February 21, 2025 – TheCyberThrone

MongoDB is affected by Twin Critical Vulnerabilities

CVE-2025-23061: Mongoose Search Injection Vulnerability Description: CVE-2025-23061 is a critical vulnerability identified in Mongoose versions prior to 8.9.5. The vulnerability arises due to the improper handling of nested $where filters…

PravinKarthik February 21, 2025

Atlassian’s Security Advisory Addresses Multiple Vulnerabilities

In February 2025, Atlassian released a comprehensive security advisory addressing 12 critical and high-severity vulnerabilities across its suite of products, including Bamboo, Bitbucket, Confluence, Crowd, and Jira. This analysis provides…

PravinKarthik February 21, 2025

CISA adds Craft CMS and PaloAlto Flaws to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) recently added two critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog. These vulnerabilities are: CVE-2025-23209: A code injection vulnerability in Craft CMS.…

PravinKarthik February 21, 2025