CVE-2025-30798 - Reflected Cross-site Scripting in rickonline_nl Better WishList API up to 1.1.4 – Exploit and Analysis
---
Introduction
A new vulnerability—CVE-2025-30798—has been found in the Better WishList API developed by rickonline_nl. The issue is an Improper Neutralization of
CVE-2025-3022 - OS Command Injection in e-solutions e-management (Exploit, Root Cause & Patch Advice)
---
Overview
On June 2025, a severe vulnerability, CVE-2025-3022, was found in the popular e-solutions e-management system. This critical bug can let attackers run any
CVE-2025-31103 - a-blog cms Untrusted Data Deserialization — Arbitrary File Upload and Remote Code Execution
A new critical vulnerability has been uncovered in a-blog cms, a popular content management system widely used across various web applications. Tracked as CVE-2025-31103, this
CVE-2025-2952 - Critical Unrestricted File Upload Vulnerability in Bluestar Micro Mall 1. Explained (with Exploit Details)
In March 2025, security researchers discovered a critical vulnerability—now tracked as CVE-2025-2952—affecting the Bluestar Micro Mall 1. e-commerce platform. If your website uses
CVE-2025-2951 - Critical SQL Injection Vulnerability in Bluestar Micro Mall 1. (`/api/data.php?Search=...`) - Technical Overview and Exploit Details
Last updated: June 2024
Author: SecurityExplained
Bluestar Micro Mall is a PHP-based e-commerce solution gaining traction with small online retailers. Recently, a severe security vulnerability
Episode
00:00:00
00:00:00