The Spacious theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'welcome_notice_import_handler' function in all versions up to, and including, 1.9.11. This makes it possible for authenticated attackers, with Subscriber-level access and above, to import demo data into the site.

CVE Database V5

Detailed information about CVE-2025-9331: CWE-862 Missing Authorization in themegrill Spacious affecting themegrill Spacious. Get real-time updates, technical d

CVE-2025-9331: CWE-862 Missing Authorization in themegrill Spacious - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-9331: CWE-862 Missing Authorization in themegrill Spacious

WebITR developed by Uniong has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to log into the system as arbitrary users by exploiting a specific functionality.

Detailed information about CVE-2025-9254: CWE-306 Missing Authentication for Critical Function in Uniong WebITR affecting Uniong WebITR. Get real-time updates, 

CVE-2025-9254: CWE-306 Missing Authentication for Critical Function in Uniong WebITR - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-9254: CWE-306 Missing Authentication for Critical Function in Uniong WebITR

After SharePoint attacks, Microsoft stops sharing PoC exploit code with China

Source: https://securityaffairs.com/181430/security/after-sharepoint-attacks-microsoft-stops-sharing-poc-exploit-code-with-china.html

The reported security threat involves Microsoft ceasing the sharing of proof-of-concept (PoC) exploit code related to SharePoint vulnerabilities with entities in China following a series of attacks leveraging these vulnerabilities. SharePoint, a widely used Microsoft collaboration and document management platform, has historically been a target for attackers due to its extensive deployment in enterprise environments and its integration with critical business workflows. The decision by Microsoft to restrict PoC exploit code sharing appears to be a direct response to observed exploitation attempts, which likely aimed to leverage these vulnerabilities for unauthorized access, data exfiltration, or disruption of services. Although specific technical details about the vulnerabilities exploited or the nature of the attacks are not provided, the context suggests that these are high-priority security issues with potential for significant impact. The absence of known exploits in the wild at the time of reporting indicates that while the vulnerabilities are serious, widespread exploitation may not yet have occurred or been detected. The threat highlights the geopolitical dimension of cybersecurity, where the dissemination of exploit information is controlled to limit adversarial capabilities. This situation underscores the importance of managing vulnerability disclosures and exploit code sharing to prevent misuse by threat actors. The lack of detailed technical data, such as affected SharePoint versions or CVE identifiers, limits the ability to provide a granular technical analysis; however, the high severity rating and Microsoft's reactive measures emphasize the critical nature of the vulnerabilities involved.

Reddit InfoSec News

Detailed information about After SharePoint attacks, Microsoft stops sharing PoC exploit code with China. Get real-time updates, technical details, and mitigati

After SharePoint attacks, Microsoft stops sharing PoC exploit code with China - Live Threat Intelligence - Threat Radar | OffSeq.com

After SharePoint attacks, Microsoft stops sharing PoC exploit code with China

Reddit Discussion: After SharePoint attacks, Microsoft stops sharing PoC exploit code with China

Ex-Developer Jailed Four Years for Sabotaging Ohio Employer with Kill-Switch Malware

Source: https://thehackernews.com/2025/08/ex-developer-jailed-four-years-for.html

This security threat involves a former software developer who was sentenced to four years in prison for deliberately sabotaging their former employer in Ohio by deploying kill-switch malware. Kill-switch malware is a type of malicious software designed to disrupt or disable critical systems or operations, often by triggering a shutdown or destruction of data or services. In this case, the ex-developer abused their privileged access and insider knowledge to embed malicious code that could be remotely or conditionally activated to cause operational disruption. While specific technical details such as the malware's mechanism, propagation method, or targeted systems are not provided, the incident highlights the risk posed by insider threats leveraging malware to inflict damage. The lack of known exploits in the wild and absence of affected software versions suggests this was a targeted, bespoke attack rather than a widespread vulnerability exploitation. The threat underscores the importance of monitoring and controlling insider access, especially for employees with development or administrative privileges who have deep system knowledge. The malware’s kill-switch functionality implies a capability to cause significant availability impact, potentially halting business operations or causing data loss. Given the high severity rating and the legal consequences faced by the perpetrator, this case serves as a cautionary example of insider sabotage via malware.

Detailed information about Ex-Developer Jailed Four Years for Sabotaging Ohio Employer with Kill-Switch Malware. Get real-time updates, technical details, and m

Ex-Developer Jailed Four Years for Sabotaging Ohio Employer with Kill-Switch Malware - Live Threat Intelligence - Threat Radar | OffSeq.com

Ex-Developer Jailed Four Years for Sabotaging Ohio Employer with Kill-Switch Malware

Reddit Discussion: Ex-Developer Jailed Four Years for Sabotaging Ohio Employer with Kill-Switch Malware

WebITR developed by Uniong has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.

Detailed information about CVE-2025-9255: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Uniong WebITR affecting