CVE-2025-4796 Eventin <= 4.0.34 – Authenticated (Contributor+) Privilege Escalation via User Email Change/Account Takeover

The Eventin plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.0.34. This is due to the plugin not properly validating a user' ...

Continue Reading

August 08, 2025

A Misconfiguration That Haunts Corporate Streaming Platforms Could Expose Sensitive Data

A security researcher discovered that flawed API configurations are plaguing corporate livestreaming platforms, potentially exposing internal company meetings—and he's releasing a tool to find. ...

Continue Reading

August 08, 2025

EUVD-2025-23992

The affected product does not limit the number of attempts for inputting the correct PIN for a registered product, which may allow an attacker to gain unauthorized access using brute-force methods i ...

Continue Reading

August 08, 2025

CVE-2025-46414

The affected product does not limit the number of attempts for inputting the correct PIN for a registered product, which may allow an attacker to gain unauthorized access using brute-force methods i ...

Continue Reading

August 08, 2025

CVE-2025-6004

creation_timestamp| type| source ---|---|--- 2025-08-08 15:11:38+00:00| seen|...Read More ...

Continue Reading

August 08, 2025

CVE-2025-8749

creation_timestamp| type| source ---|---|--- 2025-08-08 14:06:23+00:00| seen|...Read More ...

Continue Reading

August 08, 2025

CVE-2025-8730

creation_timestamp| type| source ---|---|--- 2025-08-08 16:15:33+00:00| seen|...Read More ...

Continue Reading

August 08, 2025

OpenBao Root Namespace Operator May Elevate Token Privileges

Impact Accounts with access to the highly-privileged identity entity system in the root namespace may increase their scope directly to the root policy. While the identity system always allowed adding ...

Continue Reading

August 08, 2025

1 408 409 410 411 412 9,321

Back to Main
Subscribe for the latest news: