Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-04-15 CVE-2025-30719 Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).
local
low complexity
 6.1
6.1
2025-04-15 CVE-2025-30720 Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: Orders).
network
low complexity
 6.1
6.1
2025-04-15 CVE-2025-30721 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF).
local
high complexity
 4.0
4.0
2025-04-15 CVE-2025-30722 Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump).
network
high complexity
 5.3
5.3
2025-04-15 CVE-2025-30723 Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: XML Services).
network
low complexity
 5.4
5.4
2025-04-15 CVE-2025-30737 Vulnerability in the Oracle Smart View for Office product of Oracle Hyperion (component: Core Smart View).
network
high complexity
 5.7
5.7
2025-04-15 CVE-2025-32911 A flaw was found in libsoup, which is vulnerable to a use-after-free memory issue not on the heap in the soup_message_headers_get_content_disposition() function.
network
high complexity
CWE-590
critical
 9.0
9.0
2025-04-15 CVE-2025-2083 The Logo Carousel Gutenberg Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘sliderId’ parameter in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
6.4
2025-04-15 CVE-2024-45712 SolarWinds Serv-U is vulnerable to a client-side cross-site scripting (XSS) vulnerability.
network
high complexity
CWE-79
2.6
2.6
2025-04-15 CVE-2025-2225 The Responsive Addons for Elementor – Free Elementor Addons Plugin and Elementor Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘rael_title_tag' parameter in all versions up to, and including, 1.6.9 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
6.4