Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-04-15 CVE-2025-33026 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Peazip 9.4.0
In PeaZip through 10.4.0, there is a Mark-of-the-Web Bypass Vulnerability.
local
low complexity
peazip CWE-829
7.8
2025-04-15 CVE-2025-33027 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Bandisoft Bandizip
In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability.
local
low complexity
bandisoft CWE-829
7.8
2025-04-15 CVE-2025-32911 A flaw was found in libsoup, which is vulnerable to a use-after-free memory issue not on the heap in the soup_message_headers_get_content_disposition() function.
network
high complexity
CWE-590
critical
9.0
2025-04-15 CVE-2025-2083 The Logo Carousel Gutenberg Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘sliderId’ parameter in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
2025-04-15 CVE-2024-45712 SolarWinds Serv-U is vulnerable to a client-side cross-site scripting (XSS) vulnerability.
network
high complexity
CWE-79
2.6
2025-04-15 CVE-2025-2225 The Responsive Addons for Elementor – Free Elementor Addons Plugin and Elementor Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘rael_title_tag' parameter in all versions up to, and including, 1.6.9 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
2025-04-15 CVE-2025-3470 The TS Poll – Survey, Versus Poll, Image Poll, Video Poll plugin for WordPress is vulnerable to SQL Injection via the s parameter in all versions up to, and including, 2.4.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
CWE-89
4.9
2025-04-15 CVE-2025-3612 A vulnerability, which was classified as problematic, was found in Demtec Graphytics 5.0.7.
network
low complexity
CWE-94
4.3
2025-04-15 CVE-2025-3613 A vulnerability has been found in Demtec Graphytics 5.0.7 and classified as problematic.
network
low complexity
CWE-94
3.5
2025-04-14 CVE-2025-3593 A vulnerability was found in ZHENFENG13/code-projects My-Blog-layui 1.0.
network
low complexity
CWE-434
6.3