CVE-2025-14101
(7.1 HIGH)

EPSS: 0.00%

updated 2025-12-17T10:15:39.710000

1 posts

Authorization Bypass Through User-Controlled Key vulnerability in GG Soft Software Services Inc. PaperWork allows Exploitation of Trusted Identifiers.This issue affects PaperWork: from 5.2.0.9427 before 6.0.

CVE-2025-14399
(4.3 MEDIUM)

EPSS: 0.00%

updated 2025-12-17T09:30:32

1 posts

The Download Plugins and Themes in ZIP from Dashboard plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.6. This is due to missing or incorrect nonce validation on the download_plugin_bulk and download_theme_bulk functions. This makes it possible for unauthenticated attackers to archive all the sites plugins and themes and place them in the `

CVE-2025-12496
(4.9 MEDIUM)

EPSS: 0.00%

updated 2025-12-17T09:30:32

1 posts

The Zephyr Project Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.203 via the `file` parameter. This makes it possible for authenticated attackers, with Custom-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information. On a servers that have `allow_url_fopen` enabled, this issu

CVE-2025-14817(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-17T09:30:32

2 posts

The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction.

CVE-2025-14061
(5.3 MEDIUM)

EPSS: 0.00%

updated 2025-12-17T09:30:32

1 posts

The Cookie Banner, Cookie Consent, Consent Log, Cookie Scanner, Script Blocker (for GDPR, CCPA & ePrivacy) : WP Cookie Consent plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the gdpr_delete_policy_data function in all versions up to, and including, 4.0.7. This makes it possible for unauthenticated attackers to permanently delete arbitrary

CVE-2025-13750
(4.3 MEDIUM)

EPSS: 0.00%

updated 2025-12-17T09:30:32

1 posts

The Converter for Media – Optimize images | Convert WebP & AVIF plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the `/webp-converter/v1/regenerate-attachment` REST endpoint in all versions up to, and including, 6.3.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete optimized WebP/AVIF

CVE-2025-11924
(7.5 HIGH)

EPSS: 0.00%

updated 2025-12-17T07:15:57.750000

1 posts

The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including, 3.13.2. This is due to the plugin not properly verifying that a user is authorized before the `ninja-forms-views` REST endpoints return form metadata and submission content. This makes it possible for unauthenticated attackers to re

CVE-2025-13880
(6.5 MEDIUM)

EPSS: 0.00%

updated 2025-12-17T06:32:10

1 posts

The WP Social Ninja – Embed Social Feeds, Customer Reviews, Chat Widgets (Google Reviews, YouTube Feed, Photo Feeds, and More) plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the getAdvanceSettings and saveAdvanceSettings functions in all versions up to, and including, 4.0.1. This makes it possible for unauthenticated attacker

CVE-2025-13861
(6.1 MEDIUM)

EPSS: 0.00%

updated 2025-12-17T06:32:10

1 posts

The HTML Forms – Simple WordPress Forms Plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in all versions up to and including 1.6.0 due to insufficient sanitization of fabricated file upload field metadata before displaying it in the WordPress admin dashboard. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute

CVE-2025-11775(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-17T06:32:10

1 posts

An out-of-bounds read vulnerability has been identified in the asComSvc service. This vulnerability can be triggered by sending specially crafted requests, which may lead to a service crash or partial loss of functionality. This vulnerability only affects ASUS motherboard series products. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory for more informatio

CVE-2025-14385
(6.4 MEDIUM)

EPSS: 0.00%

updated 2025-12-17T06:32:09

1 posts

The WP Recipe Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name' parameter in all versions up to, and including, 10.2.3 due to insufficient input sanitization and output escaping on user-supplied attributes in the wprm-recipe-roundup-item shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary w

CVE-2025-14305
(7.8 HIGH)

EPSS: 0.00%

updated 2025-12-17T06:32:08

1 posts

ListCheck.exe developed by Acer has a Local Privilege Escalation vulnerability. Authenticated local attackers can replace ListCheck.exe with a malicious executable of the same name, which will be executed by the system and result in privilege escalation.

CVE-2025-59374
(0 None)

EPSS: 0.00%

updated 2025-12-17T05:16:13.080000

3 posts

"UNSUPPORTED WHEN ASSIGNED" Certain versions of the ASUS Live Update client were distributed with unauthorized modifications introduced through a supply chain compromise. The modified builds could cause devices meeting specific targeting conditions to perform unintended actions. Only devices that met these conditions and installed the compromised versions were affected. The Live Update client has

CVE-2025-53524
(7.8 HIGH)

EPSS: 0.00%

updated 2025-12-17T03:30:19

2 posts

Fuji Electric Monitouch V-SFT-6 is vulnerable to an out-of-bounds write while processing a specially crafted project file, which may allow an attacker to execute arbitrary code.

CVE-2025-14701
(7.1 HIGH)

EPSS: 0.00%

updated 2025-12-17T03:30:19

1 posts

An input neutralization vulnerability in the Server MOTD component of Crafty Controller allows a remote, unauthenticated attacker to perform stored XSS via server MOTD modification.

CVE-2025-11009
(5.1 MEDIUM)

EPSS: 0.00%

updated 2025-12-17T03:30:19

1 posts

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GT Designer3 Version1 (GOT2000) all versions and Mitsubishi Electric GT Designer3 Version1 (GOT1000) all versions allows a local unauthenticated attacker to obtain plaintext credentials from the project file for GT Designer3. This could allow the attacker to operate illegally GOT2000 series or GOT1000 series by using t

CVE-2025-14700
(9.9 CRITICAL)

EPSS: 0.00%

updated 2025-12-17T01:15:59.620000

3 posts

An input neutralization vulnerability in the Webhook Template component of Crafty Controller allows a remote, authenticated attacker to perform remote code execution via Server Side Template Injection.

CVE-2025-14766(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-17T00:31:24

1 posts

Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2025-64725(CVSS UNKNOWN)

EPSS: 0.01%

updated 2025-12-17T00:29:26

1 posts

### Impact It was possible to accept an invitation opened by a different Weblate user. ### Patches * https://github.com/WeblateOrg/weblate/pull/16913 ### Workarounds Users should avoid leaving Weblate sessions with an unattended opened invitation. ### References Thanks to Nahid0x for responsibly disclosing this vulnerability to Weblate.

CVE-2025-54947(CVSS UNKNOWN)

EPSS: 0.04%

updated 2025-12-17T00:25:52

1 posts

In Apache StreamPark versions 2.0.0 through 2.1.7, a security vulnerability involving a hard-coded encryption key exists. This vulnerability occurs because the system uses a fixed, immutable key for encryption instead of dynamically generating or securely configuring the key. Attackers may obtain this key through reverse engineering or code analysis, potentially decrypting sensitive data or forgin

CVE-2025-68087
(5.4 MEDIUM)

EPSS: 0.02%

updated 2025-12-16T21:32:01

1 posts

Missing Authorization vulnerability in merkulove Modalier for Elementor modalier-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Modalier for Elementor: from n/a through <= 1.0.6.

CVE-2025-14646
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-16T21:32:01

1 posts

A security flaw has been discovered in code-projects Student File Management System 1.0. This impacts an unknown function of the file /admin/delete_student.php. The manipulation of the argument stud_id results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be exploited.

CVE-2025-14642
(4.7 MEDIUM)

EPSS: 0.03%

updated 2025-12-16T21:32:01

1 posts

A vulnerability has been found in code-projects Computer Laboratory System 1.0. Impacted is an unknown function of the file technical_staff_pic.php. Such manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-14653
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-16T21:32:00

1 posts

A vulnerability was determined in itsourcecode Student Management System 1.0. Impacted is an unknown function of the file /addrecord.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

CVE-2025-14623
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-16T21:31:59

1 posts

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

CVE-2025-37164
(10.0 CRITICAL)

EPSS: 0.00%

updated 2025-12-16T21:30:54

1 posts

A remote code execution issue exists in HPE OneView.

CVE-2025-14649
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-16T21:30:52

1 posts

A vulnerability was detected in itsourcecode Online Cake Ordering System 1.0. Affected by this issue is some unknown functionality of the file /cakeshop/supplier.php. Performing manipulation of the argument supplier results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used.

CVE-2025-14640
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-16T21:30:52

1 posts

A flaw has been found in code-projects Student File Management System 1.0. The affected element is an unknown function of the file /admin/save_student.php. Executing manipulation of the argument stud_no can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used.

CVE-2025-14589
(6.3 MEDIUM)

EPSS: 0.03%

updated 2025-12-16T21:30:51

1 posts

A weakness has been identified in code-projects Prison Management System 2.0. This issue affects some unknown processing of the file /admin/search.php. Executing manipulation of the argument keyname can lead to sql injection. The attack may be performed from remote. The exploit has been made available to the public and could be exploited.

CVE-2025-65427
(6.5 MEDIUM)

EPSS: 0.00%

updated 2025-12-16T21:15:47.380000

1 posts

An issue was discovered in Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router on firmware version V1.0.0 does not implement rate limiting to /api/login allowing attackers to brute force password enumerations.

1 repos

https://github.com/kirubel-cve/CVE-2025-65427

CVE-2025-46295
(9.8 CRITICAL)

EPSS: 0.00%

updated 2025-12-16T20:15:48.177000

1 posts

Apache Commons Text versions prior to 1.10.0 included interpolation features that could be abused when applications passed untrusted input into the text-substitution API. Because some interpolators could trigger actions like executing commands or accessing external resources, an attacker could potentially achieve remote code execution. This vulnerability has been fully addressed in FileMaker Serve

CVE-2025-13888
(9.1 CRITICAL)

EPSS: 0.05%

updated 2025-12-16T20:11:05

1 posts

A flaw was found in OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources (CRs) that trick the system into granting them elevated permissions in other namespaces, including privileged namespaces. An authenticated attacker can then use these elevated permissions to create privileged workloads that run on master nodes, effectively giving them root access to the entire cluster.

CVE-2025-14645
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-16T20:07:17.483000

1 posts

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown function of the file /admin/delete_user.php. The manipulation of the argument user_id leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly available and might be used.

CVE-2025-14641
(4.7 MEDIUM)

EPSS: 0.03%

updated 2025-12-16T20:06:40.230000

1 posts

A flaw has been found in code-projects Computer Laboratory System 1.0. This issue affects some unknown processing of the file admin/admin_pic.php. This manipulation of the argument image causes unrestricted upload. The attack may be initiated remotely. The exploit has been published and may be used.

CVE-2025-14590
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-16T19:53:27.180000

1 posts

A security vulnerability has been detected in code-projects Prison Management System 2.0. Impacted is an unknown function of the file /admin/search1.php. The manipulation of the argument keyname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.

CVE-2025-68130(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-16T19:37:58

1 posts

> Note that this vulnerability is only present when using `experimental_caller` / `experimental_nextAppDirCaller`. ## Summary A Prototype Pollution vulnerability exists in `@trpc/server`'s `formDataToObject` function, which is used by the Next.js App Router adapter. An attacker can pollute `Object.prototype` by submitting specially crafted FormData field names, potentially leading to authorizati

CVE-2025-68270
(9.9 CRITICAL)

EPSS: 0.00%

updated 2025-12-16T19:16:00.720000

1 posts

The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able to list courses they have the role on in studio even though they are not meant to have any access on the

CVE-2025-59718
(9.8 CRITICAL)

EPSS: 0.05%

updated 2025-12-16T19:15:57.863000

9 posts

A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.10, FortiProxy 7.2.0 through 7.2.14, FortiProxy 7.0.0 through 7.0.21, FortiSwitchManager 7.2.0 through 7.2.6, FortiSwitchManager 7.0.0 through 7

1 repos

https://github.com/Ashwesker/Blackash-CVE-2025-59718

CVE-2025-65781
(8.2 HIGH)

EPSS: 0.02%

updated 2025-12-16T18:32:38

1 posts

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Attachment upload API treats the Authorization bearer value as a userId and enters a non-terminating body-handling branch for any non-empty bearer token, enabling trivial application-layer DoS and latent identity-spoofing.

CVE-2025-65778
(8.1 HIGH)

EPSS: 0.02%

updated 2025-12-16T18:32:38

1 posts

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Uploaded attachments can be served with attacker-controlled Content-Type (text/html), allowing execution of attacker-supplied HTML/JS in the application's origin and enabling session/token theft and CSRF actions.

CVE-2025-33225
(8.4 HIGH)

EPSS: 0.00%

updated 2025-12-16T18:31:43

2 posts

NVIDIA Resiliency Extension for Linux contains a vulnerability in log aggregation, where an attacker could cause predictable log-file names. A successful exploit of this vulnerability may lead to escalation of privileges, code execution, denial of service, information disclosure, and data tampering.

CVE-2025-33235
(7.8 HIGH)

EPSS: 0.00%

updated 2025-12-16T18:31:43

1 posts

NVIDIA Resiliency Extension for Linux contains a vulnerability in the checkpointing core, where an attacker may cause a race condition. A successful exploit of this vulnerability might lead to information disclosure, data tampering, denial of service, or escalation of privileges.

CVE-2025-33226
(7.8 HIGH)

EPSS: 0.00%

updated 2025-12-16T18:31:43

1 posts

NVIDIA NeMo Framework for all platforms contains a vulnerability where malicious data created by an attacker may cause a code injection. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, and data tampering.

CVE-2025-29231
(6.1 MEDIUM)

EPSS: 0.00%

updated 2025-12-16T18:31:43

1 posts

A stored cross-site scripting (XSS) vulnerability in the page_save component of Linksys E5600 V1.1.0.26 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the hostname and domainName parameters.

CVE-2025-50401(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-16T18:31:42

1 posts

Mercury D196G d196gv1-cn-up_2020-01-09_11.21.44 is vulnerable to Buffer Overflow in the function sub_404CAEDC via the parameter password.

CVE-2025-50398(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-16T18:31:42

1 posts

Mercury D196G d196gv1-cn-up_2020-01-09_11.21.44 is vulnerable to Buffer Overflow in the function sub_404CAEDC via the parameter fac_password.

CVE-2025-14432(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-16T18:31:33

1 posts

In limited scenarios, sensitive data might be written to the log file if an admin uses Microsoft Teams Admin Center (TAC) to make device configuration changes. The affected log file is visible only to users with admin credentials. This is limited to Microsoft TAC and does not affect configuration changes made using the provisioning server or the device WebUI.

CVE-2025-33212
(7.3 HIGH)

EPSS: 0.00%

updated 2025-12-16T18:16:11.340000

1 posts

NVIDIA NeMo Framework contains a vulnerability in model loading that could allow an attacker to exploit improper control mechanisms if a user loads a maliciously crafted file. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, denial of service, and data tampering.

CVE-2025-33210
(9.0 CRITICAL)

EPSS: 0.00%

updated 2025-12-16T18:16:11.163000

2 posts

NVIDIA Isaac Lab contains a deserialization vulnerability. A successful exploit of this vulnerability might lead to code execution.

CVE-2023-53900
(8.8 HIGH)

EPSS: 0.00%

updated 2025-12-16T18:16:07.063000

1 posts

Spip 4.1.10 contains a file upload vulnerability that allows attackers to upload malicious SVG files with embedded external links. Attackers can trick administrators into clicking a crafted SVG logo that redirects to a potentially dangerous URL through improper file upload filtering.

CVE-2023-53896
(7.5 HIGH)

EPSS: 0.00%

updated 2025-12-16T18:16:06.537000

2 posts

D-Link DAP-1325 firmware version 1.01 contains a broken access control vulnerability that allows unauthenticated attackers to download device configuration settings without authentication. Attackers can exploit the /cgi-bin/ExportSettings.sh endpoint to retrieve sensitive configuration information by directly accessing the export settings script.

CVE-2025-66388
(6.5 MEDIUM)

EPSS: 0.03%

updated 2025-12-16T17:50:23

1 posts

A vulnerability in Apache Airflow allowed authenticated UI users to view secret values in rendered templates due to secrets not being properly redacted, potentially exposing secrets to users without the appropriate authorization. Users are recommended to upgrade to version 3.1.4, which fixes this issue.

CVE-2025-68088
(5.4 MEDIUM)

EPSS: 0.02%

updated 2025-12-16T16:16:05.610000

1 posts

Missing Authorization vulnerability in merkulove Huger for Elementor huger-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Huger for Elementor: from n/a through <= 1.1.5.

CVE-2025-37731
(6.8 MEDIUM)

EPSS: 0.04%

updated 2025-12-16T15:52:25

1 posts

Improper Authentication in Elasticsearch PKI realm can lead to user impersonation via specially crafted client certificates. A malicious actor would need to have such a crafted client certificate signed by a legitimate, trusted Certificate Authority.

CVE-2025-14691
(4.3 MEDIUM)

EPSS: 0.09%

updated 2025-12-16T15:43:35

1 posts

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. Users should upgrade the affected component. The vendor confirms that this

CVE-2025-55895
(9.1 CRITICAL)

EPSS: 0.02%

updated 2025-12-16T15:31:39

3 posts

TOTOLINK A3300R V17.0.0cu.557_B20221024 and N200RE V9.3.5u.6448_B20240521 and V9.3.5u.6437_B20230519 are vulnerable to Incorrect Access Control. Attackers can send payloads to the interface without logging in (remote).

CVE-2025-14611
(9.8 CRITICAL)

EPSS: 17.48%

updated 2025-12-16T15:31:34

2 posts

Gladinet CentreStack and Triofox prior to version 16.12.10420.56791 used hardcoded values for their implementation of the AES cryptoscheme. This degrades security for public exposed endpoints that may make use of it and may offer arbitrary local file inclusion when provided a specially crafted request without authentication. This opens the door for future exploitation and can be leveraged with pre

CVE-2025-68265(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-16T15:30:56

1 posts

In the Linux kernel, the following vulnerability has been resolved: nvme: fix admin request_queue lifetime The namespaces can access the controller's admin request_queue, and stale references on the namespaces may exist after tearing down the controller. Ensure the admin request_queue is active by moving the controller's 'put' to after all controller references have been released to ensure no on

CVE-2025-68264(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-16T15:30:56

1 posts

In the Linux kernel, the following vulnerability has been resolved: ext4: refresh inline data size before write operations The cached ei->i_inline_size can become stale between the initial size check and when ext4_update_inline_data()/ext4_create_inline_data() use it. Although ext4_get_max_inline_size() reads the correct value at the time of the check, concurrent xattr operations can modify i_in

CVE-2025-68281(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-16T15:30:55

1 posts

In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: bug fix while parsing mipi-sdca-control-cn-list "struct sdca_control" declares "values" field as integer array. But the memory allocated to it is of char array. This causes crash for sdca_parse_function API. This patch addresses the issue by allocating correct data size.

CVE-2025-14443
(8.5 HIGH)

EPSS: 0.00%

updated 2025-12-16T15:30:47

1 posts

A flaw was found in ose-openshift-apiserver. This vulnerability allows internal network enumeration, service discovery, limited information disclosure, and potential denial-of-service (DoS) through Server-Side Request Forgery (SSRF) due to missing IP address and network-range validation when processing user-supplied image references.

CVE-2025-68086
(5.4 MEDIUM)

EPSS: 0.02%

updated 2025-12-16T15:30:42

1 posts

Missing Authorization vulnerability in merkulove Reformer for Elementor reformer-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Reformer for Elementor: from n/a through <= 1.0.6.

CVE-2025-68266
(0 None)

EPSS: 0.00%

updated 2025-12-16T15:15:56.140000

1 posts

In the Linux kernel, the following vulnerability has been resolved: bfs: Reconstruct file type when loading from disk syzbot is reporting that S_IFMT bits of inode->i_mode can become bogus when the S_IFMT bits of the 32bits "mode" field loaded from disk are corrupted or when the 32bits "attributes" field loaded from disk are corrupted. A documentation says that BFS uses only lower 9 bits of the

CVE-2025-68263
(0 None)

EPSS: 0.00%

updated 2025-12-16T15:15:55.813000

1 posts

In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipc_msg_send_request ipc_msg_send_request() waits for a generic netlink reply using an ipc_msg_table_entry on the stack. The generic netlink handler (handle_generic_event()/handle_response()) fills entry->response under ipc_msg_table_lock, but ipc_msg_send_request() used to validate and free ent

CVE-2025-65076
(0 None)

EPSS: 0.00%

updated 2025-12-16T14:10:11.300000

1 posts

WaveView client allows users to execute restricted set of predefined commands and scripts on the connected WaveStore Server. A malicious attacker with high-privileges is able to read or delete any file on the server using path traversal in the ilog script. This script is being run with root privileges. This issue was fixed in version 6.44.44

CVE-2025-65074
(0 None)

EPSS: 0.00%

updated 2025-12-16T14:10:11.300000

1 posts

WaveView client allows users to execute restricted set of predefined commands and scripts on the connected WaveStore Server. A malicious attacker with high-privileges is able to execute arbitrary OS commands on the server using path traversal in the showerr script. This issue was fixed in version 6.44.44

CVE-2025-9455
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T14:10:11.300000

1 posts

A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-9453
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T14:10:11.300000

1 posts

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-9460
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T14:10:11.300000

1 posts

A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10882
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T14:10:11.300000

1 posts

AA maliciously crafted X_T file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-10881
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T14:10:11.300000

1 posts

A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10883
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T14:10:11.300000

1 posts

A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10886
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T14:10:11.300000

1 posts

A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-10900
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T14:10:11.300000

1 posts

AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-61976
(7.5 HIGH)

EPSS: 0.15%

updated 2025-12-16T14:10:11.300000

2 posts

CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or exceptional conditions. If a remote attacker sends a specially crafted request to the Video Download interface, the system may become unresponsive.

CVE-2025-13794
(4.3 MEDIUM)

EPSS: 0.03%

updated 2025-12-16T14:10:11.300000

1 posts

The Auto Featured Image (Auto Post Thumbnail) plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the bulk_action_generate_handler function in all versions up to, and including, 4.2.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete or generate featured images on posts they do not own.

CVE-2025-59385
(0 None)

EPSS: 0.27%

updated 2025-12-16T14:10:11.300000

1 posts

An authentication bypass by spoofing vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to access resources which are not otherwise accessible without proper authentication. We have already fixed the vulnerability in the following versions: QTS 5.2.7.3297 build 20251024 and later QuTS hero h5.2.7.3297 build 202

CVE-2025-67744
(9.6 CRITICAL)

EPSS: 0.15%

updated 2025-12-16T14:10:11.300000

1 posts

DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. Prior to version 0.5.3, a security vulnerability exists in the Mermaid diagram rendering component that allows arbitrary JavaScript execution. Due to the exposure of the Electron IPC renderer to the DOM, this Cross-Site Scripting (XSS) flaw escalates to full Remote Code Execution (RCE), allowi

CVE-2025-68115
(0 None)

EPSS: 0.04%

updated 2025-12-16T14:10:11.300000

1 posts

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. In versions prior to 8.6.1 and 9.1.0-alpha.3, a Reflected Cross-Site Scripting (XSS) vulnerability exists in Parse Server's password reset and email verification HTML pages. The patch, available in versions 8.6.1 and 9.1.0-alpha.3, escapes user controlled values that are inserted into the HTML p

CVE-2025-67748
(0 None)

EPSS: 0.02%

updated 2025-12-16T14:10:11.300000

1 posts

Fickling is a Python pickling decompiler and static analyzer. Versions prior to 0.1.6 had a bypass caused by `pty` missing from the block list of unsafe module imports. This led to unsafe pickles based on `pty.spawn()` being incorrectly flagged as `LIKELY_SAFE`, and was fixed in version 0.1.6. This impacted any user or system that used Fickling to vet pickle files for security issues.

CVE-2023-53889
(0 None)

EPSS: 0.34%

updated 2025-12-16T14:10:11.300000

1 posts

Perch CMS 3.2 contains a remote code execution vulnerability that allows authenticated administrators to upload arbitrary PHP files through the assets management interface. Attackers can upload a malicious .phar file with embedded system command execution capabilities to execute arbitrary commands on the server.

CVE-2023-53892
(0 None)

EPSS: 0.27%

updated 2025-12-16T14:10:11.300000

1 posts

Blackcat CMS 1.4 contains a remote code execution vulnerability that allows authenticated administrators to upload malicious PHP files through the jquery plugin manager. Attackers can upload a zip file with a PHP shell script and execute arbitrary system commands by accessing the uploaded plugin's PHP file with a 'code' parameter.

CVE-2025-14722
(2.4 LOW)

EPSS: 0.03%

updated 2025-12-16T14:10:11.300000

1 posts

A vulnerability was determined in vion707 DMadmin up to 3403cafdb42537a648c30bf8cbc8148ec60437d1. This impacts the function Add of the file Admin/Controller/AddonsController.class.php of the component Backend. Executing manipulation can lead to cross site scripting. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized. This product implements a rolling r

CVE-2025-14002
(8.1 HIGH)

EPSS: 0.10%

updated 2025-12-16T12:30:37

1 posts

The WPCOM Member plugin for WordPress is vulnerable to authentication bypass via brute force in all versions up to, and including, 1.7.16. This is due to weak OTP (One-Time Password) generation using only 6 numeric digits combined with a 10-minute validity window and no rate limiting on verification attempts. This makes it possible for unauthenticated attackers to brute-force the verification code

CVE-2025-11393
(8.7 HIGH)

EPSS: 0.01%

updated 2025-12-16T10:15:42.090000

1 posts

A flaw was found in runtimes-inventory-rhel8-operator. An internal proxy component is incorrectly configured. Because of this flaw, the proxy attaches the cluster's main administrative credentials to any command it receives, instead of only the specific reports it is supposed to handle. This allows a standard user within the cluster to send unauthorized commands to the management platform, effect

CVE-2025-13439
(5.9 MEDIUM)

EPSS: 0.03%

updated 2025-12-16T09:31:16

1 posts

The Fancy Product Designer plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 6.4.8. This is due to insufficient validation of user-supplied input in the 'url' parameter of the fpd_custom_uplod_file AJAX action, which flows directly into the getimagesize() function without sanitization. While direct exploitation via PHP filter chains is blocked on PH

CVE-2025-11991
(5.3 MEDIUM)

EPSS: 0.05%

updated 2025-12-16T09:31:16

1 posts

The JetFormBuilder — Dynamic Blocks Form Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the run_callback function in all versions up to, and including, 3.5.3. This makes it possible for unauthenticated attackers to generate forms using AI, consuming site's AI usage limits.

CVE-2025-66635
(7.2 HIGH)

EPSS: 0.08%

updated 2025-12-16T09:31:16

1 posts

Stack-based buffer overflow vulnerability exists in SEIKO EPSON Web Config. Specially crafted data input by a logged-in user may execute arbitrary code. As for the details of the affected products and versions, see the information provided by the vendor under [References].

CVE-2025-14252
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T06:30:30

2 posts

An Improper Access Control vulnerability in Advantech SUSI driver (susi.sys) allows attackers to read/write arbitrary memory, I/O ports, and MSRs, resulting in privilege escalation, arbitrary code execution, and information disclosure. This issue affects Advantech SUSI: 5.0.24335 and prior.

CVE-2025-12809
(5.3 MEDIUM)

EPSS: 0.05%

updated 2025-12-16T06:30:20

1 posts

The Dokan Pro plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the `/dokan/v1/wholesale/register` REST API endpoint in all versions up to, and including, 4.1.3. This makes it possible for unauthenticated attackers to enumerate users and retrieve their email addresses via the REST API by providing a user ID, along with other information such as

CVE-2025-66357
(5.3 MEDIUM)

EPSS: 0.04%

updated 2025-12-16T06:30:20

1 posts

CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or exceptional conditions. When the Video Download feature is in a specific communication state, the product's resources may be consumed abnormally.

CVE-2025-62848(CVSS UNKNOWN)

EPSS: 0.15%

updated 2025-12-16T03:31:22

1 posts

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following versions: QTS 5.2.7.3297 build 20251024 and later QuTS hero h5.2.7.3297 build 20251024 and later QuTS hero h5.3.1.3292 build 20251024

CVE-2025-14674
(6.3 MEDIUM)

EPSS: 0.05%

updated 2025-12-16T00:45:19

1 posts

A vulnerability was found in aizuda snail-job up to 1.6.0. Affected by this vulnerability is the function QLExpressEngine.doEval of the file snail-job-common/snail-job-common-core/src/main/java/com/aizuda/snailjob/common/core/expression/strategy/QLExpressEngine.java. The manipulation results in injection. The attack can be launched remotely. Upgrading to version 1.7.0-beta1 addresses this issue. T

CVE-2025-68113
(6.5 MEDIUM)

EPSS: 0.04%

updated 2025-12-16T00:43:54

1 posts

### Impact A cryptographic semantic binding flaw in ALTCHA libraries allows challenge payload splicing, which may enable replay attacks. The HMAC signature does not unambiguously bind challenge parameters to the nonce, allowing an attacker to reinterpret a valid proof-of-work submission with a modified expiration value. This may allow previously solved challenges to be reused beyond their intende

CVE-2025-9452
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:37

1 posts

A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-9454
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-14731
(6.3 MEDIUM)

EPSS: 0.05%

updated 2025-12-16T00:30:36

1 posts

A weakness has been identified in CTCMS Content Management System up to 2.1.2. This affects an unknown function in the library /ctcms/apps/libraries/CT_Parser.php of the component Frontend/Template Management Module. This manipulation causes improper neutralization of special elements used in a template engine. The attack is possible to be carried out remotely. The exploit has been made available

CVE-2025-14593
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-9457
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-9459
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-9456
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-10888
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-10887
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-10884
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

AA maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-10898
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-10899
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-10889
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-16T00:30:36

1 posts

A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-9121
(8.8 HIGH)

EPSS: 0.05%

updated 2025-12-16T00:30:30

1 posts

Pentaho Data Integration and Analytics Community Dashboard Editor plugin versions before 10.2.0.4, including 9.3.0.x and 8.3.x, deserialize untrusted JSON data without constraining the parser to approved classes and methods.

CVE-2025-67735
(6.5 MEDIUM)

EPSS: 0.04%

updated 2025-12-15T23:28:50

1 posts

### Summary The `io.netty.handler.codec.http.HttpRequestEncoder` CRLF injection with the request uri when constructing a request. This leads to request smuggling when `HttpRequestEncoder` is used without proper sanitization of the uri. ### Details The `HttpRequestEncoder` simply UTF8 encodes the `uri` without sanitization (`buf.writeByte(SP).writeCharSequence(uriCharSequence, CharsetUtil.UTF_8)

CVE-2025-67899
(2.9 LOW)

EPSS: 0.01%

updated 2025-12-15T23:15:57.293000

1 posts

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

CVE-2023-53888(CVSS UNKNOWN)

EPSS: 0.30%

updated 2025-12-15T21:30:45

1 posts

Zomplog 3.9 contains a remote code execution vulnerability that allows authenticated attackers to inject and execute arbitrary PHP code through file manipulation endpoints. Attackers can upload malicious JavaScript files, rename them to PHP, and execute system commands by exploiting the saveE and rename actions in the application.

CVE-2023-53885(CVSS UNKNOWN)

EPSS: 0.30%

updated 2025-12-15T21:30:44

1 posts

Webutler v3.2 contains a remote code execution vulnerability that allows authenticated administrators to upload PHP files with system command execution. Attackers can upload a PHAR file with embedded system commands to the media browser and execute arbitrary commands by accessing the uploaded file.

CVE-2023-53881(CVSS UNKNOWN)

EPSS: 0.03%

updated 2025-12-15T21:30:44

1 posts

ReyeeOS 1.204.1614 contains an unencrypted CWMP communication vulnerability that allows attackers to intercept and manipulate device communication through a man-in-the-middle attack. Attackers can create a fake CWMP server to inject and execute arbitrary commands on Ruijie Reyee Cloud devices by exploiting the unprotected HTTP polling requests.

CVE-2023-53877(CVSS UNKNOWN)

EPSS: 0.03%

updated 2025-12-15T21:30:44

1 posts

Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickup_id parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database.

CVE-2023-53893(CVSS UNKNOWN)

EPSS: 0.04%

updated 2025-12-15T21:30:44

1 posts

Ateme TITAN File 3.9.12.4 contains an authenticated server-side request forgery vulnerability in the job callback URL parameter that allows attackers to bypass network restrictions. Attackers can exploit the unvalidated parameter to initiate file, service, and network enumeration by forcing the application to make HTTP, DNS, or file requests to arbitrary destinations.

CVE-2025-67809
(4.7 MEDIUM)

EPSS: 0.03%

updated 2025-12-15T21:30:39

1 posts

An issue was discovered in Zimbra Collaboration (ZCS) 10.0 and 10.1. A hardcoded Flickr API key and secret are present in the publicly accessible Flickr Zimlet used by Zimbra Collaboration. Because these credentials are embedded directly in the Zimlet, any unauthorized party could retrieve them and misuse the Flickr integration. An attacker with access to the exposed credentials could impersonate

CVE-2025-14023
(3.1 LOW)

EPSS: 0.03%

updated 2025-12-15T19:16:02.593000

1 posts

LINE client for iOS prior to 15.19 allows UI spoofing due to inconsistencies between the navigation state and the in-app browser's user interface, which could create confusion about the trust context of displayed pages or interactive elements under specific conditions.

CVE-2025-60786
(8.8 HIGH)

EPSS: 0.07%

updated 2025-12-15T18:30:45

1 posts

A Zip Slip vulnerability in the import a Project component of iceScrum v7.54 Pro On-prem allows attackers to execute arbitrary code via uploading a crafted Zip file.

CVE-2024-44599
(8.3 HIGH)

EPSS: 0.04%

updated 2025-12-15T18:30:45

1 posts

FNT Command 13.4.0 is vulnerable to Directory Traversal.

CVE-2025-13824
(0 None)

EPSS: 0.04%

updated 2025-12-15T18:22:13.783000

1 posts

A security issue exists due to improper handling of malformed CIP packets during fuzzing. The controller enters a hard fault with solid red Fault LED and becomes unresponsive. Upon power cycle, the controller will enter recoverable fault where the MS LED and Fault LED become flashing red and reports fault code 0xF019. To recover, clear the fault.

CVE-2025-65782
(0 None)

EPSS: 0.02%

updated 2025-12-15T18:22:13.783000

1 posts

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Authorization flaw in card update handling allows board members (and potentially other authenticated users) to add/remove arbitrary user IDs in vote.positive / vote.negative arrays, enabling vote forgery and unauthorized voting.

CVE-2025-65780
(0 None)

EPSS: 0.02%

updated 2025-12-15T18:22:13.783000

1 posts

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Authenticated users can update their entire user document (beyond profile fields), including orgs/teams and loginDisabled, due to missing server-side authorization checks; this enables privilege escalation and unauthorized access to other teams/orgs.

CVE-2025-37732
(5.4 MEDIUM)

EPSS: 0.03%

updated 2025-12-15T18:22:13.783000

1 posts

Improper neutralization of input during web page generation ('Cross-site Scripting') (CWE-79) allows an authenticated user to render HTML tags within a user’s browser via the integration package upload functionality. This issue is related to ESA-2025-17 (CVE-2025-25018) bypassing that fix to achieve HTML injection.

CVE-2025-14708
(9.8 CRITICAL)

EPSS: 0.04%

updated 2025-12-15T18:22:13.783000

1 posts

A weakness has been identified in Shiguangwu sgwbox N3 2.0.25. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/http_eshell_server of the component WIREDCFGGET Interface. Executing manipulation of the argument params can lead to buffer overflow. The attack may be launched remotely. The exploit has been made available to the public and could be exploited. The vendor

CVE-2025-14695
(6.3 MEDIUM)

EPSS: 0.04%

updated 2025-12-15T18:22:13.783000

1 posts

A vulnerability was determined in SamuNatsu HaloBot up to 026b01d4a896d93eaaf9d5163a287dc9f267515b. Affected is the function html_renderer of the file plugins/html_renderer/index.js of the component Inter-plugin API. Executing manipulation of the argument action can lead to dynamically-managed code resources. The attack can be launched remotely. The exploit has been publicly disclosed and may be u

CVE-2025-14692
(4.3 MEDIUM)

EPSS: 0.10%

updated 2025-12-15T18:22:13.783000

1 posts

A flaw has been found in Mayan EDMS up to 4.10.1. The impacted element is an unknown function of the file /authentication/. This manipulation causes open redirect. It is possible to initiate the attack remotely. The exploit has been published and may be used. Upgrading to version 4.10.2 is sufficient to resolve this issue. The affected component should be upgraded. The vendor confirms that this is

CVE-2025-14672
(7.3 HIGH)

EPSS: 0.04%

updated 2025-12-15T18:22:13.783000

1 posts

A flaw has been found in gmg137 snap7-rs up to 1.142.1. This impacts the function TSnap7MicroClient::opWriteArea of the file s7_micro_client.cpp. Executing manipulation can lead to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit has been published and may be used.

CVE-2025-14668
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-15T18:22:13.783000

1 posts

A vulnerability was detected in campcodes Advanced Online Examination System 1.0. This affects an unknown function of the file /query/loginExe.php. Performing manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.

CVE-2025-14656
(8.8 HIGH)

EPSS: 0.05%

updated 2025-12-15T18:22:13.783000

2 posts

A weakness has been identified in Tenda AC20 16.03.08.12. This affects the function httpd of the file /goform/openSchedWifi. Executing manipulation of the argument schedStartTime/schedEndTime can lead to buffer overflow. The attack may be performed from remote. The exploit has been made available to the public and could be exploited.

CVE-2025-14659
(8.8 HIGH)

EPSS: 0.18%

updated 2025-12-15T18:22:13.783000

1 posts

A vulnerability was detected in D-Link DIR-860LB1 and DIR-868LB1 203b01/203b03. Affected is an unknown function of the component DHCP Daemon. The manipulation of the argument Hostname results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used.

CVE-2025-14648
(4.7 MEDIUM)

EPSS: 0.23%

updated 2025-12-15T18:22:13.783000

1 posts

A security vulnerability has been detected in DedeBIZ up to 6.5.9. Affected by this vulnerability is an unknown functionality of the file /src/admin/catalog_add.php. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.

CVE-2025-14647
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-15T18:22:13.783000

1 posts

A weakness has been identified in code-projects Computer Book Store 1.0. Affected is an unknown function of the file /admin_delete.php. This manipulation of the argument bookisbn causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited.

CVE-2025-14644
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-15T18:22:13.783000

1 posts

A vulnerability was determined in itsourcecode Student Management System 1.0. The impacted element is an unknown function of the file /update_subject.php. Executing manipulation of the argument ID can lead to sql injection. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized.

CVE-2025-14643
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-15T18:22:13.783000

1 posts

A vulnerability was found in code-projects Simple Attendance Record System 2.0. The affected element is an unknown function of the file /check.php. Performing manipulation of the argument student results in sql injection. Remote exploitation of the attack is possible. The exploit has been made public and could be used.

CVE-2025-14636
(3.7 LOW)

EPSS: 0.02%

updated 2025-12-15T18:22:13.783000

1 posts

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.

CVE-2025-14606
(5.0 MEDIUM)

EPSS: 0.04%

updated 2025-12-15T18:22:13.783000

1 posts

A security vulnerability has been detected in tiny-rdm Tiny RDM up to 1.2.5. Affected by this vulnerability is the function pickle.loads of the file pickle_convert.go of the component Pickle Decoding. The manipulation leads to deserialization. The attack can be initiated remotely. A high degree of complexity is needed for the attack. The exploitation appears to be difficult. The exploit has been d

CVE-2025-14607
(6.3 MEDIUM)

EPSS: 0.05%

updated 2025-12-15T18:22:13.783000

1 posts

A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by this issue is the function DcmByteString::makeDicomByteString of the file dcmdata/libsrc/dcbytstr.cc of the component dcmdata. The manipulation results in memory corruption. The attack can be launched remotely. Upgrading to version 3.7.0 can resolve this issue. The patch is identified as 4c0e5c10079392c594d6a7abd95dd78ac0aa556a.

CVE-2025-8780
(6.4 MEDIUM)

EPSS: 0.03%

updated 2025-12-15T18:22:13.783000

1 posts

The Livemesh SiteOrigin Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Hero Header and Pricing Table widgets in all versions up to, and including, 3.9.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary we

CVE-2025-36751
(0 None)

EPSS: 0.01%

updated 2025-12-15T18:22:13.783000

1 posts

Encryption is missing on the configuration interface for Growatt ShineLan-X and MIC 3300TL-X. This allows an attacker with access to the network to intercept and potentially manipulate communication requests between the inverter and its cloud endpoint.

CVE-2025-7058
(6.4 MEDIUM)

EPSS: 0.03%

updated 2025-12-15T18:22:13.783000

1 posts

The Kingcabs theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘progressbarLayout’ parameter in all versions up to, and including, 1.1.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an

CVE-2025-65779(CVSS UNKNOWN)

EPSS: 0.02%

updated 2025-12-15T15:30:32

1 posts

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Unauthenticated attackers can update a board's "sort" value (Boards.allow returns true without verifying userId), allowing arbitrary reordering of boards.

CVE-2018-4063
(8.8 HIGH)

EPSS: 1.71%

updated 2025-12-15T15:18:49.987000

2 posts

An exploitable remote code execution vulnerability exists in the upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can upload a file, resulting in executable code being uploaded, and routable, to the webserver. An attacker can make an authenticated HTTP request to trigger this vulnerability.

CVE-2025-14174
(8.8 HIGH)

EPSS: 1.08%

updated 2025-12-15T15:16:08.650000

6 posts

Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

CVE-2025-14714(CVSS UNKNOWN)

EPSS: 0.01%

updated 2025-12-15T12:30:32

1 posts

An Authentication Bypass vulnerability existed where the application bundled an interpreter (Python) that inherits the Transparency, Consent, and Control (TCC) permissions granted by the user to the main application bundle By executing the bundled interpreter directly the attacker's scripts run with the application's TCC privileges In fixed versions parent-constraints are used to allow onl

CVE-2025-11670
(6.4 MEDIUM)

EPSS: 0.03%

updated 2025-12-15T12:30:32

1 posts

Zohocorp ManageEngine ADManager Plus versions before 8025 are vulnerable to NTLM Hash Exposure.  This vulnerability is exploitable only by technicians who have the “Impersonate as Admin” option enabled.

CVE-2025-14710
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-15T09:31:35

1 posts

A vulnerability was detected in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This affects an unknown part of the file /controller/api/OrderList.php. The manipulation of the argument telephone results in sql injection. The attack can be executed remotely. The exploit is now public and may be used. This product implements a rolling release for ongoing delivery, which me

CVE-2025-14709
(9.8 CRITICAL)

EPSS: 0.04%

updated 2025-12-15T09:31:35

1 posts

A security vulnerability has been detected in Shiguangwu sgwbox N3 2.0.25. Affected by this issue is some unknown functionality of the file /usr/sbin/http_eshell_server of the component WIRELESSCFGGET Interface. The manipulation of the argument params leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used. The vendor was con

CVE-2025-14711
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-15T09:31:34

1 posts

A flaw has been found in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This vulnerability affects unknown code of the file /controller/api/hotelList.php. This manipulation of the argument pickedHotelName/type causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used. This product adopts a rolling release str

CVE-2025-14705
(9.8 CRITICAL)

EPSS: 0.15%

updated 2025-12-15T06:31:25

1 posts

A vulnerability was determined in Shiguangwu sgwbox N3 2.0.25. This affects an unknown function of the component SHARESERVER Feature. This manipulation of the argument params causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-14712
(7.5 HIGH)

EPSS: 0.03%

updated 2025-12-15T06:31:16

1 posts

Student Learning Assessment and Support System developed by JHENG GAO has a Exposure of Sensitive Information vulnerability, allowing unauthenticated remote attackers to view a specific page and obtain test accounts and password.

CVE-2025-14696
(5.3 MEDIUM)

EPSS: 0.03%

updated 2025-12-15T03:30:22

1 posts

A vulnerability was identified in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 4.10.24.3. Affected by this vulnerability is an unknown functionality of the file /api/GylOperator/UpdatePasswordBatch. The manipulation leads to weak password recovery. The attack may be initiated remotely. The exploit is publicly available and might be used. The vendor was contacted early ab

1 repos

https://github.com/b1gchoi/CVE-2025-14696

CVE-2025-67900
(8.2 HIGH)

EPSS: 0.01%

updated 2025-12-15T00:30:31

2 posts

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

CVE-2025-67901
(5.3 MEDIUM)

EPSS: 0.06%

updated 2025-12-15T00:30:31

1 posts

openrsync through 0.5.0, as used in OpenBSD through 7.8 and on other platforms, allows a client to cause a server SIGSEGV by specifying a length of zero for block data, because the relationship between p->rem and p->len is not checked.

CVE-2025-14667
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-14T18:31:34

1 posts

A security vulnerability has been detected in itsourcecode COVID Tracking System 1.0. The impacted element is an unknown function of the file /admin/?page=system_info. Such manipulation of the argument meta_value leads to sql injection. The attack may be performed from remote. The exploit has been disclosed publicly and may be used.

CVE-2025-14673
(7.3 HIGH)

EPSS: 0.04%

updated 2025-12-14T18:31:30

1 posts

A vulnerability has been found in gmg137 snap7-rs up to 1.142.1. Affected is the function snap7_rs::client::S7Client::as_ct_write of the file /tests/snap7-rs/src/client.rs. The manipulation leads to heap-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-14665
(9.8 CRITICAL)

EPSS: 0.09%

updated 2025-12-14T15:30:24

1 posts

A security flaw has been discovered in Tenda WH450 1.0.0.18. Impacted is an unknown function of the file /goform/DhcpListClient of the component HTTP Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

CVE-2025-14655
(8.8 HIGH)

EPSS: 0.05%

updated 2025-12-14T12:32:35

2 posts

A security flaw has been discovered in Tenda AC20 16.03.08.12. The impacted element is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg of the component httpd. Performing manipulation of the argument rebootTime results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been released to the public and may be exploited.

CVE-2025-14654
(8.8 HIGH)

EPSS: 0.05%

updated 2025-12-14T12:32:35

2 posts

A vulnerability was identified in Tenda AC20 16.03.08.12. The affected element is the function formSetPPTPUserList of the file /goform/setPptpUserList of the component httpd. Such manipulation of the argument list leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.

CVE-2025-13832(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-14T00:30:28

1 posts

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

CVE-2025-14637
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-13T21:30:24

1 posts

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

CVE-2025-14622
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-13T18:30:31

1 posts

A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

CVE-2025-14621
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-13T18:30:31

1 posts

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

CVE-2025-67870(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-13T18:30:30

1 posts

Rejected reason: Not used

CVE-2025-14588
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-13T18:30:30

1 posts

A security flaw has been discovered in itsourcecode Student Management System 1.0. This vulnerability affects unknown code of the file /update_program.php. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has been released to the public and may be exploited.

CVE-2025-8687
(6.4 MEDIUM)

EPSS: 0.03%

updated 2025-12-13T18:30:30

1 posts

The Enter Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown and Image Comparison widgets in all versions up to, and including, 2.2.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in p

CVE-2025-36747(CVSS UNKNOWN)

EPSS: 0.02%

updated 2025-12-13T18:30:29

1 posts

ShineLan-X contains a set of credentials for an FTP server was found within the firmware, allowing testers to establish an insecure FTP connection with the server. This may allow an attacker to replace legitimate files being deployed to devices with their own malicious versions, since the firmware signature verification is not enforced.

CVE-2025-12077
(6.1 MEDIUM)

EPSS: 0.08%

updated 2025-12-13T18:30:29

1 posts

The WP to LinkedIn Auto Publish plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PostMessage in all versions up to, and including, 1.9.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as

CVE-2025-10738
(9.8 CRITICAL)

EPSS: 0.05%

updated 2025-12-13T18:30:22

1 posts

The URL Shortener Plugin For WordPress plugin for WordPress is vulnerable to SQL Injection via the ‘analytic_id’ parameter in all versions up to, and including, 3.0.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing qu

CVE-2025-67871
(0 None)

EPSS: 0.00%

updated 2025-12-13T16:16:55.233000

1 posts

Rejected reason: Not used

CVE-2025-66430
(9.1 CRITICAL)

EPSS: 0.03%

updated 2025-12-12T21:32:45

1 posts

Plesk 18.0 has Incorrect Access Control.

CVE-2025-13780
(9.1 CRITICAL)

EPSS: 0.09%

updated 2025-12-12T16:42:56

1 posts

The PLAIN restore meta-command filter introduced in pgAdmin as part of the fix for CVE-2025-12762 does not detect meta-commands when a SQL file begins with a UTF-8 Byte Order Mark (EF BB BF) or other special byte sequences. The implemented filter uses the function `has_meta_commands()`, which scans raw bytes using a regular expression. The regex does not treat the bytes as ignorable, so meta-comma

4 repos

https://github.com/meenakshisl/PoC-CVE-2025-13780

https://github.com/ThemeHackers/CVE-2025-13780

https://github.com/Ashwesker/Blackash-CVE-2025-13780

https://github.com/zeropwn/pgadmin4-9.10-CVE-2025-13780

CVE-2025-66004
(5.7 MEDIUM)

EPSS: 0.02%

updated 2025-12-12T15:18:42.140000

1 posts

A Path Traversal vulnerability in usbmuxd allows local users to escalate to the service user.This issue affects usbmuxd: before 3ded00c9985a5108cfc7591a309f9a23d57a8cba.

CVE-2025-12105
(7.5 HIGH)

EPSS: 0.05%

updated 2025-12-12T00:30:20

1 posts

A flaw was found in the asynchronous message queue handling of the libsoup library, widely used by GNOME and WebKit-based applications to manage HTTP/2 communications. When network operations are aborted at specific timing intervals, an internal message queue item may be freed twice due to missing state synchronization. This leads to a use-after-free memory access, potentially crashing the affecte

CVE-2025-58360
(8.2 HIGH)

EPSS: 71.92%

updated 2025-12-11T21:55:34

1 posts

## Description An XML External Entity (XXE) vulnerability was identified. The application accepts XML input through a specific endpoint ``/geoserver/wms`` operation ``GetMap``. However, this input is not sufficiently sanitized or restricted, allowing an attacker to define external entities within the XML request. An XML External Entity attack is a type of attack that occurs when XML input contai

Nuclei template

4 repos

https://github.com/Joker-Wiggin/CVE-2025-58360-GeoServer-XXE

https://github.com/Ashwesker/Blackash-CVE-2025-58360

https://github.com/quyenheu/CVE-2025-58360

https://github.com/rxerium/CVE-2025-58360

CVE-2025-64669
(7.8 HIGH)

EPSS: 0.06%

updated 2025-12-11T18:30:54

1 posts

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges locally.

CVE-2025-14321
(9.8 CRITICAL)

EPSS: 0.06%

updated 2025-12-11T18:30:41

1 posts

Use-after-free in the WebRTC: Signaling component. This vulnerability affects Firefox < 146 and Firefox ESR < 140.6.

CVE-2025-55182
(10.0 CRITICAL)

EPSS: 76.01%

updated 2025-12-10T02:00:02.557000

25 posts

A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.

Nuclei template

100 repos

https://github.com/Dh4v4l8/CVE-2025-55182-poc-tool

https://github.com/CirqueiraDev/MassExploit-CVE-2025-55182

https://github.com/zack0x01/CVE-2025-55182-advanced-scanner-

https://github.com/onlylovetx/CVE-2025-55182-CVE-2025-66478-Exploit-GUI

https://github.com/AdityaBhatt3010/React2Shell-CVE-2025-55182-The-Deserialization-Bug-That-Broke-the-Web

https://github.com/songsanggggg/CVE-2025-55182

https://github.com/heiheishushu/rsc_detect_CVE-2025-55182

https://github.com/yanoshercohen/React2Shell_CVE-2025-55182

https://github.com/sho-luv/React2Shell

https://github.com/Cr4at0r/Next.js-RCE-Scanner-BurpSuite-Extension-

https://github.com/pax-k/react2shell-CVE-2025-55182-full-rce-script

https://github.com/Pizz33/CVE-2025-55182-burpscanner

https://github.com/VeilVulp/RscScan-cve-2025-55182

https://github.com/ayoub-intigriti/react2shell-cve

https://github.com/theori-io/reactguard

https://github.com/emredavut/CVE-2025-55182

https://github.com/7amzahard/React2shell

https://github.com/pyroxenites/Nextjs_RCE_Exploit_Tool

https://github.com/BankkRoll/Quickcheck-CVE-2025-55182-React-and-CVE-2025-66478-Next.js

https://github.com/Saturate/CVE-2025-55182-Scanner

https://github.com/LemonTeatw1/CVE-2025-55182-exploit

https://github.com/shamo0/react2shell-PoC

https://github.com/CymulateResearch/React2Shell-Scanner

https://github.com/GelukCrab/React-Server-Components-RCE

https://github.com/hackersatyamrastogi/react2shell-ultimate

https://github.com/keklick1337/CVE-2025-55182-golang-PoC

https://github.com/subhdotsol/CVE-2025-55182

https://github.com/xcanwin/CVE-2025-55182-React-RCE

https://github.com/Chocapikk/CVE-2025-55182

https://github.com/AggressiveUser/React2Hell

https://github.com/AliHzSec/CVE-2025-55182

https://github.com/xiaopeng-ye/react2shell-detector

https://github.com/acheong08/CVE-2025-55182-poc

https://github.com/santihabib/CVE-2025-55182-analysis

https://github.com/tobiasGuta/Next.js-RSC-RCE-Scanner-Burp-Suite-Extension

https://github.com/ZihxS/check-react-rce-cve-2025-55182

https://github.com/xalgord/React2Shell

https://github.com/gensecaihq/react2shell-scanner

https://github.com/im-ezboy/CVE-2025-55182-zoomeye

https://github.com/EynaExp/CVE-2025-55182-POC

https://github.com/raivenLockdown/RCE_React2Shell_ButCooler-SomeUselessUsefulThingsLMAO-

https://github.com/andrei2308/react2shell

https://github.com/hoosin/CVE-2025-55182

https://github.com/zack0x01/vuln-app-CVE-2025-55182

https://github.com/msanft/CVE-2025-55182

https://github.com/c0rydoras/CVE-2025-55182

https://github.com/fatguru/CVE-2025-55182-scanner

https://github.com/Security-Phoenix-demo/react2shell-scanner-rce-react-next-CVE-2025-55182-CVE-2025-66478

https://github.com/nehkark/CVE-2025-55182

https://github.com/logesh-GIT001/CVE-2025-55182

https://github.com/Syrins/CVE-2025-55182-React2Shell-RCE

https://github.com/cybertechajju/R2C-CVE-2025-55182-66478

https://github.com/EQSTLab/CVE-2025-55182

https://github.com/freeqaz/react2shell

https://github.com/whiteov3rflow/CVE-2025-55182-poc

https://github.com/MoLeft/React2Shell-Toolbox

https://github.com/MrR0b0t19/CVE-2025-55182-shellinteractive

https://github.com/dwisiswant0/CVE-2025-55182

https://github.com/Rsatan/Next.js-Exploit-Tool

https://github.com/anuththara2007-W/CVE-2025-55182-Exploit-extension

https://github.com/XiaomingX/CVE-2025-55182-poc

https://github.com/l4rm4nd/CVE-2025-55182

https://github.com/shyambhanushali/React2Shell

https://github.com/kavienanj/CVE-2025-55182

https://github.com/ejpir/CVE-2025-55182-research

https://github.com/C00LN3T/React2Shell

https://github.com/sudo-Yangziran/CVE-2025-55182POC

https://github.com/SainiONHacks/CVE-2025-55182-Scanner

https://github.com/zzhorc/CVE-2025-55182

https://github.com/ThemeHackers/CVE-2025-55182

https://github.com/lachlan2k/React2Shell-CVE-2025-55182-original-poc

https://github.com/BeichenDream/CVE-2025-55182-GodzillaMemoryShell

https://github.com/StealthMoud/CVE-2025-55182-Scanner

https://github.com/alfazhossain/CVE-2025-55182-Exploiter

https://github.com/Spritualkb/CVE-2025-55182-exp

https://github.com/M4xSec/CVE-2025-55182-React2Shell-RCE-Shell

https://github.com/techgaun/cve-2025-55182-scanner

https://github.com/Ashwesker/Blackash-CVE-2025-55182

https://github.com/ejpir/CVE-2025-55182-bypass

https://github.com/aliclub0x00/CVE-2025-55182-POC-NEXTJS

https://github.com/m3m0ryc0rrupt/CVE-2025-55182-PoC

https://github.com/alsaut1/react2shell-lab

https://github.com/xkillbit/cve-2025-55182-scanner

https://github.com/kk12-30/CVE-2025-55182

https://github.com/mrknow001/RSC_Detector

https://github.com/timsonner/React2Shell-CVE-2025-55182

https://github.com/yz9yt/React2Shell-CTF

https://github.com/ynsmroztas/NextRce

https://github.com/f0xyx/CVE-2025-55182-Scanner

https://github.com/kOaDT/poc-cve-2025-55182

https://github.com/SoICT-BKSEC/CVE-2025-55182-docker-lab

https://github.com/hualy13/CVE-2025-55182

https://github.com/RuoJi6/CVE-2025-55182-RCE-shell

https://github.com/sickwell/CVE-2025-55182

https://github.com/jf0x3a/CVE-2025-55182-exploit

https://github.com/sumanrox/rschunter

https://github.com/assetnote/react2shell-scanner

https://github.com/surajhacx/react2shellpoc

https://github.com/zr0n/react2shell

https://github.com/Call123X/-cve-2025-55182

CVE-2025-59719
(9.8 CRITICAL)

EPSS: 0.05%

updated 2025-12-09T19:59:29.507000

4 posts

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.

CVE-2025-40800
(7.4 HIGH)

EPSS: 0.02%

updated 2025-12-09T18:30:43

1 posts

A vulnerability has been identified in COMOS V10.6 (All versions), COMOS V10.6 (All versions), NX V2412 (All versions < V2412.8700), NX V2506 (All versions < V2506.6000), Simcenter 3D (All versions < V2506.6000), Simcenter Femap (All versions < V2506.0002), Solid Edge SE2025 (All versions < V225.0 Update 10), Solid Edge SE2026 (All versions < V226.0 Update 1). The IAM client in affected products i

CVE-2025-2296(CVSS UNKNOWN)

EPSS: 0.16%

updated 2025-12-09T18:30:42

1 posts

EDK2 contains a vulnerability in BIOS where an attacker may cause “ Improper Input Validation” by local access. Successful exploitation of this vulnerability could alter control flow in unexpected ways, potentially allowing arbitrary command execution and impacting Confidentiality, Integrity, and Availability.

4 repos

https://github.com/CRUNZEX/CVE-2025-22968

https://github.com/padayali-JD/CVE-2025-22964

https://github.com/samplev45/CVE-2025-22963

https://github.com/gmh5225/CVE-2025-22963

CVE-2025-66516
(0 None)

EPSS: 0.06%

updated 2025-12-08T18:27:15.857000

2 posts

Critical XXE in Apache Tika tika-core (1.13-3.2.1), tika-pdf-module (2.0.0-3.2.1) and tika-parsers (1.13-1.28.5) modules on all platforms allows an attacker to carry out XML External Entity injection via a crafted XFA file inside of a PDF. This CVE covers the same vulnerability as in CVE-2025-54988. However, this CVE expands the scope of affected packages in two ways. First, while the entrypoi

3 repos

https://github.com/Ashwesker/Blackash-CVE-2025-66516

https://github.com/chasingimpact/CVE-2025-66516-Writeup-POC

https://github.com/sid6224/CVE-2025-66516-POC

CVE-2025-14104
(6.1 MEDIUM)

EPSS: 0.01%

updated 2025-12-05T18:31:18

1 posts

A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte usernames, specifically within the `setpwnam()` function, affecting SUID (Set User ID) login-utils utilities writing to the password database.

CVE-2025-34352
(0 None)

EPSS: 0.02%

updated 2025-12-04T17:15:25.860000

3 posts

JumpCloud Remote Assist for Windows versions prior to 0.317.0 include an uninstaller that is invoked by the JumpCloud Windows Agent as NT AUTHORITY\SYSTEM during agent uninstall or update operations. The Remote Assist uninstaller performs privileged create, write, execute, and delete actions on predictable files inside a user-writable %TEMP% subdirectory without validating that the directory is tr