Vulnerability - Rankiteo Blog (Page 38)

Paid Membership Subscriptions (by Cozmoslabs)

public – 3 min read

A critical unauthenticated SQL injection vulnerability (CVE-2025-49870) was discovered in the WordPress Paid Membership Subscriptions plugin (versions ≤2.15.1)…

Sep 1, 2025

Jeremy C

WhatsApp (Meta)

public – 3 min read

WhatsApp disclosed a zero-click vulnerability (CVE-2025-55177) in its iOS and macOS apps, exploited in targeted zero-day attacks alongside an Apple…

Aug 29, 2025

Jeremy C

Sangoma Technologies Corporation

public – 3 min read

The Sangoma FreePBX Security Team disclosed an actively exploited zero-day vulnerability in FreePBX systems with exposed Administrator Control Panels (ACP)…

Aug 27, 2025

Jeremy C

Citrix (Cloud Software Group)

public – 4 min read

Citrix disclosed a critical zero-day vulnerability (CVE-2025-7775) in its NetScaler ADC and NetScaler Gateway products, actively exploited in the wild…

Aug 26, 2025

Jeremy C

TP-Link: TP-Link Vulnerability Allows Authentication Bypass Via Password Recovery Feature

public – 2 min read

Critical Authentication Bypass Flaw in TP-Link VIGI Cameras Exposes Surveillance Systems to Unauthorized Access A high-severity authentication vulnerability (CVE-2026-0629) has…

Aug 25, 2025

Jeremy C