CVE-2025-26411 - Gaining Root Access on Wattsense Bridge Devices via Malicious Plugin Upload
---
Introduction
CVE-2025-26411 is a serious security vulnerability found in Wattsense Bridge devices, specifically concerning the Plugin Manager feature which allows authenticated users to upload
CVE-2025-1165 - Critical Unrestricted File Upload in Lumsoft ERP 8 Explained with Exploit Details
In early 2025, a severe security flaw—CVE-2025-1165—was discovered and disclosed in the well-known ERP software, Lumsoft ERP 8. This vulnerability exposes systems to
CVE-2025-25193 - Denial of Service in Netty Due to Unsafe File Reading (Exploit and Analysis)
Netty is a popular asynchronous event-driven network application framework for rapid development of maintainable high-performance protocol servers & clients. It is widely used in enterprise
CVE-2025-24970 - Netty Crash via Malicious SSL Packet – Details, Exploitation, and Workarounds
Netty is a widely-used Java framework for building fast, scalable network applications, ranging from web servers to custom protocols. In June 2024, a critical vulnerability
![CVE-2025-1158 - Critical SQL Injection Vulnerability in ESAFENET CDG 5.6.3.154.205_20250114 ([addPolicyToSafetyGroup.jsp] Exploit Details)](/content/images/size/w720/2025/03/CVE-2025-1158.png)
CVE-2025-1158 - Critical SQL Injection Vulnerability in ESAFENET CDG 5.6.3.154.205_20250114 ([addPolicyToSafetyGroup.jsp] Exploit Details)
*Last updated: July 2024*
*Severity: Critical (CVSSv3.1: 9.8)*
Overview
A severe vulnerability, CVE-2025-1158, has been discovered in the ESAFENET CDG platform, specifically in
Episode
00:00:00
00:00:00