I love my XREAL AR glasses, but I have a cheaper alternative you should try — similar features but cost over $70 less

July 9, 2025

XREAL grabs the headlines (and rightly so) when it comes to AR glasses, but there are alternatives. This anti-Prime Day deal at Best Buy gets you something very similar, but costs a lot less.

Source: Read MoreÂ / Windows Central

Previous ArticleI rounded up 10 of best Windows 11 Copilot+ PC deals available this Amazon Prime Day — ranked from cheapest to most expensive

Next Article Don’t get sucked in by sub $200 laptops on Prime Day — they’re all awful, and you’ll regret buying one

Highlights

CVE-2025-5692 – WordPress Lead Form Data Collection to CRM Plugin Privilege Escalation Vulnerability

July 2, 2025

CVE ID : CVE-2025-5692

Published : July 2, 2025, 3:15 a.m. | 6 hours, 59 minutes ago

Description : The Lead Form Data Collection to CRM plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the doFieldAjaxAction() function in all versions up to, and including, 3.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site. Other AJAX actions handling plugin settings are also insufficiently protected and exploitable.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

I love my XREAL AR glasses, but I have a cheaper alternative you should try — similar features but cost over $70 less

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

CVE-2025-5820 – Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass

CVE-2024-13858 – Buddyboss Platform Stored Cross-Site Scripting Vulnerability

CVE-2025-1087 – Kong Insomnia Desktop Application Template Injection Vulnerability

CVE-2025-40633 – Koibox Stored Cross-Site Scripting (XSS)

CVE-2025-5692 – WordPress Lead Form Data Collection to CRM Plugin Privilege Escalation Vulnerability

CVE-2025-4387 – Abandoned Cart Pro for WooCommerce Authenticated Arbitrary File Upload Vulnerability

CISA adds Yii Framework and Commvault bugs to KEV Catalog

CVE-2025-46327 – Snowflake Golang Driver Local File Configuration TOCTOU

I love my XREAL AR glasses, but I have a cheaper alternative you should try — similar features but cost over $70 less

Related Posts