has a Missing Authorization vulnerability, allowing remote attackers with regular privileges to access a specific functionality to create administrator accounts, and subsequently log into the system using those accounts. Severity: 8.8…