Aggregator

Submit #594650 / VDB-313299

A newly disclosed vulnerability in Cisco’s AnyConnect VPN implementation for Meraki MX and Z Series devices poses a significant risk to enterprise networks, enabling unauthenticated attackers to disrupt remote access by triggering denial-of-service (DoS) conditions. The flaw, tracked as CVE-2025-20271, carries a high CVSS score of 8.6, underscoring its potential to impact organizations that rely […]

The post Cisco AnyConnect VPN Flaw Allows Attackers to Launch DoS Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in code-projects Hostel Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /empty_rooms.php. The manipulation of the argument search_box leads to sql injection. This vulnerability is handled as CVE-2025-6296. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in code-projects Hostel Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /allocated_rooms.php. The manipulation of the argument search_box leads to sql injection. This vulnerability is known as CVE-2025-6295. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in code-projects Hostel Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /contact.php. The manipulation of the argument hostel_name leads to sql injection. This vulnerability is traded as CVE-2025-6294. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in code-projects Hostel Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /contact_manager.php. The manipulation of the argument student_roll_no leads to sql injection. The identification of this vulnerability is CVE-2025-6293. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub_4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability was named CVE-2025-6292. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2.03. This affects the function do_file of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is uniquely identified as CVE-2025-6291. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Пока ты читаешь это, Telegram заливает сеть фальшивыми ракетами.

Submit #594016 / VDB-313298

Submit #593998 / VDB-313297

Submit #593997 / VDB-313296

Submit #593996 / VDB-313295

Submit #593938 / VDB-313294

Submit #593937 / VDB-313293

A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross site scripting. This vulnerability is handled as CVE-2025-6288. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in PHPGurukul COVID19 Testing Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /test-details.php of the component Take Action. The manipulation of the argument remark leads to cross site scripting. This vulnerability is known as CVE-2025-6287. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in PHPGurukul COVID19 Testing Management System 2021. Affected is an unknown function of the file /search-report-result.php. The manipulation of the argument q leads to open redirect. This vulnerability is traded as CVE-2025-6286. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in PHPGurukul COVID19 Testing Management System 2021. It has been rated as problematic. This issue affects some unknown processing of the file /search-report-result.php. The manipulation of the argument q leads to cross site scripting. The identification of this vulnerability is CVE-2025-6285. The attack may be initiated remotely. Furthermore, there is an exploit available.

Submit #593923 / VDB-313292