Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9 THN:F25ED39D7CA...

Critical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues Warning_THN:F25ED39D7CA7DB2038139101CF3BE020

![](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=) The U.S. Cybersecurity and...

N/A N/A THN
CRITICAL 10 CVE-2025-10264

Digiever|NVR – Exposure of Sensitive Information_CVE-2025-10264

Certain models of NVR developed by Digiever has an Exposure of Sensitive Information vulnerability, allowing unauthenticated remoter attackers to a...

Digiever DS-1200 CVE
CRITICAL 9.3 CVE-2025-10265

Digiever|NVR – OS Command Injection_CVE-2025-10265

Certain models of NVR developed by Digiever has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrar...

Digiever DS-1200 CVE
CRITICAL 9.3 CVE-2025-10266

NewType Infortech|NUP Portal – SQL Injection_CVE-2025-10266

NUP Pro developed by NewType Infortech has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL command...

NewType Infortech NUP Portal CVE
CRITICAL 9.3 THN:95494973F2F...

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories_THN:95494973F2F42B934D38750B3764CAB6

![](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=) A security weakness has be...

N/A N/A THN
CRITICAL 9.1 7E0E2B6D-821C-

Exploit for Incorrect Authorization in Vercel Next.Js_7E0E2B6D-821C-5244-978C-78D230BC9D83

CVE-2025-29927 Research and...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.8 CVE-2025-57085

CVE-2025-57085_CVE-2025-57085

Tenda W30E V16.01.0.19 (5037) was discovered to contain a stack overflow in the v17 parameter in the UploadCfg function. This vulnerability allows ...

n/a n/a n/a CVE
CRITICAL 9.7 CVE-2025-59053

AIRI’s character card/chat UI is vulnerable to XSS and can lead to RCE_CVE-2025-59053

AIRI is a self-hosted, artificial intelligence based Grok Companion. In v0.7.2-beta.2 in the `packages/stage-ui/src/components/MarkdownRenderer.vue...

moeru-ai airi = 0.7.2-beta.2 CVE
CRITICAL 10 081B2653-51E4-

Exploit for Authentication Bypass Using an Alternate Path or Channel in Sangoma Freepbx_081B2653-51E4-5978-9D40-A8DE83DA2069

CVE-2025-57819 FreePBX Pre-Auth RCE FreePBX Pre-Auth RCE 1day Detection Artifact...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.8 CVE-2025-8570

BeyondCart Connector <= 2.1.0 - Missing Configuration of JWT Secret to Unauthenticated Privilege Escalation via determine_current_user Filter_CVE-2025-8570

The BeyondCart Connector plugin for WordPress is vulnerable to Privilege Escalation due to improper JWT secret management and authorization within ...

beyondcart BeyondCart Connector * CVE