Nov 4, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Gladinet CentreStack And Triofox added to CISA KEV — confirmed in-the-wild exploitation.
  • WordPress plugin RCE/exploit activity: 2 CVEs flagged today.
  • 9 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2025-48703 CWP Control Web Panel OS Command Injection

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV
  • Remote code execution exposure

CWP Control Web Panel RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2025-54863 Radiometrics Vizair

  • CVSS 10

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2025-61945 Radiometrics Vizair

  • CVSS 10

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Gladinet CentreStack and Triofox Files or Directories Accessible to External Parties

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2025-12108 CVSS 9.3

The Survision LPR Camera system does not enforce password protection by default.

CVE-2025-12158 CVSS 9.8

The Simple User Capabilities plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the suc_subm...

CVE-2025-12493 CVSS 9.8

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution (formerly WooLentor) plugin for WordPres...

CVE-2025-12682 CVSS 9.8

The Easy Upload Files During Checkout plugin for WordPress is vulnerable to arbitrary JavaScript file uploads due to missing file type va...

CVE-2025-12735 CVSS 9.8

The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defi...

CVE-2025-52910 CVSS 9.8

An issue was discovered in the GPU in Samsung Mobile Processor and Wearable Processor Exynos 1280, 2200, 1330, 1380, 1480, 2400.

CVE-2025-54863 CVSS 10

Radiometrics VizAir is vulnerable to exposure of the system's REST API key through a publicly accessible configuration file.

CVE-2025-61945 CVSS 10

Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication.

CVE-2025-61956 CVSS 10

Radiometrics VizAir is vulnerable to a lack of authentication mechanisms for critical functions, such as admin access and API requests.

View critical disclosures

cvelogic Threat Intelligence