Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7 CVE-2025-57700

Stored Cross-site Scripting in DIAEnergie_CVE-2025-57700

DIAEnergie - Stored Cross-site Scripting

Delta Electronics DIAEnergie CVE
HIGH 8.7 CVE-2025-6625

CVE-2025-6625_CVE-2025-6625

CWE-20: Improper Input Validation vulnerability exists that could cause a Denial Of Service when specific crafted FTP command is sent to the device.

Schneider Electric Modicon M340 All versions CVE
HIGH 8.6 CD43FCBF-9D85-

Exploit for Incorrect Authorization in Qualcomm Aqt1000_Firmware_CD43FCBF-9D85-5027-A7F4-55ABDD780A0F

Please read the following before running anything in this repository!!! [!NOTE] This is...

N/A N/A GITHUBEXPLOIT
HIGH 8.4 CVE-2025-31713

CVE-2025-31713_CVE-2025-31713

In engineer mode service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege ...

Unisoc (Shanghai) Technologies Co., Ltd. SL8521E/SL8521ET/ SL8541E/UIS8141E/UWS6137/UWS6137E/UWS6151(E)/UWS6152 Mocor5/Andorid8.1 CVE
HIGH 7.5 CVE-2025-7342

VM images built with Kubernetes Image Builder Nutanix or OVA providers use default credentials for Windows images if user did not override_CVE-2025-7342

A security issue was discovered in the Kubernetes Image Builder where default credentials are enabled during the image build process. Additionally,...

Kubernetes Image Builder CVE
HIGH 8.7 CVE-2025-9089

Tenda AC20 SetIpMacBind sub_48E628 stack-based overflow_CVE-2025-9089

A vulnerability was determined in Tenda AC20 16.03.08.12. This issue affects the function sub_48E628 of the file /goform/SetIpMacBind. The manipula...

Tenda AC20 16.03.08.12 CVE
HIGH 8.7 CVE-2025-9087

Tenda AC20 SetNetControlList Endpoint set_qosMib_list stack-based overflow_CVE-2025-9087

A vulnerability has been found in Tenda AC20 16.03.08.12. This affects the function set_qosMib_list of the file /goform/SetNetControlList of the co...

Tenda AC20 16.03.08.12 CVE
HIGH 8.7 CVE-2025-9088

Tenda AC20 formSetVirtualSer save_virtualser_data stack-based overflow_CVE-2025-9088

A vulnerability was found in Tenda AC20 16.03.08.12. This vulnerability affects the function save_virtualser_data of the file /goform/formSetVirtua...

Tenda AC20 16.03.08.12 CVE
HIGH 7.3 CVE-2025-8105

Soledad <= 8.6.7 - Unauthenticated Arbitrary Shortcode Execution_CVE-2025-8105

The The Soledad theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.6.7. This is due to the ...

pencidesign Soledad * CVE
HIGH 8.8 CVE-2025-8142

Soledad <= 8.6.7 - Authenticated (Contributor+) Local File Inclusion via 'header_layout'_CVE-2025-8142

The Soledad theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.6.7 via the 'header_layout' parameter...

pencidesign Soledad * CVE