2026-02-10 Daily Vulns
NEW:
| CVE | vendor-product | description | metric | Referenceurl | title | GithubURL | |
|---|---|---|---|---|---|---|---|
| CVE-2025-6830 | Xpoda Türkiye Information Technology Inc. - Xpoda Studio | Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Xpoda Türkiye Information Technology Inc. Xpoda Studio allows SQL Injection.This issue affects Xpoda Studio: through 09022026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | CVSS3.1: 9.8 - CRITICAL | 0 | Exploitation: noneAutomatable: yesTechnical Impact: total | SQLi in Xpoda Türkiye Information Technology’s Xpoda Studio | github |
| CVE-2025-10463 | Birtech Information Technologies Industry and Trade Ltd. Co. - Senseway | Improper Authentication vulnerability in Birtech Information Technologies Industry and Trade Ltd. Co. Senseway allows Authentication Abuse.This issue affects Senseway: through 09022026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | CVSS3.1: 7.3 - HIGH | 0 | Exploitation: noneAutomatable: yesTechnical Impact: partial | Improper Authentication in Birtech Information Technologies’ Sensaway | github |
This post is licensed under CC BY 4.0 by the author.