CVE-2025-0579 - Critical SQL Injection Vulnerability in Shiprocket Module for OpenCart (Exploit Guide & Analysis)
Published: June 2024
Severity: Critical
CVSS Score: 9.8 (Critical)
Recently, a serious vulnerability was discovered in the popular Shiprocket Module (versions 3 and 4)
CVE-2025-0308 - How a Simple Search Led to a Serious SQL Injection in Ultimate Member for WordPress
In early 2025, security researchers uncovered a critical vulnerability in one of WordPress’s most popular membership plugins: Ultimate Member – User Profile, Registration, Login, Member
CVE-2025-23061 - How Mongoose's Nested $where Filter in `populate().match` Leads to Search Injection (with Example and Exploit)
A new vulnerability, CVE-2025-23061, has been found in Mongoose, a widely-used MongoDB object modeling tool for Node.js. Versions before 8.9.5 are affected.
CVE-2025-21403 - On-Premises Data Gateway Information Disclosure Vulnerability Explained
On June 7, 2024, Microsoft published an important security advisory regarding a new vulnerability impacting its On-Premises Data Gateway. Tracked as CVE-2025-21403, this flaw is
CVE-2025-0392 - Critical SQL Injection in Guangzhou Huayi Intelligent Technology Jeewms (datagridGraph Function) – Exploit Details & Remediation
---
A new critical vulnerability has been discovered in Guangzhou Huayi Intelligent Technology Jeewms (Warehouse Management System), affecting all versions up to 20241229. If you
Episode
00:00:00
00:00:00