Skip to main content
CVE-2025-43711 HIGH PATCH This Week

A remote code execution vulnerability (CVSS 8.1) that allows attackers. High severity vulnerability requiring prompt remediation.

RCE
NVD
CVSS 3.1
8.1
EPSS
0.0%
CVE-2025-47227 HIGH This Week

In the Production Environment extension in Netmake ScriptCase through 9.12.006 (23), the Administrator password reset mechanism is mishandled. Making both a GET and a POST request to login.php.is sufficient. An unauthenticated attacker can then bypass authentication via administrator account takeover.

PHP Authentication Bypass
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2025-53603 HIGH PATCH This Week

In Alinto SOPE SOGo 2.0.2 through 5.12.2, sope-core/NGExtensions/NGHashMap.m allows a NULL pointer dereference and SOGo crash via a request in which a parameter in the query string is a duplicate of a parameter in the POST body.

Null Pointer Dereference Denial Of Service Ubuntu Debian
NVD GitHub
CVSS 3.1
7.5
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy