Poster - CVE CyberSecurity Database News (Page 81)

Apr 14, 2025 Exploit

CVE-2025-3552 - Unrestricted File Upload in Lingxing ERP 2 (Exploit and Analysis)

A new critical vulnerability—CVE-2025-3552—has been discovered in the popular business management software, Lingxing ERP 2. This flaw, present in the /Api/TinyMce/UploadAjax.

Apr 14, 2025 WordPress Exploit PHP

CVE-2025-2563 - How a Hidden Flaw in the “User Registration & Membership” WordPress Plugin Lets Hackers Become Admins

Published: June 2024 <br>Author: [Your Name] A newly discovered vulnerability, CVE-2025-2563, shakes up the world of WordPress website administration. This security flaw

Apr 14, 2025 API Exploit

CVE-2025-3551 - Critical Unrestricted File Upload in Lingxing ERP 2 – Exploit Insights and What You Need to Know

In the fast-moving world of business ERP systems, vulnerability exposures can mean disaster for organizations. Recently, a new vulnerability—CVE-2025-3551—has drawn attention for potentially

Apr 14, 2025 API Exploit

CVE-2025-3572 - Unauthenticated SSRF in INTUMIT SmartRobot Lets Attackers Probe Internal Network and Access Files

On May 7, 2025, a new vulnerability—CVE-2025-3572—was disclosed in INTUMIT’s SmartRobot platform. This severe flaw can be exploited by unauthenticated remote attackers

Apr 13, 2025

CVE-2025-3445 - Unpacking Danger — "Zip Slip" Path Traversal in mholt/archiver for Go

A new path traversal vulnerability, now identified as CVE-2025-3445, has been discovered in the popular Go library mholt/archiver. This security flaw, commonly called a