CERT Polska has coordinated disclousure of 9 vulnerabilities (CVE-2025-7063, CVE-2025-7065 and from CVE-2025-8116 to CVE-2025-8122) found in PAD CMS software.

Improper Neutralization of NUL Character vulnerability (CVE-2025-9648) has been found in CivetWeb software.

Missing Authentication for Critical Function vulnerability (CVE-2025-9983) has been found in GALAYOU G2 software.

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-10015 and CVE-2025-10016) found in Sparkle software.

SQL Injection (CVE-2025-10095) has been found in SMSEagle firmware.

Path Traversal vulnerability (CVE-2025-5993) has been found in ITCube CRM software.

SQL Injection vulnerability (CVE-2025-7385) has been found in Concept Intermedia GOV CMS software.

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-4643 and CVE-2025-4644).

CERT Polska has received a report about 6 vulnerabilities (from CVE-2025-54540 to CVE-2025-55175) found in OpenSolution QuickCMS software.

CERT Polska has received a report about 17 vulnerabilities (between CVE-2025-2313 and CVE-2025-30064) found in CGM CLININET software.