Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.8 CVE-2025-57432

CVE-2025-57432_CVE-2025-57432

Blackmagic Web Presenter version 3.3 exposes a Telnet service on port 9977 that accepts unauthenticated commands. This service allows remote attack...

n/a n/a n/a CVE
CRITICAL 9.8 CVE-2025-57601

CVE-2025-57601_CVE-2025-57601

AiKaan Cloud Controller uses a single hardcoded SSH private key and the username `proxyuser` for remote terminal access to all managed IoT/edge dev...

n/a n/a n/a CVE
CRITICAL 9.8 CVE-2025-57602

CVE-2025-57602_CVE-2025-57602

Insufficient hardening of the proxyuser account in the AiKaan IoT management platform, combined with the use of a shared, hardcoded SSH private key...

n/a n/a n/a CVE
CRITICAL 10 PACKETSTORM:209776

📄 FreePBX SQL Injection / Remote Code Execution_PACKETSTORM:209776

This Metasploit module exploits an unauthenticated SQL...

N/A N/A PACKETSTORM
CRITICAL 9.8 4FFB4E6E-509B-

Exploit for CVE-2025-26399_4FFB4E6E-509B-5902-A18F-EDEDFE81A3A5

CVE-2025-26399 How does this detection method work? This script...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.1 CVE-2025-59545

DNN Vulnerable to Stored Cross-Site Scripting (XSS) in the Prompt module_CVE-2025-59545

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 10.1.0, the Prompt m...

dnnsoftware Dnn.Platform < 10.1.0 CVE
CRITICAL 9.8 6A548065-1FEF-

Exploit for Use of Hard-coded Cryptographic Key in Gladinet Centrestack_6A548065-1FEF-5A1C-82B3-C01E6FCB217E

🚀 CVE-2025-30406 - Simple ViewState Exploit Tool 💾 Important Download Link 📖...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.3 F3BD84F6-64A9-

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo_F3BD84F6-64A9-595D-8D7C-FF031028941D

🐧 CVE-2025-32463-lab - Explore Privilege Escalation Risks Simply 🔗 Download...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.8 THN:48A827686B9...

SolarWinds Releases Hotfix for Critical CVE-2025-26399 Remote Code Execution Flaw_THN:48A827686B9EFF06D95A0AA2B46C1E21

![](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=) SolarWinds has released ho...

N/A N/A THN
CRITICAL 10 CVE-2025-9846

Unrestricted File Upload in TaletSys Inka.Net_CVE-2025-9846

Unrestricted Upload of File with Dangerous Type vulnerability in TalentSys Consulting Information Technology Industry Inc. Inka.Net allows Command ...

TalentSys Consulting Information Technology Industry Inc. Inka.Net CVE