Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.3 CVE-2025-71323

picklescan – Remote Code Execution via Unblocked ctypes Module_CVE-2025-71323

picklescan before 0.0.33 fails to block the ctypes module, allowing attackers to achieve remote code execution by invoking direct syscalls and acce...

picklescan picklescan CVE
HIGH 8.7 CVE-2025-71322

PickleScan – Unsafe Globals Check Bypass via pty.spawn Function_CVE-2025-71322

PickleScan before 0.0.33 fails to include the pty.spawn function in its unsafe globals list, allowing attackers to bypass security checks. Maliciou...

PickleScan PickleScan CVE
CRITICAL 9.3 CVE-2025-71321

picklescan – Arbitrary File Writing via distutils Module Bypass_CVE-2025-71321

picklescan before 0.0.33 contains an arbitrary file writing vulnerability that allows attackers to bypass the dangerous blocklist by using distutil...

picklescan picklescan CVE
CRITICAL 9.3 CVE-2025-71320

picklescan – Remote Code Execution via Incomplete Disallowed Inputs_CVE-2025-71320

picklescan before 0.0.33 contains an incomplete deny-list that fails to block pydoc.locate and operator.methodcaller functions, allowing attackers ...

picklescan picklescan CVE
MEDIUM 4.3 CVE-2025-32748

CVE-2025-32748_CVE-2025-32748

Dell PowerFlex rack, version(s) RCM 3.7/3.7, contain(s) a Host Header Injection vulnerability. An unauthenticated attacker with remote access could...

Dell PowerFlex rack CVE
NONE AKAMAIBLOG:7F37...

Keep Your Tech FLAME Alive: Trailblazer Katrina Cole_AKAMAIBLOG:7F37F79E3ADFF4F4324213ADDDFF2017

Meet Katrina Cole, an Information Security Consultant who entered tech at age 40. Read her advice for women in tech and her proactive approach to s...

N/A N/A AKAMAIBLOG
NONE THN:599D838669E...

Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline_THN:599D838669E846120BE835EDC125F058

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhN4ptzzF7u-dzNyOc4F1HsCUbEszvkkeD1ZVl7MHQNXXcUtgqb40Wgodu3aj61QDzaNsX0eJjRDGK1eNJLCb...

N/A N/A THN
NONE PACKETSTORM:223627

📄 CMSsiam 2 SQL Injection_PACKETSTORM:223627

CMSsiam version 2 suffers from a remote SQL injection vulnerability that allows for login bypass...

N/A N/A PACKETSTORM
HIGH 8.6 PACKETSTORM:223698

📄 Discuz! X5.0 Local File Inclusion_PACKETSTORM:223698

This is a Metasploit auxiliary module targeting a local file inclusion vulnerability in Discuz! X5.0...

N/A N/A PACKETSTORM
NONE PACKETSTORM:223619

📄 CMS SINDEHOTÉIS 1.2.4 Cross Site Request Forgery_PACKETSTORM:223619

CMS SINDEHOT�IS version 1.2.4 suffers from a cross site request forgery vulnerability...

N/A N/A PACKETSTORM