Nov 7, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2025-63689 Ycf1998 Money-pos SQL Injection

  • CVSS 10

New critical Ycf1998 Money-pos SQL Injection (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2025-10230 A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration p...

  • CVSS 10

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2025-12352 The Gravity Forms plugin for WordPress is vulnerable to arbitrary file uploads due to missing fil...

  • CVSS 9.8
  • Internet-facing CMS deployments affected

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2020-36870 CVSS 9.2

Various Ruijie Gateway EG and NBR models firmware versions 11.1(6)B9P1 < 11.9(4)B12P1 contain a code execution vulnerability in the EWEB...

CVE-2025-10230 CVSS 10

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without pro...

CVE-2025-10870 CVSS 9.3

SQL injection vulnerability in DIAL's CentrosNet v2.64.

CVE-2025-12352 CVSS 9.8

The Gravity Forms plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the copy_post_image...

CVE-2025-3222 CVSS 9.3

Improper Authentication vulnerability in GE Vernova Smallworld on Windows, Linux allows Authentication Abuse.This issue affects Smallworl...

CVE-2025-34299 CVSS 9.3

Monsta FTP versions 2.11 and earlier contain a vulnerability that allows unauthenticated arbitrary file uploads.

CVE-2025-52425 CVSS 9.5

An SQL injection vulnerability has been reported to affect QuMagie.

CVE-2025-63689 CVSS 10

Multiple SQL injection vulnerabilitites in ycf1998 money-pos system before commit 11f276bd20a41f089298d804e43cb1c39d041e59 (2025-09-14) a...

CVE-2025-63690 CVSS 9.1

In pig-mesh Pig versions 3.8.2 and below, when setting up scheduled tasks in the Quartz management function under the system management m...

CVE-2025-63691 CVSS 9.6

In pig-mesh In Pig version 3.8.2 and below, within the Token Management function under the System Management module, the token query inte...

View critical disclosures

cvelogic Threat Intelligence