CVE CyberSecurity Database News (Page 6)

May 22, 2025 Windows Microsoft Exploit

CVE-2025-47181 - How Misplaced Link-Following in Microsoft Edge Lets Attackers Sneak In

A new security weakness surfaced in Microsoft Edge (Chromium-based) earlier this year, tracked as CVE-2025-47181. In simple terms, Edge fails to properly check shortcut links

May 22, 2025 API Exploit

CVE-2025-0993 - GitLab CE/EE Resource Exhaustion Denial-of-Service (DoS) Vulnerability Explained

Published: June 2024 Severity: Moderate Affected Products: GitLab Community Edition (CE) and Enterprise Edition (EE) Versions: All versions before 17.10.7, 17.11 before

May 22, 2025 API

CVE-2025-0679 - GitLab Email Exposure Attack Explained with PoC

A new vulnerability — CVE-2025-0679 — was found in GitLab Community and Enterprise editions. All versions from 17.1 up to (but not including) 17.10.7,

May 22, 2025

CVE-2025-4575 - OpenSSL x509 Command -addreject Option Mistakenly Adds Trust Instead of Rejection

OpenSSL is one of the most popular tools for cryptography, widely used for securing communications over the internet. In March 2025, a new vulnerability — CVE-2025-4575

May 22, 2025 XSS Exploit

CVE-2025-4123 - Chained Path Traversal & Open Redirect Leads to XSS & SSRF in Grafana

A newly identified security flaw, CVE-2025-4123, exposes the popular monitoring dashboard Grafana to risk of both cross-site scripting (XSS) and server-side request forgery (SSRF) attacks.