Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 4.8 CVE-2025-8707

Huuge Box App com.huuge.game.zjbox AndroidManifest.xml improper export of android application components_CVE-2025-8707

A vulnerability was found in Huuge Box App 1.0.3 on Android. It has been classified as problematic. This affects an unknown part of the file Androi...

Huuge Box App 1.0.3 CVE
LOW 2.3 CVE-2025-8708

Antabot White-Jotter com.gm.wj.config.ShiroConfiguration ShiroConfiguration.java CookieRememberMeManager deserialization_CVE-2025-8708

A vulnerability was found in Antabot White-Jotter 0.22. It has been declared as critical. This vulnerability affects the function CookieRememberMeM...

Antabot White-Jotter 0.22 CVE
MEDIUM 5.3 CVE-2025-8706

Wanzhou WOES Intelligent Optimization Energy Saving System Energy Overview Module CreateFunctionLog sql injection_CVE-2025-8706

A vulnerability has been found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 and classified as critical. Affected by this vulne...

Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 CVE
LOW 3.5 CVE-2025-38746

CVE-2025-38746_CVE-2025-38746

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. A...

Dell SupportAssist OS Recovery N/A CVE
HIGH 7.8 CVE-2025-38747

CVE-2025-38747_CVE-2025-38747

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contain a Creation of Temporary File With Insecure Permissions vulnerability. A local a...

Dell SupportAssist OS Recovery N/A CVE
MEDIUM 5.5 CVE-2025-54793

Astro: Duplicate trailing slash feature can lead to Open Redirects_CVE-2025-54793

Astro is a web framework for content-driven websites. In versions 5.2.0 through 5.12.7, there is an Open Redirect vulnerability in the trailing sla...

withastro astro >= 5.2.0, < 5.12.8 CVE
MEDIUM 5.3 CVE-2025-8704

Wanzhou WOES Intelligent Optimization Energy Saving System Analysis Conclusion Query Module GetAlarmResultProcessList sql injection_CVE-2025-8704

A vulnerability, which was classified as critical, has been found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. This issue aff...

Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 CVE
MEDIUM 5.3 CVE-2025-8703

Wanzhou WOES Intelligent Optimization Energy Saving System Environmental Real-Time Data Module GetAreaTrendChartData sql injection_CVE-2025-8703

A vulnerability classified as critical was found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. This vulnerability affects unkn...

Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 CVE
CRITICAL 9.1 CVE-2025-54887

jwe: Missing AES-GCM authentication tag validation in encrypted JWEs_CVE-2025-54887

jwe is a Ruby implementation of the RFC 7516 JSON Web Encryption (JWE) standard. In versions 1.1.0 and below, authentication tags of encrypted JWEs...

jwt ruby-jwe < 1.1.1 CVE
MEDIUM 5.3 CVE-2025-8705

Wanzhou WOES Intelligent Optimization Energy Saving System Energy Overview Module GetTargetConfig sql injection_CVE-2025-8705

A vulnerability, which was classified as critical, was found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. Affected is an unkn...

Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 CVE