Recent Advisories

Severity ID Title Vendor Product Date Type
Unknown ADV-8865

SQLi in Bayraktar Solar Energies’ ScadaWatt Otopilot

CVE Details Basic Information Title SQLi in Bayraktar Solar Energies’ ScadaWatt Otopilot Type cve Published 2025-07-24T12:56:42.961Z Modified...

N/A N/A NEWS
Unknown ADV-8859

Encryption of sensitive data in CapillaryScope missing

CVE Details Basic Information Title Encryption of sensitive data in CapillaryScope missing Type cve Published 2025-07-24T12:14:20.971Z Modified 202...

N/A N/A NEWS
Unknown ADV-8855

Post Grid Master <= 3.4.13 - Reflected Cross-Site Scripting via argsArray['read_more_text']

CVE Details Basic Information Title Post Grid Master

N/A N/A NEWS
Unknown ADV-8854

hiWeb Export Posts <= 0.9.0.0 - Cross-Site Request Forgery to Arbitrary File Deletion

CVE Details Basic Information Title hiWeb Export Posts

N/A N/A NEWS
Unknown ADV-8853

Ai Engine <= 2.9.4 - Missing URL Scheme Validation to Authenticated (Subscriber+) Arbitrary File Read via simpleTranscribeAudio and get_audio Functions

CVE Details Basic Information Title Ai Engine

N/A N/A NEWS
Unknown ADV-8852

Get Youtube Subs <= 3.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via subscribe_link_att Function

CVE Details Basic Information Title Get Youtube Subs

N/A N/A NEWS
Unknown ADV-8851

Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition <= 4.03.31 - Unauthenticated Login Token Generation to Authentication Bypass

CVE Details Basic Information Title Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition

N/A N/A NEWS
Unknown ADV-8850

Mine CloudVod <= 2.1.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via audio Parameter

CVE Details Basic Information Title Mine CloudVod

N/A N/A NEWS
Unknown ADV-8849

ONLYOFFICE Docs 1.1.0 – 2.2.0 – Missing Authorization to Unauthenticated Privilege Escalation via callback Function

CVE Details Basic Information Title ONLYOFFICE Docs 1.1.0 – 2.2.0 – Missing Authorization to Unauthenticated Privilege Escalation via c...

N/A N/A NEWS
Unknown ADV-8848

WP Wallcreeper <= 1.6.1 - Missing Authorization to Authenticated (Susbcriber+) Cache Enable/Disable

CVE Details Basic Information Title WP Wallcreeper

N/A N/A NEWS