Hemi VDP: WordPress Version Exposure via ███████ on hemi.xyz
The WordPress CMS version was exposed in the XML file at https://hemi.xyz███. This disclosure allowed attackers to fingerprint the CMS...Read More ...
Continue Reading
August 12, 2025
curl: Arbitrary File Read via file:// Protocol in cURL
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Vulnerability Report: Local File Disclosure via file:// Protocol in cURL
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: on the implications of permitting procedural culling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Automattic: Woocommerce SQL Injection in WC_Report_Coupon_Usage
A SQL injection vulnerability was found in the WooCommerce plugin version 9.9.3. The vulnerable parameter was 'coupon_codes' in the '/wp-admin/admin.php?page=wc-reports&tab=orde ...
Continue Reading
August 12, 2025
curl: Default Minimum TLS Version Set to TLS v1.0 (Cryptographic Weakness)
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Use after free (or assert triggered) with failed allocations in openssl
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
WakaTime: Not a Vuln: Race Condition Allows Creation of Multiple Organizations with the Same Name
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Back to Main
