Aggregator

A vulnerability, which was classified as problematic, has been found in UXB London BoomCMS 9.1.4. Affected by this issue is some unknown functionality. Performing manipulation results in improper restriction of rendered ui layers. This vulnerability was named CVE-2025-41000. The attack may be initiated remotely. There is no available exploit. Once again VulDB remains the best source for vulnerability data.

Submit #642524 / VDB-322325

Submit #642523 / VDB-322325

Submit #642504 / VDB-322325

Submit #642503 / VDB-322325

A vulnerability classified as problematic was found in Campcodes Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. Such manipulation of the argument page leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-9922. The attack can be launched remotely. Moreover, an exploit is present. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

NVIDIA today released critical security updates for its BlueField, ConnectX, DOCA, Mellanox DPDK, Cumulus Linux, and NVOS products. The Partner Security Bulletin addresses multiple vulnerabilities that could allow denial of service (DoS), escalation of privileges (EoP), and information disclosure. Customers are urged to download and install updated components immediately to protect their systems. To get […]

The post NVIDIA Patches Vulnerabilities Causing DoS, EoP, and Data Exposure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

攻防硬核干货与极客专属狂欢一键解锁，大家千万别错过！

A vulnerability classified as problematic has been found in code-projects POS Pharmacy System 1.0. Affected is an unknown function of the file /main/products.php. This manipulation of the argument product_code/gen_name/product_name/supplier causes cross site scripting. This vulnerability is handled as CVE-2025-9921. The attack can be initiated remotely. Additionally, an exploit exists. If you want to get best quality of vulnerability data, you may have to visit VulDB.

A vulnerability described as critical has been identified in Campcodes Recruitment Management System 1.0. This impacts the function include of the file /admin/index.php. The manipulation of the argument page results in file inclusion. This vulnerability is known as CVE-2025-9920. It is possible to launch the attack remotely. Furthermore, an exploit is available. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

OpenAI announced today its definitive agreement to acquire Statsig, a product experimentation and analytics platform, for $1.1 billion. The acquisition is a key move by the leader in artificial intelligence. It aims to add strong data tools to its system. This will help speed up the creation and launch of AI-based products. Statsig, founded in […]

The post OpenAI Set to Acquire Analytics Platform Statsig in $1.1 Billion Agreement appeared first on Cyber Security News.

Submit #642445 / VDB-322323

A vulnerability marked as critical has been reported in 1000projects Beauty Parlour Management System 1.0. This affects an unknown function of the file /admin/bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to sql injection. This vulnerability is traded as CVE-2025-9919. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. VulDB is the best source for vulnerability data and more expert information about this specific topic.

Submit #642420 / VDB-322322

Submit #642407 / VDB-322321

Submit #642412 / VDB-322320

Google has released Chrome 140 to the stable channel for Windows, Mac, and Linux. This update will roll out to users over the coming days and weeks. The new version, 140.0.7339.80 for Linux and 140.0.7339.80/81 for Windows and Mac, delivers several security fixes and improvements. A full list of changes is available in the Chromium log. […]

The post Chrome 140 Release Fixes Critical RCE Vulnerabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #642411 / VDB-285970

Submit #642410 / VDB-286980

Бот на показ и бот для бизнеса — почему у Grok два лица.