CVE-2025-13970
(8.0 HIGH)

EPSS: 0.00%

updated 2025-12-13T03:30:14

2 posts

OpenPLC_V3 is vulnerable to a cross-site request forgery (CSRF) attack due to the absence of proper CSRF validation. This issue allows an unauthenticated attacker to trick a logged-in administrator into visiting a maliciously crafted link, potentially enabling unauthorized modification of PLC settings or the upload of malicious programs which could lead to significant disruption or damage to

CVE-2025-14585
(7.3 HIGH)

EPSS: 0.00%

updated 2025-12-13T00:30:32

1 posts

A vulnerability was found in itsourcecode COVID Tracking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/?page=zone. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used.

CVE-2025-14582
(4.7 MEDIUM)

EPSS: 0.00%

updated 2025-12-13T00:30:32

1 posts

A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is now public and may be used.

CVE-2025-67749
(0 None)

EPSS: 0.00%

updated 2025-12-12T23:15:42.223000

1 posts

PCSX2 is a free and open-source PlayStation 2 (PS2) emulator. In versions 2.5.377 and below, an unchecked offset and size used in a memcpy operation inside PCSX2's CDVD SCMD 0x91 and SCMD 0x8F handlers allow a specially crafted disc image or ELF to cause an out-of-bounds read from emulator memory. Because the offset and size is controlled through MG header fields, a specially crafted ELF can read

CVE-2025-14584
(7.3 HIGH)

EPSS: 0.00%

updated 2025-12-12T23:15:37.887000

1 posts

A vulnerability has been found in itsourcecode COVID Tracking System 1.0. Affected is an unknown function of the file /admin/login.php of the component Admin Login. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-14583
(7.3 HIGH)

EPSS: 0.00%

updated 2025-12-12T22:15:39.123000

1 posts

A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be used.

CVE-2025-67721(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-12T22:12:24

1 posts

### Summary Incorrect handling of malformed data in Java-based decompressor implementations for Snappy and LZ4 allows remote attackers to read previous buffer contents via crafted compressed input. In applications where the output buffer is reused without being cleared, this may lead to disclosure of sensitive data. ### Details With certain crafted compressed inputs, elements from the output buff

CVE-2025-67750
(8.4 HIGH)

EPSS: 0.00%

updated 2025-12-12T21:37:31

2 posts

### Impact The APIVersion rule uses `new Function()` to evaluate expression strings. A malicious crafted flow metadata file can cause arbitrary JavaScript execution during scanning. An attacker could execute arbitrary JavaScript during a scan by supplying a malicious expression within rule configuration or crafted flow metadata. This could compromise developer machines, CI runners, or editor envir

CVE-2025-64011
(4.3 MEDIUM)

EPSS: 0.00%

updated 2025-12-12T21:32:46

1 posts

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference (IDOR) in the /core/preview endpoint. Any authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter. This allows unauthorized disclosure of sensitive data, such as text files or images, without prior sharing permissions.

CVE-2025-67634
(4.4 MEDIUM)

EPSS: 0.00%

updated 2025-12-12T21:31:51

1 posts

The CISA Software Acquisition Guide Supplier Response Web Tool before 2025-12-11 was vulnerable to cross-site scripting via text fields. If an attacker could convince a user to import a specially-crafted JSON file, the Tool would load JavaScript from the file into the page. The JavaScript would execute in the context of the user's browser when the user submits the page (clicks 'Next').

CVE-2025-14373
(4.3 MEDIUM)

EPSS: 0.00%

updated 2025-12-12T21:31:50

1 posts

Inappropriate implementation in Toolbar in Google Chrome on Android prior to 143.0.7499.110 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Medium)

CVE-2024-58311
(9.8 CRITICAL)

EPSS: 0.00%

updated 2025-12-12T21:31:50

1 posts

Dormakaba Saflok System 6000 contains a predictable key generation algorithm that allows attackers to derive card access keys from a 32-bit unique identifier. Attackers can exploit the deterministic key generation process by calculating valid access keys using a simple mathematical transformation of the card's unique identifier.

CVE-2024-58299
(9.8 CRITICAL)

EPSS: 0.00%

updated 2025-12-12T21:31:50

1 posts

PCMan FTP Server 2.0 contains a buffer overflow vulnerability in the 'pwd' command that allows remote attackers to execute arbitrary code. Attackers can send a specially crafted payload during the FTP login process to overwrite memory and potentially gain system access.

CVE-2025-14572
(8.8 HIGH)

EPSS: 0.00%

updated 2025-12-12T21:31:39

2 posts

A vulnerability was found in UTT 进取 512W up to 1.7.7-171114. This affects an unknown part of the file /goform/formWebAuthGlobalConfig. Performing manipulation of the argument hidcontact results in memory corruption. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-66429
(8.8 HIGH)

EPSS: 0.07%

updated 2025-12-12T21:15:59.187000

1 posts

An issue was discovered in cPanel 110 through 132. A directory traversal vulnerability within the Team Manager API allows for overwrite of an arbitrary file. This can allow for privilege escalation to the root user.

CVE-2025-14611
(0 None)

EPSS: 0.00%

updated 2025-12-12T21:15:53.107000

2 posts

Gladinet CentreStack and Triofox prior to version 16.12.10420.56791 used hardcoded values for their implementation of the AES cryptoscheme. This degrades security for public exposed endpoints that may make use of it and may offer arbitrary local file inclusion when provided a specially crafted request without authentication. This opens the door for future exploitation and can be leveraged with pre

CVE-2025-14174
(8.8 HIGH)

EPSS: 0.00%

updated 2025-12-12T21:15:52.350000

8 posts

Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

CVE-2024-58316
(7.5 HIGH)

EPSS: 0.00%

updated 2025-12-12T21:15:51.430000

1 posts

Online Shopping System Advanced 1.0 contains a SQL injection vulnerability in the payment_success.php script that allows attackers to inject malicious SQL through the unfiltered 'cm' parameter. Attackers can exploit the vulnerability by sending crafted SQL queries to retrieve sensitive database information by manipulating the user ID parameter.

CVE-2025-67819(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-12T20:25:07

1 posts

An issue was discovered in Weaviate OSS before 1.33.4. Due to a lack of validation of the fileName field in the transfer logic, an attacker who can call the GetFile method while a shard is in the "Pause file activity" state and the FileReplicationService is reachable can read arbitrary files accessible to the service process.

CVE-2025-8083
(8.6 HIGH)

EPSS: 0.00%

updated 2025-12-12T20:15:43.250000

1 posts

The Preset configuration https://v2.vuetifyjs.com/en/features/presets  feature of Vuetify is vulnerable to Prototype Pollution https://cheatsheetseries.owasp.org/cheatsheets/Prototype_Pollution_Prevention_Cheat_Sheet.html  due to the internal 'mergeDeep' utility function used to merge options with defaults. Using a specially-crafted, malicious preset can result in polluting all JavaScript object

CVE-2025-67818
(7.2 HIGH)

EPSS: 0.00%

updated 2025-12-12T20:15:42.770000

1 posts

An issue was discovered in Weaviate OSS before 1.33.4. An attacker with access to insert data into the database can craft an entry name with an absolute path (e.g., /etc/...) or use parent directory traversal (../../..) to escape the restore root when a backup is restored, potentially creating or overwriting files in arbitrary locations within the application's privilege scope.

CVE-2025-67342
(4.6 MEDIUM)

EPSS: 0.00%

updated 2025-12-12T20:15:42.327000

1 posts

RuoYi versions 4.8.1 and earlier is affected by a stored XSS vulnerability in the /system/menu/edit endpoint. While the endpoint is protected by an XSS filter, the protection can be bypassed. Additionally, because the menu is shared across all users, any user with menu modification permissions can impact all users by exploiting this stored XSS vulnerability.

CVE-2025-66430
(9.1 CRITICAL)

EPSS: 0.00%

updated 2025-12-12T20:15:41.747000

2 posts

Plesk 18.0 has Incorrect Access Control.

CVE-2024-58314
(8.8 HIGH)

EPSS: 0.00%

updated 2025-12-12T20:15:39.327000

1 posts

Atcom 100M IP Phones firmware version 2.7.x.x contains an authenticated command injection vulnerability in the web configuration CGI script that allows attackers to execute arbitrary system commands. Attackers can inject shell commands through the 'cmd' parameter in web_cgi_main.cgi, enabling remote code execution with administrative credentials.

CVE-2024-58305
(8.8 HIGH)

EPSS: 0.00%

updated 2025-12-12T20:15:39.020000

1 posts

WonderCMS 4.3.2 contains a cross-site scripting vulnerability that allows attackers to inject malicious JavaScript through the module installation endpoint. Attackers can craft a specially designed XSS payload to install a reverse shell module and execute remote commands by tricking an authenticated administrator into accessing a malicious link.

CVE-2024-14010
(9.8 CRITICAL)

EPSS: 0.00%

updated 2025-12-12T20:15:38.520000

1 posts

Typora 1.7.4 contains a command injection vulnerability in the PDF export preferences that allows attackers to execute arbitrary system commands. Attackers can inject malicious commands into the 'run command' input field during PDF export to achieve remote code execution.

CVE-2025-64538
(9.3 CRITICAL)

EPSS: 0.52%

updated 2025-12-12T19:58:16.457000

1 posts

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could lead to arbitrary code execution. An attacker could exploit this vulnerability by injecting malicious scripts into a web page that are executed in the context of the victim's browser. A successful attacker can abuse this to achieve session takeover, increasing the co

CVE-2025-64539
(9.3 CRITICAL)

EPSS: 0.52%

updated 2025-12-12T19:58:13.747000

1 posts

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could lead to arbitrary code execution. An attacker could exploit this vulnerability by injecting malicious scripts into a web page that are executed in the context of the victim's browser. A successful attacker can abuse this to achieve session takeover, increasing the co

CVE-2025-67779
(7.5 HIGH)

EPSS: 0.04%

updated 2025-12-12T19:16:03.773000

3 posts

It was found that the fix addressing CVE-2025-55184 in React Server Components was incomplete and does not prevent a denial of service attack in a specific case. React Server Components versions 19.0.2, 19.1.3 and 19.2.2 are affected, allowing unsafe deserialization of payloads from HTTP requests to Server Function endpoints. This can cause an infinite loop that hangs the server process and may pr

1 repos

https://github.com/williavs/nextjs-security-update

CVE-2018-4063
(8.8 HIGH)

EPSS: 0.18%

updated 2025-12-12T19:15:59.653000

2 posts

An exploitable remote code execution vulnerability exists in the upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can upload a file, resulting in executable code being uploaded, and routable, to the webserver. An attacker can make an authenticated HTTP request to trigger this vulnerability.

CVE-2025-56109
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:38

1 posts

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_wireless in file /usr/lib/lua/luci/control/admin/wireless.lua.

CVE-2025-56106
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:38

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVE-2025-56099
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:37

1 posts

OS Command Injection vulnerability in Ruijie RG-YST AP_3.0(1)B11P280YST250F allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua.

CVE-2025-56108
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:37

1 posts

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua.

CVE-2025-56117
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:37

1 posts

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVE-2025-56089
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:31:37

1 posts

OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVE-2025-56098
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:37

1 posts

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVE-2025-56107
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the submit_wifi in file /usr/lib/lua/luci/controller/admin/common_quick_config.lua.

CVE-2025-56110
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_deal_update in file /usr/lib/lua/luci/controller/api/rcmsAPI.lua.

CVE-2025-56101
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVE-2025-56096
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the restart_modules in file /usr/lib/lua/luci/controller/admin/common.lua.

CVE-2025-56097
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226_EW1800GX-PRO_10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVE-2025-56093
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the setWisp in file /usr/lib/lua/luci/modules/wireless.lua.

CVE-2025-56092
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie X30 PRO V1 X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVE-2025-56088
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_service in file /usr/lib/lua/luci/controller/admin/service.lua.

CVE-2025-56095
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:31:36

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVE-2023-29144
(3.3 LOW)

EPSS: 0.00%

updated 2025-12-12T18:30:41

1 posts

Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows a bypass of detection.

CVE-2025-56086
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:30:34

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1200 EW_3.0(1)B11P227_EW1200_11130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVE-2025-56084
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:30:33

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226_EW1800GX-PRO_10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVE-2025-56085
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:30:33

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1200 EW_3.0(1)B11P227_EW1200_11130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVE-2025-56079
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:30:32

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1300G EW1300G V1.00/V2.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVE-2025-55184
(7.5 HIGH)

EPSS: 0.07%

updated 2025-12-12T18:18:29.827000

6 posts

A pre-authentication denial of service vulnerability exists in React Server Components versions 19.0.0, 19.0.1 19.1.0, 19.1.1, 19.1.2, 19.2.0 and 19.2.1, including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints, which can cause an infinite l

Nuclei template

8 repos

https://github.com/BakhodiribnYashinibnMansur/CVE-2025-55184

https://github.com/bountyyfi/lonkero

https://github.com/ejpir/CVE-2025-55184

https://github.com/williavs/nextjs-security-update

https://github.com/hans362/CVE-2025-55184-poc

https://github.com/abdozkaya/rsc-security-auditor

https://github.com/caohungphu/react2shell

https://github.com/StealthMoud/react-server-cve-lab

CVE-2025-55183
(5.3 MEDIUM)

EPSS: 0.06%

updated 2025-12-12T18:18:19.950000

4 posts

An information leak vulnerability exists in specific configurations of React Server Components versions 19.0.0, 19.0.1 19.1.0, 19.1.1, 19.1.2, 19.2.0 and 19.2.1, including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. A specifically crafted HTTP request sent to a vulnerable Server Function may unsafely return the source code of any Serve

7 repos

https://github.com/bountyyfi/lonkero

https://github.com/williavs/nextjs-security-update

https://github.com/kimtruth/CVE-2025-55183-poc

https://github.com/Saturate/CVE-2025-55183

https://github.com/X-Cotang/CVE-2025-55183_POC

https://github.com/StealthMoud/react-server-cve-lab

https://github.com/omaidnebari/RSC-Scanner-POC

CVE-2025-56120
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:15:44.537000

1 posts

OS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVE-2025-56118
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:15:44.377000

1 posts

OS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVE-2025-56114
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:15:44.047000

1 posts

OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVE-2025-56113
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:15:43.890000

1 posts

OS Command Injection vulnerability in Ruijie RG-YST EST, YSTAP_3.0(1)B11P280YST250F V1.xxV2.xx allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua.

CVE-2025-56111
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:15:43.730000

1 posts

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the network_set_wan_conf in file /usr/lib/lua/luci/controller/admin/netport.lua.

CVE-2025-56102
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:15:42.737000

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVE-2025-56094
(8.8 HIGH)

EPSS: 0.11%

updated 2025-12-12T18:15:41.603000

1 posts

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/host_access_delay.lua.

CVE-2025-56091
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:15:41.120000

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVE-2025-56090
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:15:40.960000

1 posts

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVE-2025-56087
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:15:40.483000

1 posts

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the run_tcpdump in file /usr/lib/lua/luci/controller/admin/common_tcpdump.lua.

CVE-2025-56083
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:15:39.843000

1 posts

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_networkId_merge.lua.

CVE-2025-56082
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:15:39.687000

1 posts

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the check_changes in file /usr/lib/lua/luci/controller/admin/common.lua.

CVE-2025-56077
(8.8 HIGH)

EPSS: 0.14%

updated 2025-12-12T18:15:39.370000

1 posts

OS Command Injection vulnerability in Ruijie RG-RAP2200(E) 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVE-2025-64863
(5.4 MEDIUM)

EPSS: 0.03%

updated 2025-12-12T17:33:20.543000

1 posts

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.

CVE-2025-64869
(5.4 MEDIUM)

EPSS: 0.03%

updated 2025-12-12T17:32:54.870000

1 posts

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.

CVE-2025-64872
(4.8 MEDIUM)

EPSS: 0.06%

updated 2025-12-12T17:32:25.967000

1 posts

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.

CVE-2025-64887
(5.4 MEDIUM)

EPSS: 0.03%

updated 2025-12-12T17:31:58.540000

1 posts

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitation of this issue requires user interaction, such as visiting a crafted URL or interacting with a manipulated web page.

CVE-2025-65530
(8.8 HIGH)

EPSS: 0.00%

updated 2025-12-12T17:15:45.320000

1 posts

An eval injection in the malware de-obfuscation routines of CloudLinux ai-bolit before v32.7.4 allows attackers to overwrite arbitrary files as root via scanning a crafted file.

CVE-2025-26866(CVSS UNKNOWN)

EPSS: 0.73%

updated 2025-12-12T16:46:06

1 posts

A remote code execution vulnerability exists where a malicious Raft node can exploit insecure Hessian deserialization within the PD store. The fix enforces IP-based authentication to restrict cluster membership and implements a strict class whitelist to harden the Hessian serialization process against object injection attacks. Users are recommended to upgrade to version 1.7.0, which fixes the iss

CVE-2025-13780
(9.1 CRITICAL)

EPSS: 0.09%

updated 2025-12-12T16:42:56

1 posts

The PLAIN restore meta-command filter introduced in pgAdmin as part of the fix for CVE-2025-12762 does not detect meta-commands when a SQL file begins with a UTF-8 Byte Order Mark (EF BB BF) or other special byte sequences. The implemented filter uses the function `has_meta_commands()`, which scans raw bytes using a regular expression. The regex does not treat the bytes as ignorable, so meta-comma

2 repos

https://github.com/zeropwn/pgadmin4-9.10-CVE-2025-13780

https://github.com/meenakshisl/PoC-CVE-2025-13780

CVE-2025-36743(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-12T15:30:51

1 posts

SolarEdge SE3680H has an exposed debug/test interface accessible to unauthenticated actors, allowing disclosure of system internals and execution of debug commands.

CVE-2025-36745(CVSS UNKNOWN)

EPSS: 0.00%

updated 2025-12-12T15:30:51

1 posts

SolarEdge SE3680H  ships with an outdated Linux kernel containing unpatched vulnerabilities in core subsystems. An attacker with network or local access can exploit these flaws to achieve remote code execution, privilege escalation, or disclosure of sensitive information.

CVE-2025-66039
(0 None)

EPSS: 0.07%

updated 2025-12-12T15:19:07.567000

2 posts

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.

CVE-2020-36896
(0 None)

EPSS: 0.23%

updated 2025-12-12T15:18:42.140000

1 posts

QiHang Media Web Digital Signage 3.0.9 contains a cleartext credentials vulnerability that allows unauthenticated attackers to access administrative login information through an unprotected XML file. Attackers can retrieve hardcoded admin credentials by requesting the '/xml/User/User.xml' file, enabling direct authentication bypass.

CVE-2020-36895
(0 None)

EPSS: 0.14%

updated 2025-12-12T15:18:42.140000

1 posts

EIBIZ i-Media Server Digital Signage 3.8.0 contains an unauthenticated configuration disclosure vulnerability that allows remote attackers to access sensitive configuration files via direct object reference. Attackers can retrieve the SiteConfig.properties file through an HTTP GET request, exposing administrative credentials, database connection details, and system configuration information.

CVE-2025-13607
(9.4 CRITICAL)

EPSS: 0.04%

updated 2025-12-12T15:18:42.140000

1 posts

A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL.

CVE-2025-14265
(9.1 CRITICAL)

EPSS: 0.03%

updated 2025-12-12T15:18:13.390000

3 posts

In versions of ScreenConnect™ prior to 25.8, server-side validation and integrity checks within the extension subsystem could allow the installation and execution of untrusted or arbitrary extensions by authorized or administrative users. Abuse of this behavior could result in the execution of custom code on the server or unauthorized access to application configuration data. This issue affects on

CVE-2025-14046
(0 None)

EPSS: 0.05%

updated 2025-12-12T15:18:13.390000

1 posts

An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that allowed user-supplied HTML to inject DOM elements with IDs that collided with server-initialized data islands. These collisions could overwrite or shadow critical application state objects used by certain Project views, leading to unintended server-side POST requests or other unauthorized backend inte

CVE-2025-66046
(9.8 CRITICAL)

EPSS: 0.08%

updated 2025-12-12T15:18:13.390000

1 posts

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 67

CVE-2025-66048
(9.8 CRITICAL)

EPSS: 0.08%

updated 2025-12-12T15:18:13.390000

1 posts

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 133

CVE-2025-66044
(9.8 CRITICAL)

EPSS: 0.08%

updated 2025-12-12T15:18:13.390000

1 posts

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 64

CVE-2025-14535
(9.8 CRITICAL)

EPSS: 0.04%

updated 2025-12-12T15:18:13.390000

1 posts

A vulnerability was identified in UTT 进取 512W up to 3.1.7.7-171114. Affected is the function strcpy of the file /goform/formConfigFastDirectionW. The manipulation of the argument ssid leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-67741
(4.6 MEDIUM)

EPSS: 0.01%

updated 2025-12-12T15:18:13.390000

1 posts

In JetBrains TeamCity before 2025.11 stored XSS was possible via session attribute

CVE-2025-67742
(3.8 LOW)

EPSS: 0.00%

updated 2025-12-12T15:18:13.390000

1 posts

In JetBrains TeamCity before 2025.11 path traversal was possible via file upload

CVE-2025-67739
(3.1 LOW)

EPSS: 0.00%

updated 2025-12-12T15:18:13.390000

1 posts

In JetBrains TeamCity before 2025.11.2 improper repository URL validation could lead to local paths disclosure

CVE-2025-59803
(5.3 MEDIUM)

EPSS: 0.02%

updated 2025-12-12T15:18:13.390000

1 posts

Foxit PDF Editor and Reader before 2025.2.1 allow signature spoofing via triggers. An attacker can embed triggers (e.g., JavaScript) in a PDF document that execute during the signing process. When a signer reviews the document, the content appears normal. However, once the signature is applied, the triggers modify content on other pages or optional content layers without explicit warning. This can

CVE-2025-55314
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-12T15:18:13.390000

1 posts

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. When pages in a PDF are deleted via JavaScript, the application may fail to properly update internal states. Subsequent annotation management operations assume these states are valid, causing dereference of invalid or released memory. This can lead to memory corruption, application crashes, an

CVE-2025-14512
(6.5 MEDIUM)

EPSS: 0.03%

updated 2025-12-12T15:18:13.390000

1 posts

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.

CVE-2025-14523
(8.2 HIGH)

EPSS: 0.03%

updated 2025-12-12T15:18:13.390000

2 posts

A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occurrence for server-side processing. Common front proxies often honor the first Host: header, so this mismatch can cause vhost confusion where a proxy routes a request to one backend but the backend interprets it as destined for another host. This discrepancy enables request-smuggling style a

CVE-2025-14516
(6.3 MEDIUM)

EPSS: 0.04%

updated 2025-12-12T15:18:13.390000

1 posts

A vulnerability was found in Yalantis uCrop 2.2.11. Affected by this issue is the function downloadFile of the file com.yalantis.ucrop.task.BitmapLoadTask.java of the component URL Handler. Performing manipulation results in server-side request forgery. The attack may be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but

CVE-2025-14514
(7.3 HIGH)

EPSS: 0.03%

updated 2025-12-12T15:18:13.390000

1 posts

A flaw has been found in Campcodes Supplier Management System 1.0. Affected is an unknown function of the file /admin/add_distributor.php. This manipulation of the argument txtDistributorAddress causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used.

CVE-2025-64994
(6.5 MEDIUM)

EPSS: 0.01%

updated 2025-12-12T15:18:13.390000

1 posts

A privilege escalation vulnerability was discovered in TeamViewer DEX (former 1E DEX), specifically within the 1E-Nomad-SetWorkRate instruction prior V17.1. The improper handling of executable search paths could allow local attackers with write access to a PATH directory on a device to escalate privileges and execute arbitrary code as SYSTEM.

CVE-2025-64993
(6.8 MEDIUM)

EPSS: 0.14%

updated 2025-12-12T15:18:13.390000

1 posts

A command injection vulnerability was discovered in TeamViewer DEX (former 1E DEX), specifically within the 1E-ConfigMgrConsoleExtensions instructions. Improper input validation, allowing authenticated attackers with Actioner privileges to inject arbitrary commands. Exploitation enables remote execution of elevated commands on devices connected to the platform.

CVE-2025-64992
(6.8 MEDIUM)

EPSS: 0.14%

updated 2025-12-12T15:18:13.390000

1 posts

A command injection vulnerability was discovered in TeamViewer DEX (former 1E DEX), specifically within the 1E-Nomad-PauseNomadJobQueue instruction prior V25. Improper input validation, allowing authenticated attackers with Actioner privileges to inject arbitrary commands. Exploitation enables remote execution of elevated commands on devices connected to the platform.

CVE-2025-64987
(7.2 HIGH)

EPSS: 0.29%

updated 2025-12-12T15:18:13.390000

1 posts

A command injection vulnerability was discovered in TeamViewer DEX (former 1E DEX), specifically within the 1E-Explorer-TachyonCore-CheckSimpleIoC instruction. Improper input validation, allowing authenticated attackers with Actioner privileges to inject arbitrary commands. Exploitation enables remote execution of elevated commands on devices connected to the platform.

CVE-2025-44016
(8.8 HIGH)

EPSS: 0.04%

updated 2025-12-12T15:18:13.390000

1 posts

A vulnerability in TeamViewer DEX Client (former 1E client) - Content Distribution Service (NomadBranch.exe) prior version 25.11 for Windows allows malicious actors to bypass file integrity validation via a crafted request. By providing a valid hash for a malicious file, an attacker can cause the service to incorrectly validate and process the file as trusted, enabling arbitrary code execution und

CVE-2025-64701
(7.8 HIGH)

EPSS: 0.01%

updated 2025-12-12T15:18:13.390000

1 posts

QND Premium/Advance/Standard Ver.11.0.9i and prior contains a privilege escalation vulnerability, which may allow a user who can log in to a Windows system with the affected product to gain administrator privileges. As a result, sensitive information may be accessed or altered, and arbitrary actions may be performed.

CVE-2025-12029
(8.0 HIGH)

EPSS: 0.04%

updated 2025-12-12T15:18:13.390000

1 posts

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.11 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18.6.2 that could have, under certain circumstances, allowed an unauthenticated user to perform unauthorized actions on behalf of another user by injecting malicious external scripts into the Swagger UI."

CVE-2025-67738
(8.5 HIGH)

EPSS: 0.04%

updated 2025-12-12T15:18:13.390000

1 posts

squid/cachemgr.cgi in Webmin before 2.600 does not properly quote arguments. This is relevant if Webmin's Squid module and its Cache Manager feature are available, and an untrusted party is able to authenticate to Webmin and has certain Cache Manager permissions (the "cms" security option).

CVE-2025-11247
(4.3 MEDIUM)

EPSS: 0.01%

updated 2025-12-12T15:18:13.390000

1 posts

GitLab has remediated an issue in GitLab EE affecting all versions from 13.2 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18.6.2 that could have allowed an authenticated user to disclose sensitive information from private projects by executing specifically crafted GraphQL queries.

CVE-2025-12716
(8.7 HIGH)

EPSS: 0.02%

updated 2025-12-12T15:18:13.390000

1 posts

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18.6.2 that, under certain conditions could have allowed an authenticated user to perform unauthorized actions on behalf of another user by creating wiki pages with malicious content.

CVE-2025-13764
(9.8 CRITICAL)

EPSS: 0.07%

updated 2025-12-12T15:18:13.390000

2 posts

The WP CarDealer plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.16. This is due to the 'WP_CarDealer_User::process_register' function not restricting what user roles a user can register with. This makes it possible for unauthenticated attackers to supply the 'administrator' role during registration and gain administrator access to the site.

CVE-2025-67719
(0 None)

EPSS: 0.01%

updated 2025-12-12T15:18:13.390000

2 posts

Ibexa is a composable end-to-end DXP (Digital Experience Platform). Versions 5.0.0-beta1 through 5.0.3 do not have password validation. During the transition from v4 to v5 an error was introduced into validation code which causes the validation of the previous password not to run as expected. This makes it possible for a logged in user to change their password in the back office without knowing th

CVE-2025-67718
(0 None)

EPSS: 0.04%

updated 2025-12-12T15:18:13.390000

2 posts

Form.io is a combined Form and API platform for Serverless applications. Versions 3.5.6 and below and 4.0.0-rc.1 through 4.4.2 contain a flaw in path handling which could allow an attacker to access protected API endpoints by sending a crafted request path. An unauthenticated or unauthorized request could retrieve data from endpoints that should be protected. This issue is fixed in versions 3.5.7

CVE-2025-67717
(0 None)

EPSS: 0.03%

updated 2025-12-12T15:18:13.390000

1 posts

ZITADEL is an open-source identity infrastructure tool. Versions 2.44.0 through 3.4.4 and 4.0.0-rc.1 through 4.7.1 disclose the total number of instance users to authenticated users, regardless of their specific permissions. While this does not leak individual user data or PII, disclosing the total user count via the totalResult field constitutes an information disclosure vulnerability that may be

CVE-2025-67648
(7.1 HIGH)

EPSS: 0.03%

updated 2025-12-12T15:18:13.390000

1 posts

Shopware is an open commerce platform. Versions 6.4.6.0 through 6.6.10.9 and 6.7.0.0 through 6.7.5.0 have a Reflected XSS vulnerability in AuthController.php. A request parameter from the login page URL is directly rendered within the Twig template of the Storefront login page without further processing or input validation. This allows direct code injection into the template via the URL parameter,