February 2025

CVE ID : CVE-2025-25326 Published : Feb. 27, 2025, 4:15 p.m. | 28 minutes ago Description : An issue in Merchants Union Consumer Finance Company Limited Merchants Union Finance iOS 6.19.0 allows attackers to access sensitive user information via supplying a crafted link. Severity: 0.0 | NA Visit the link for more details, such as CVSS […]

CVE ID : CVE-2025-25330 Published : Feb. 27, 2025, 4:15 p.m. | 28 minutes ago Description : An issue in Boohee Technology Boohee Health iOS 13.0.13 allows attackers to access sensitive user information via supplying a crafted link. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and

CVE ID : CVE-2025-25333 Published : Feb. 27, 2025, 4:15 p.m. | 28 minutes ago Description : An issue in IKEA CN iOS 4.13.0 allows attackers to access sensitive user information via supplying a crafted link. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-25331 Published : Feb. 27, 2025, 4:15 p.m. | 28 minutes ago Description : An issue in Beitatong Technology LianJia iOS 9.83.50 allows attackers to access sensitive user information via supplying a crafted link. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-25334 Published : Feb. 27, 2025, 4:15 p.m. | 28 minutes ago Description : An issue in Suning Commerce Group Suning EMall iOS 9.5.198 allows attackers to access sensitive user information via supplying a crafted link. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline,

CVE ID : CVE-2024-45426 Published : Feb. 25, 2025, 8:15 p.m. | 27 minutes ago Description : Incorrect ownership assignment in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access. Severity: 4.9 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and

CVE ID : CVE-2025-27142 Published : Feb. 25, 2025, 8:15 p.m. | 26 minutes ago Description : LocalSend is a free, open-source app that allows users to securely share files and messages with nearby devices over their local network without needing an internet connection. Prior to version 1.17.0, due to the missing sanitization of the path

CVE ID : CVE-2025-27110 Published : Feb. 25, 2025, 8:15 p.m. | 27 minutes ago Description : Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying traditional ModSecurity processing. A bug that exists only in Libmodsecurity3 version 3.0.13 means that,

CVE ID : CVE-2025-27139 Published : Feb. 25, 2025, 8:15 p.m. | 26 minutes ago Description : Combodo iTop is a web based IT service management tool. Versions prior to 2.7.12, 3.1.2, and 3.2.0 are vulnerable to cross-site scripting when the preferences page is opened. Versions 2.7.12, 3.1.2, and 3.2.0 fix the issue. Severity: 6.8 |

CVE ID : CVE-2025-27146 Published : Feb. 25, 2025, 8:15 p.m. | 26 minutes ago Description : matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their