CVE-2025-24446 and other: Multiple vulnerabilitites in Adobe ColdFusion, 7.5 - 9.1 rating π₯
In a recent advisory, Adobe disclosed 11 vulnerabilities that could lead to arbitrary file system read, code execution, and a security feature bypass.
Search at Netlas.io:
π Link: https://nt.ls/tDhgz
π Dork: http.headers.set_cookie:"CFID="
Vendor's advisory: https://helpx.adobe.com/security.html
In a recent advisory, Adobe disclosed 11 vulnerabilities that could lead to arbitrary file system read, code execution, and a security feature bypass.
Search at Netlas.io:
π Link: https://nt.ls/tDhgz
π Dork: http.headers.set_cookie:"CFID="
Vendor's advisory: https://helpx.adobe.com/security.html
π₯5πΎ4
CVE-2025-3102: Incorrect Comparison in SureTriggers WordPress plugin, 8.1 ratingβοΈ
Failure to check for an empty key value in the "autheticate_user" function could allow an attacker to bypass the authentication process.
Search at Netlas.io:
π Link: https://nt.ls/JK81c
π Dork: http.body:"plugins/suretriggers"
Read more: https://plugins.trac.wordpress.org/browser/suretriggers?order=name
Failure to check for an empty key value in the "autheticate_user" function could allow an attacker to bypass the authentication process.
Search at Netlas.io:
π Link: https://nt.ls/JK81c
π Dork: http.body:"plugins/suretriggers"
Read more: https://plugins.trac.wordpress.org/browser/suretriggers?order=name
πΎ3π2π1
CVE-2025-25226, -25227: SQL Injection and Improper Authentication in Joomla, 7.5 - 9.8 rating π₯
Vulnerabilities in Joomla CMS and Joomla's Database package allow an attacker to bypass the 2FA or perform SQLi.
Search at Netlas.io:
π Link: https://nt.ls/nxRtD
π Dork: http.meta:"Joomla!"
Vendor's advisory: https://developer.joomla.org/security-centre/963-20250401-framework-sql-injection-vulnerability-in-quotenamestr-method-of-database-package.html
Vulnerabilities in Joomla CMS and Joomla's Database package allow an attacker to bypass the 2FA or perform SQLi.
Search at Netlas.io:
π Link: https://nt.ls/nxRtD
π Dork: http.meta:"Joomla!"
Vendor's advisory: https://developer.joomla.org/security-centre/963-20250401-framework-sql-injection-vulnerability-in-quotenamestr-method-of-database-package.html
π2π₯2πΎ1
CVE-2025-3439: Deserialization of Untrusted Data in Everest Forms WordPress plugin, 9.8 rating π₯
A vulnerability in the 'field_value' parameter allows a remote unauthenticated attacker to perform PHP object injection. This in turn allows the attacker to achieve RCE, retrieve sensitive data and the ability to delete arbitrary files.
Search at Netlas.io:
π Link: https://nt.ls/CoAb6
π Dork: http.body:"plugins/everest-forms"
Read more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/everest-forms/everest-forms-contact-form-quiz-survey-newsletter-payment-form-builder-for-wordpress-311-unauthenticated-php-object-injection
A vulnerability in the 'field_value' parameter allows a remote unauthenticated attacker to perform PHP object injection. This in turn allows the attacker to achieve RCE, retrieve sensitive data and the ability to delete arbitrary files.
Search at Netlas.io:
π Link: https://nt.ls/CoAb6
π Dork: http.body:"plugins/everest-forms"
Read more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/everest-forms/everest-forms-contact-form-quiz-survey-newsletter-payment-form-builder-for-wordpress-311-unauthenticated-php-object-injection
π₯3πΎ3
CVE-2025-32102, -32103: Multiple vulnerabilitites in CrushFTPβοΈ
The vulnerabilities disclosed for the popular file transfer web service include Directory Traversal and SSRF. A PoC has also been published for these vulns.
Search at Netlas.io:
π Link: https://nt.ls/NStLF
π Dork: http.headers.server:"CrushFTP"
Read more: https://seclists.org/fulldisclosure/2025/Apr/17
The vulnerabilities disclosed for the popular file transfer web service include Directory Traversal and SSRF. A PoC has also been published for these vulns.
Search at Netlas.io:
π Link: https://nt.ls/NStLF
π Dork: http.headers.server:"CrushFTP"
Read more: https://seclists.org/fulldisclosure/2025/Apr/17
π₯3πΎ2
CVE-2025-24970: Improper Input Validation in Confluence Data Center & Server, 7.5 ratingβοΈ
A vulnerability in the Netty framework could cause a server to crash if an attacker sends a special crafted packet.
Search at Netlas.io:
π Link: https://nt.ls/jcVrv
π Dork: http.meta:"confluence-base-url"
Vendor's advisory: https://jira.atlassian.com/browse/CONFSERVER-99540
A vulnerability in the Netty framework could cause a server to crash if an attacker sends a special crafted packet.
Search at Netlas.io:
π Link: https://nt.ls/jcVrv
π Dork: http.meta:"confluence-base-url"
Vendor's advisory: https://jira.atlassian.com/browse/CONFSERVER-99540
β€2π₯2π1πΎ1
Netlas.io
π Track Adversary Infrastructure Challenge Join the challenge by Netlas and RST Cloud to improve your threat-hunting skills. - Learn to detect C2 servers and investigate real threats. - Compete for prizes: π $1000, π₯ $500, π₯ $250. - Top 10 winners receiveβ¦
πΎ Friendly Reminder πΎ
The Track Adversary Infrastructure Challenge is starting in two weeks! If you want to take part but haven't registered yet, do it ASAPβοΈ
π Read more about the competition: https://netlas.io/promo/ti-challenge/
The Track Adversary Infrastructure Challenge is starting in two weeks! If you want to take part but haven't registered yet, do it ASAPβοΈ
π Read more about the competition: https://netlas.io/promo/ti-challenge/
πΎ2π₯°1
CVE-2025-3616: File Upload in Greenshift WordPress Plugin, 8.8 ratingβοΈ
A vulnerability discovered by Wordfence researchers allows attackers to upload arbitrary files and execute them remotely.
Search at Netlas.io:
π Link: https://nt.ls/meWm0
π Dork: http.body:"plugins/greenshift-animation-and-page-builder-blocks"
Read more: https://www.wordfence.com/blog/2025/04/50000-wordpress-sites-affected-by-arbitrary-file-upload-vulnerability-in-greenshift-wordpress-plugin/
A vulnerability discovered by Wordfence researchers allows attackers to upload arbitrary files and execute them remotely.
Search at Netlas.io:
π Link: https://nt.ls/meWm0
π Dork: http.body:"plugins/greenshift-animation-and-page-builder-blocks"
Read more: https://www.wordfence.com/blog/2025/04/50000-wordpress-sites-affected-by-arbitrary-file-upload-vulnerability-in-greenshift-wordpress-plugin/
π₯4πΎ1
βοΈTechnical Issue AlertβοΈ
We're currently experiencing issues with data backups, which has temporarily taken the IP/Domain Info and Responses Search tools offline. We expect to have everything back up and running within the next 1β2 hours.
Our team is working hard to resolve the issue as quickly as possible.
π You can also follow the Netlas status on the corresponding page: https://status.netlas.io/
We sincerely apologize for the inconvenience and appreciate your patience π
We're currently experiencing issues with data backups, which has temporarily taken the IP/Domain Info and Responses Search tools offline. We expect to have everything back up and running within the next 1β2 hours.
Our team is working hard to resolve the issue as quickly as possible.
π You can also follow the Netlas status on the corresponding page: https://status.netlas.io/
We sincerely apologize for the inconvenience and appreciate your patience π
π2π2
β
Service Restored π
The restoration is nearly complete, and all tools are now back online. You can safely resume your work!
Thanks for bearing with us π
The restoration is nearly complete, and all tools are now back online. You can safely resume your work!
Thanks for bearing with us π
π¦3π₯2
CVE-2025-1763, -2443 and other: Multiple vulns in GitLab, 4.3 - 8.7 ratingβοΈ
In a recent advisory, GitLab shared information about several fixed vulnerabilities, including XSS, DoS, and Header Injection.
Search at Netlas.io:
π Link: https://nt.ls/XxMjv
π Dork: http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef OR http.headers.set_cookie:"gitlab" OR http.headers.location:"gitlab"
Vendor's advisory: https://about.gitlab.com/releases/2025/04/23/patch-release-gitlab-17-11-1-released/
In a recent advisory, GitLab shared information about several fixed vulnerabilities, including XSS, DoS, and Header Injection.
Search at Netlas.io:
π Link: https://nt.ls/XxMjv
π Dork: http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef OR http.headers.set_cookie:"gitlab" OR http.headers.location:"gitlab"
Vendor's advisory: https://about.gitlab.com/releases/2025/04/23/patch-release-gitlab-17-11-1-released/
π₯3πΎ2
π’ Incident update: Due to an issue reported yesterday, the most recent data was temporarily unavailable in search. The issue has been fixed, and all data is now up to date. Sorry for the inconvenience!
β€4
CVE-2025-32432: RCE in CraftCMS, 10.0 rating π₯π₯π₯
0-day vulnerability makes some versions of CraftCMS vulnerable to RCE. Used in the wild in combination with CVE-2024-58136.
Search at Netlas.io:
π Link: https://nt.ls/XVVPd
π Dork: http.headers.x_powered_by:"Craft CMS"
Vendor's advisory: https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3
0-day vulnerability makes some versions of CraftCMS vulnerable to RCE. Used in the wild in combination with CVE-2024-58136.
Search at Netlas.io:
π Link: https://nt.ls/XVVPd
π Dork: http.headers.x_powered_by:"Craft CMS"
Vendor's advisory: https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3
π₯3πΎ3π1
CVE-2025-31324: Unrestricted Upload of File in SAP NetWeaver, 10.0 rating π₯π₯π₯
A vulnerability in SAP NetWeaver Visual Composer Metadata Uploader allows an attacker to perform unauthenticated file uploads, including malicious ones.
Search at Netlas.io:
π Link: https://nt.ls/nCgfN
π Dork: http.body:"This error page was generated by SAP Web Dispatcher!"
Read more: https://www.bleepingcomputer.com/news/security/sap-fixes-suspected-netweaver-zero-day-exploited-in-attacks/
A vulnerability in SAP NetWeaver Visual Composer Metadata Uploader allows an attacker to perform unauthenticated file uploads, including malicious ones.
Search at Netlas.io:
π Link: https://nt.ls/nCgfN
π Dork: http.body:"This error page was generated by SAP Web Dispatcher!"
Read more: https://www.bleepingcomputer.com/news/security/sap-fixes-suspected-netweaver-zero-day-exploited-in-attacks/
π₯5πΎ2
CVE-2023-44221 and CVE-2024-38475: Admin Hijack Exploit in SonicWall π₯
In a recent research, watchTowr Labs demonstrated a working exploit chain that leverages two old vulnerabilities and allows a remote attacker to take control of a SonicWall instance.
Search at Netlas.io:
π Link: https://nt.ls/5973o
π Dork: http.favicon.hash_sha256:6bb6f64adaa6a7ed4da10a2fe4edf4cb4d9914aa742c7ad607ca4ca678dcd3f1
Read more: https://labs.watchtowr.com/sonicboom-from-stolen-tokens-to-remote-shells-sonicwall-sma100-cve-2023-44221-cve-2024-38475/
In a recent research, watchTowr Labs demonstrated a working exploit chain that leverages two old vulnerabilities and allows a remote attacker to take control of a SonicWall instance.
Search at Netlas.io:
π Link: https://nt.ls/5973o
π Dork: http.favicon.hash_sha256:6bb6f64adaa6a7ed4da10a2fe4edf4cb4d9914aa742c7ad607ca4ca678dcd3f1
Read more: https://labs.watchtowr.com/sonicboom-from-stolen-tokens-to-remote-shells-sonicwall-sma100-cve-2023-44221-cve-2024-38475/
π₯4πΎ2
CVE-2025-27007: Privilege Escalation in OttoKit WordPress Plugin, 9.8 rating π₯
Errors in the logic of the plugin's API could potentially lead to an attacker gaining access to the administrator account. According to Patchstack, exploitation of the vulnerability began just an hour after public disclosure!
Search at Netlas.io:
π Link: https://nt.ls/y4FXX
π Dork: http.body:"plugins/suretriggers"
Read more: https://patchstack.com/database/wordpress/plugin/suretriggers/vulnerability/wordpress-suretriggers-1-0-82-privilege-escalation-vulnerability?_s_id=cve
Errors in the logic of the plugin's API could potentially lead to an attacker gaining access to the administrator account. According to Patchstack, exploitation of the vulnerability began just an hour after public disclosure!
Search at Netlas.io:
π Link: https://nt.ls/y4FXX
π Dork: http.body:"plugins/suretriggers"
Read more: https://patchstack.com/database/wordpress/plugin/suretriggers/vulnerability/wordpress-suretriggers-1-0-82-privilege-escalation-vulnerability?_s_id=cve
π₯3πΎ2
CVE-2025-20188: Use of Hard-coded Credentials in Cisco IOS XE, 10.0 rating π₯π₯π₯
Due to hard-coded JWT, Cisco IOS XE instances may be vulnerable to arbitrary file uploads, path traversal, and arbitrary command execution. Catalyst controllers are primarily affected.
Search at Netlas.io:
π Link: https://nt.ls/BKkJI
π Dork: certificate.issuer_dn:"IOS-Self-Signed-Certificate"
Vendor's advisory: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-file-uplpd-rHZG9UfC
Due to hard-coded JWT, Cisco IOS XE instances may be vulnerable to arbitrary file uploads, path traversal, and arbitrary command execution. Catalyst controllers are primarily affected.
Search at Netlas.io:
π Link: https://nt.ls/BKkJI
π Dork: certificate.issuer_dn:"IOS-Self-Signed-Certificate"
Vendor's advisory: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-file-uplpd-rHZG9UfC
1π₯3π2πΎ2
CVE-2025-31644: Command Injection' in F5 BIG-IP, 8.7 ratingβοΈ
A vulnerability in the "file" parameter of the "save" command allows authenticated attackers to execute arbitrary commands as root.
Search at Netlas.io:
π Link: https://nt.ls/5WHZt
π Dork: http.headers.server:"BigIP"
Vendor's advisory: https://my.f5.com/manage/s/article/K000148591
A vulnerability in the "file" parameter of the "save" command allows authenticated attackers to execute arbitrary commands as root.
Search at Netlas.io:
π Link: https://nt.ls/5WHZt
π Dork: http.headers.server:"BigIP"
Vendor's advisory: https://my.f5.com/manage/s/article/K000148591
πΎ4π₯3
CVE-2025-42999: Deserialization of Untrusted Data in SAP NetWeaver, 9.1 rating π₯
A vulnerability in SAP NetWeaver Visual Composer Metadata Uploader allows a privileged attacker to upload arbitrary content that could compromise the confidentiality and integrity of the system.
Search at Netlas.io:
π Link: https://nt.ls/QzmGI
π Dork: http.body:"This error page was generated by SAP Web Dispatcher!"
Read more: https://www.bleepingcomputer.com/news/security/sap-patches-second-zero-day-flaw-exploited-in-recent-attacks/
A vulnerability in SAP NetWeaver Visual Composer Metadata Uploader allows a privileged attacker to upload arbitrary content that could compromise the confidentiality and integrity of the system.
Search at Netlas.io:
π Link: https://nt.ls/QzmGI
π Dork: http.body:"This error page was generated by SAP Web Dispatcher!"
Read more: https://www.bleepingcomputer.com/news/security/sap-patches-second-zero-day-flaw-exploited-in-recent-attacks/
πΎ3π₯2
CVE-2025-22252: Bypass Authentication in FortiOS/FortiProxy, 9.0 rating π₯
Systems configured to use TACACS+ with ASCII authentication may be affected by a vulnerability that could allow an attacker to bypass authentication and gain administrative privileges.
Search at Netlas.io:
π Link: https://nt.ls/JYafs
π Dork: http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
Vendor's advisory: https://fortiguard.fortinet.com/psirt/FG-IR-24-472
Systems configured to use TACACS+ with ASCII authentication may be affected by a vulnerability that could allow an attacker to bypass authentication and gain administrative privileges.
Search at Netlas.io:
π Link: https://nt.ls/JYafs
π Dork: http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
Vendor's advisory: https://fortiguard.fortinet.com/psirt/FG-IR-24-472
π₯2πΎ2
CVE-2025-47884, -47885, -47889: Multiple vulnerabilities in Jenkins, 8.8 - 9.8 rating π₯
Three vulnerabilities in Jenkins that were recently disclosed: Improper Access Control, XSS, Auth Bypass.
Search at Netlas.io:
π Link: https://nt.ls/6d5ql
π Dork: http.headers.x_jenkins:*
Vendor's advisory: https://www.jenkins.io/security/advisory/2025-05-14/
Three vulnerabilities in Jenkins that were recently disclosed: Improper Access Control, XSS, Auth Bypass.
Search at Netlas.io:
π Link: https://nt.ls/6d5ql
π Dork: http.headers.x_jenkins:*
Vendor's advisory: https://www.jenkins.io/security/advisory/2025-05-14/
π₯3πΎ2