Mar 19, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • NAKIVO Backup And Replication added to CISA KEV — confirmed in-the-wild exploitation.
  • Wprealize Extensive Vc Addons For Wpbakery Page Builder: public exploit or PoC linked (RCE)
  • WordPress plugin RCE/exploit activity: 5 CVEs flagged today.
  • 9 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2017-12637 SAP NetWeaver Directory Traversal

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV

SAP NetWeaver Directory Traversal is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Active exploit activity

CVE-2023-0159 Wprealize Extensive Vc Addons For Wpbakery Page Builder RCE

  • Public exploit or PoC available
  • Exploit activity linked
  • Internet-facing CMS deployments affected

WordPress plugin exposure with public exploit material — mass targeting of internet-facing CMS installs is common once PoCs circulate.

Critical exposure

CVE-2025-2512 File Away Project File Away RCE

  • CVSS 9.8
  • Internet-facing CMS deployments affected

New critical File Away Project File Away RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2024-48248 KEV

NAKIVO Backup and Replication Absolute Path Traversal

CVE-2025-1316 KEV

Edimax IC-7100 IP Camera OS Command Injection

View KEV additions

Exploit & PoC activity

CVE-2023-0159 Exploit

The Extensive VC Addons for WPBakery page builder WordPress plugin before 1.9.1 does not validate a parameter passed to the php extract f...

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-12922 CVSS 9.8

The Altair theme for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing...

CVE-2024-13410 CVSS 9.8

The CozyStay and TinySalt plugins for WordPress are vulnerable to PHP Object Injection in all versions up to, and including, 1.7.0, and i...

CVE-2024-13442 CVSS 9.8

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and in...

CVE-2024-13790 CVSS 9.8

The MinimogWP – The High Converting eCommerce WordPress Theme theme for WordPress is vulnerable to Local File Inclusion in all versions u...

CVE-2024-57061 CVSS 9.8

An issue in Termius Version 9.9.0 through v.9.16.0 allows a physically proximate attacker to execute arbitrary code via the insecure Elec...

CVE-2025-2512 CVSS 9.8

The File Away plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check and missing file type valida...

CVE-2025-29137 CVSS 9.8

Tenda AC7 V1.0 V15.03.06.44 found a buffer overflow caused by the timeZone parameter in the form_fast_setting_wifi_set function, which ca...

CVE-2025-29401 CVSS 9.8

An arbitrary file upload vulnerability in the component /views/plugin.php of emlog pro v2.5.7 allows attackers to execute arbitrary code...

CVE-2025-29783 CVSS 9

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs.

View critical disclosures

cvelogic Threat Intelligence