FediSecfeeds

CVE	CVSS	EPSS	Posts	Repos	Nuclei	Updated	Description
CVE-2025-13451	7.3	0.03%	1	0		2025-11-21T21:31:22	A vulnerability was identified in SourceCodester Online Shop Project 1.0. The af
CVE-2025-41075	7.5	0.04%	1	0		2025-11-21T21:30:17	Vulnerability in LimeSurvey 6.13.0 in the endpoint /optin that causes infinite H
CVE-2025-41074	7.5	0.04%	1	0		2025-11-21T21:30:17	Vulnerability in LimeSurvey 6.13.0 in the endpoint /optout that causes infinite
CVE-2025-13424	4.7	0.03%	1	0		2025-11-21T21:30:17	A vulnerability has been found in Campcodes Supplier Management System 1.0. This
CVE-2025-61757	9.8	0.07%	9	2	template	2025-11-21T21:15:50.947000	Vulnerability in the Identity Manager product of Oracle Fusion Middleware (compo
CVE-2025-13421	7.3	0.03%	1	0		2025-11-21T20:21:56.600000	A security vulnerability has been detected in itsourcecode Human Resource Manage
CVE-2025-13423	4.7	0.03%	1	0		2025-11-21T20:21:20.850000	A flaw has been found in Campcodes Retro Basketball Shoes Online Store 1.0. The
CVE-2025-13446	8.8	0.09%	2	0		2025-11-21T20:16:29.907000	A vulnerability has been found in Tenda AC21 16.03.08.16. This vulnerability aff
CVE-2025-13449	7.3	0.03%	1	0		2025-11-21T20:14:28.467000	A vulnerability was found in code-projects Online Shop Project 1.0. This issue a
CVE-2025-41076	6.5	0.04%	1	0		2025-11-21T19:54:57.150000	In version 6.13.0 of LimeSurvey, any external user can cause a 500 error in the
CVE-2025-13223	8.8	30.74%	5	0		2025-11-21T18:28:01.260000	Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote a
CVE-2025-65222	4.3	0.01%	1	0		2025-11-21T17:25:23.817000	Tenda AC21 V16.03.08.16 is vulnerable to Buffer Overflow via the rebootTime para
CVE-2025-63211	6.1	0.02%	1	0		2025-11-21T16:16:14.620000	Stored cross-site scripting vulnerability in bridgetech VBC Server & Element Man
CVE-2025-64762	None	0.10%	2	0		2025-11-21T15:32:25	In `authkit-nextjs` version 2.11.0 and below, authenticated responses do not def
CVE-2025-64751	None	0.04%	1	0		2025-11-21T15:32:10	### Overview OpenFGA v1.4.0 to v1.11.0 (openfga-0.1.34 <= Helm chart <= openfga
CVE-2025-62426	6.5	0.04%	1	0		2025-11-21T15:32:05	### Summary The /v1/chat/completions and /tokenize endpoints allow a `chat_templ
CVE-2025-62372	6.5	0.04%	2	0		2025-11-21T15:31:39	### Summary Users can crash the vLLM engine serving multimodal models by passin
CVE-2025-41115	10.0	0.00%	8	1		2025-11-21T15:15:52.283000	SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in Apri
CVE-2025-11001	7.0	0.31%	12	3		2025-11-21T15:13:59.083000	7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability.
CVE-2025-40601	7.5	0.05%	3	0		2025-11-21T15:13:59.083000	A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows
CVE-2025-0645	7.2	0.04%	1	0		2025-11-21T15:13:59.083000	Unrestricted Upload of File with Dangerous Type vulnerability in Narkom Communic
CVE-2025-11676	0	0.03%	2	0		2025-11-21T15:13:59.083000	Improper input validation vulnerability in TP-Link System Inc. TL-WR940N V6 (UPn
CVE-2025-12414	0	0.07%	1	0		2025-11-21T15:13:59.083000	An attacker could take over a Looker account in a Looker instance configured wit
CVE-2025-12778	5.3	0.05%	1	0		2025-11-21T15:13:59.083000	The Ultimate Member Widgets for Elementor – WordPress User Directory plugin for
CVE-2025-13434	5.3	0.03%	1	0		2025-11-21T15:13:59.083000	A weakness has been identified in jameschz Hush Framework 2.0. The impacted elem
CVE-2025-47914	5.3	0.04%	2	0		2025-11-21T15:13:59.083000	SSH Agent servers do not validate the size of messages when processing new ident
CVE-2025-65103	8.8	0.03%	2	0		2025-11-21T15:13:59.083000	OpenSTAManager is an open source management software for technical assistance an
CVE-2025-63932	7.3	0.23%	1	0		2025-11-21T15:13:59.083000	D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote code exec
CVE-2025-12160	7.2	0.07%	1	0		2025-11-21T15:13:13.800000	The Simple User Registration plugin for WordPress is vulnerable to Stored Cross-
CVE-2025-13149	4.3	0.03%	1	0		2025-11-21T15:13:13.800000	The Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change St
CVE-2025-64755	0	0.05%	2	0		2025-11-21T15:13:13.800000	Claude Code is an agentic coding tool. Prior to version 2.0.31, due to an error
CVE-2025-62164	8.8	0.21%	2	0		2025-11-21T15:13:13.800000	vLLM is an inference and serving engine for large language models (LLMs). From v
CVE-2025-62207	8.6	0.08%	3	0		2025-11-21T15:13:13.800000	Azure Monitor Elevation of Privilege Vulnerability
CVE-2025-13485	7.3	0.03%	1	0		2025-11-21T15:13:13.800000	A security flaw has been discovered in itsourcecode Online File Management Syste
CVE-2025-52668	8.7	0.03%	2	0		2025-11-21T15:13:13.800000	Improper input neutralization in the stats-conversions.php script in Revive Adse
CVE-2025-55124	6.1	0.03%	1	0		2025-11-21T15:13:13.800000	Improper neutralisation of input in Revive Adserver 6.0.0+ causes a reflected XS
CVE-2025-52670	7.1	0.04%	1	0		2025-11-21T15:13:13.800000	Missing authorization check in Revive Adserver 5.5.2 and 6.0.1 and earlier versi
CVE-2025-52666	2.7	0.04%	1	0		2025-11-21T15:13:13.800000	Improper neutralisation of format characters in the settings of Revive Adserver
CVE-2025-62730	0	0.03%	1	0		2025-11-21T15:13:13.800000	SOPlanning is vulnerable to Privilege Escalation in user management tab. Users w
CVE-2025-63848	6.1	0.04%	1	1		2025-11-21T15:13:13.800000	Stored cross site scripting (xss) vulnerability in SWISH prolog thru 2.2.0 allow
CVE-2025-12121	7.3	0.02%	2	0		2025-11-21T15:13:13.800000	Lite XL versions 2.1.8 and prior contain a vulnerability in the system.exec func
CVE-2025-13156	8.8	0.24%	1	1		2025-11-21T09:30:39	The Vitepos – Point of Sale (POS) for WooCommerce plugin for WordPress is vulner
CVE-2025-12039	5.3	0.02%	1	0		2025-11-21T09:30:39	The BigBuy Dropshipping Connector for WooCommerce plugin for WordPress is vulner
CVE-2025-11826	6.4	0.03%	1	0		2025-11-21T09:30:39	The WP Company Info plugin for WordPress is vulnerable to Stored Cross-Site Scri
CVE-2025-11808	6.4	0.03%	1	0		2025-11-21T09:30:39	The Shortcode for Google Street View plugin for WordPress is vulnerable to Store
CVE-2025-13322	8.1	0.22%	2	0		2025-11-21T09:30:39	The WP AUDIO GALLERY plugin for WordPress is vulnerable to arbitrary file deleti
CVE-2025-13159	7.1	0.03%	1	1		2025-11-21T09:30:39	The Flo Forms – Easy Drag & Drop Form Builder plugin for WordPress is vulnerable
CVE-2025-13141	6.4	0.03%	1	0		2025-11-21T09:30:38	The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable t
CVE-2025-11973	4.9	0.03%	1	0		2025-11-21T09:30:38	The 简数采集器 plugin for WordPress is vulnerable to Arbitrary File Read in all versi
CVE-2025-11803	6.4	0.03%	1	0		2025-11-21T09:30:38	The WPSite Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scr
CVE-2025-12138	8.8	0.28%	1	0		2025-11-21T09:30:34	The URL Image Importer plugin for WordPress is vulnerable to arbitrary file uplo
CVE-2025-11985	8.8	0.05%	1	0		2025-11-21T09:30:34	The Realty Portal plugin for WordPress is vulnerable to unauthorized modificatio
CVE-2025-64695	7.8	0.01%	1	0		2025-11-21T09:30:34	Uncontrolled search path element issue exists in the installer of LogStare Colle
CVE-2025-11456	9.8	0.14%	1	0		2025-11-21T09:30:33	The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is
CVE-2025-64310	9.8	0.06%	2	0		2025-11-21T03:31:20	EPSON WebConfig and Epson Web Control for SEIKO EPSON Projector Products do not
CVE-2025-55123	3.5	0.03%	1	0		2025-11-21T00:31:29	Improper neutralization of input in Revive Adserver 5.5.2 and 6.0.1 and earlier
CVE-2025-52671	4.3	0.03%	1	0		2025-11-21T00:31:28	Debug information disclosure in the SQL error message to in Revive Adserver 5.5.
CVE-2025-64655	8.8	0.08%	3	0		2025-11-21T00:30:29	Improper authorization in Dynamics OmniChannel SDK Storage Containers allows an
CVE-2025-62459	8.3	0.08%	3	0		2025-11-21T00:30:28	Microsoft Defender Portal Spoofing Vulnerability
CVE-2025-59245	9.8	0.37%	3	0		2025-11-21T00:30:28	Microsoft SharePoint Online Elevation of Privilege Vulnerability
CVE-2025-36072	8.8	0.07%	2	0		2025-11-21T00:30:28	IBM webMethods Integration 10.11 through 10.11_Core_Fix22, 10.15 through 10.15_C
CVE-2025-64660	5.7	0.05%	2	0		2025-11-21T00:30:28	Improper access control in GitHub Copilot and Visual Studio Code allows an autho
CVE-2025-13484	2.4	0.03%	1	0		2025-11-21T00:30:28	A vulnerability was identified in Campcodes Complete Online Beauty Parlor Manage
CVE-2025-48986	8.8	0.02%	2	0		2025-11-21T00:30:24	Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions cau
CVE-2025-49752	10.0	0.09%	3	1		2025-11-21T00:30:23	Azure Bastion Elevation of Privilege Vulnerability
CVE-2025-52669	4.3	0.03%	1	0		2025-11-21T00:30:22	Insecure design policies in the user management system of Revive Adserver 5.5.2
CVE-2025-48987	6.3	0.04%	1	0		2025-11-21T00:30:22	Improper Neutralization of Input in Revive Adserver 5.5.2 and 6.0.1 and earlier
CVE-2025-64027	None	0.01%	1	1		2025-11-20T21:56:35	Snipe-IT v8.3.4 (build 20218) contains a reflected cross-site scripting (XSS) vu
CVE-2025-40605	5.3	0.03%	2	0		2025-11-20T21:31:39	A Path Traversal vulnerability has been identified in the Email Security applian
CVE-2025-40604	6.5	0.01%	2	0		2025-11-20T21:31:39	Download of Code Without Integrity Check Vulnerability in the SonicWall Email Se
CVE-2025-52667	3.5	0.03%	1	0		2025-11-20T21:30:43	Missing JSON Content-Type header in a script in Revive Adserver 6.0.1 and 5.5.2
CVE-2025-10571	9.7	0.03%	1	0		2025-11-20T21:30:43	Authentication Bypass Using an Alternate Path or Channel vulnerability in ABB AB
CVE-2025-13400	8.8	0.11%	1	0		2025-11-20T18:32:09	A vulnerability was detected in Tenda CH22 1.0.0.1. Affected is the function for
CVE-2025-63207	9.8	0.06%	1	0		2025-11-20T18:32:08	The R.V.R Elettronica TEX product (firmware TEXL-000400, Web GUI TLAN-000400) is
CVE-2025-65220	4.3	0.01%	1	0		2025-11-20T18:32:08	Tenda AC21 V16.03.08.16 is vulnerable to Buffer Overflow in: /goform/SetVirtualS
CVE-2025-65223	4.3	0.01%	1	0		2025-11-20T18:32:08	Tenda AC21 V16.03.08.16 is vulnerable to Buffer Overflow via the urls parameter
CVE-2025-65221	4.3	0.01%	1	0		2025-11-20T18:32:08	Tenda AC21 V16.03.08.16 is vulnerable to Buffer Overflow via the list parameter
CVE-2025-62294	None	0.04%	1	0		2025-11-20T18:31:12	SOPlanning is vulnerable to Predictable Generation of Password Recovery Token. D
CVE-2025-34320	None	0.34%	1	0		2025-11-20T18:31:12	BASIS BBj versions prior to 25.00 contain a Jetty-served web endpoint that fails
CVE-2025-13435	5.6	0.09%	1	0		2025-11-20T17:57:06	A security vulnerability has been detected in Dreampie Resty versions up to the
CVE-2025-65022	7.2	0.03%	1	0		2025-11-20T17:24:07.987000	i-Educar is free, fully online school management software. In versions 2.10.0 an
CVE-2025-63206	9.8	0.06%	1	0		2025-11-20T17:15:51.933000	An authentication bypass issue was discovered in Dasan Switch DS2924 web based i
CVE-2025-63719	7.3	0.03%	1	0		2025-11-20T15:31:26	Campcodes Online Hospital Management System 1.0 is vulnerable to SQL Injection i
CVE-2025-64984	6.1	0.03%	1	0		2025-11-20T15:30:35	Kaspersky has fixed a security issue in Kaspersky Endpoint Security for Linux (a
CVE-2025-62346	6.8	0.01%	1	0		2025-11-20T15:30:34	A Cross-Site Request Forgery (CSRF) vulnerability was identified in HCL Glovius
CVE-2025-5092	6.4	0.04%	1	0		2025-11-20T15:30:34	Multiple plugins and/or themes for WordPress are vulnerable to Stored Cross-Site
CVE-2025-13469	2.4	0.03%	1	0		2025-11-20T15:30:30	A security vulnerability has been detected in Public Knowledge Project omp and o
CVE-2025-13445	8.8	0.05%	2	0		2025-11-20T15:30:30	A flaw has been found in Tenda AC21 16.03.08.16. This affects an unknown part of
CVE-2025-13442	7.3	1.02%	1	0		2025-11-20T15:30:30	A security vulnerability has been detected in UTT 进取 750W up to 3.2.2-191225. Af
CVE-2025-13468	5.4	0.04%	1	0		2025-11-20T15:30:29	A weakness has been identified in SourceCodester Alumni Management System 1.0. T
CVE-2025-12502	6.8	0.02%	1	0		2025-11-20T15:30:29	The attention-bar WordPress plugin through 0.7.2.1 does not sanitize and escape
CVE-2025-13450	3.5	0.03%	1	0		2025-11-20T15:30:29	A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impact
CVE-2025-13443	5.4	0.03%	1	0		2025-11-20T15:30:29	A vulnerability was detected in macrozheng mall up to 1.0.3. Affected by this is
CVE-2025-13433	7.0	0.01%	1	0		2025-11-20T15:30:29	A security flaw has been discovered in Muse Group MuseHub 2.1.0.1567. The affect
CVE-2025-0643	7.2	0.04%	1	0		2025-11-20T15:30:22	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site
CVE-2025-63371	7.5	0.29%	1	0		2025-11-20T15:30:22	Milos Paripovic OneCommander 3.102.0.0 is vulnerable to Directory Traversal. The
CVE-2025-63878	6.5	0.03%	1	0		2025-11-20T00:32:25	Github Restaurant Website Restoran v1.0 was discovered to contain a SQL injectio
CVE-2025-13420	7.3	0.03%	1	0		2025-11-20T00:31:25	A weakness has been identified in itsourcecode Human Resource Management System
CVE-2025-13422	7.3	0.03%	1	0		2025-11-20T00:31:25	A vulnerability was detected in freeprojectscodes Sports Club Management System
CVE-2025-11884	None	0.05%	1	0		2025-11-20T00:31:25	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site
CVE-2025-4042	None	0.00%	1	0		2025-11-20T00:31:24	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
CVE-2025-58181	5.3	0.06%	1	0		2025-11-19T23:01:22	SSH servers parsing GSSAPI authentication requests do not validate the number of
CVE-2025-63210	9.8	0.07%	1	0		2025-11-19T21:32:25	The Newtec Celox UHD (models: CELOXA504, CELOXA820) running firmware version cel
CVE-2025-65099	None	0.08%	1	0		2025-11-19T20:33:13	When running on a machine with Yarn 3.0 or above, Claude Code could have been tr
CVE-2025-65025	8.2	0.05%	1	0		2025-11-19T20:30:01	### Summary The esm.sh CDN service is vulnerable to a Path Traversal (CWE-22) vu
CVE-2025-65033	8.1	0.04%	2	0		2025-11-19T20:15:53.960000	Rallly is an open-source scheduling and collaboration tool. Prior to version 4.5
CVE-2025-65021	9.1	0.04%	1	0		2025-11-19T19:14:59.327000	Rallly is an open-source scheduling and collaboration tool. Prior to version 4.5
CVE-2025-34333	0	0.01%	1	0		2025-11-19T19:14:59.327000	AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and inclu
CVE-2025-34331	0	0.10%	1	0		2025-11-19T19:14:59.327000	AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and inclu
CVE-2025-63217	9.8	0.07%	1	0		2025-11-19T19:14:59.327000	The Itel DAB MUX (IDMUX build c041640a) is vulnerable to Authentication Bypass d
CVE-2025-65089	6.8	0.01%	1	0		2025-11-19T19:00:00	### Summary A user with no view rights on a page may see the content of an offic
CVE-2025-13316	None	0.04%	2	0		2025-11-19T18:31:29	Twonky Server 8.5.2 on Linux and Windows is vulnerable to a cryptographic flaw,
CVE-2025-13315	None	0.17%	2	0		2025-11-19T18:31:28	Twonky Server 8.5.2 on Linux and Windows is vulnerable to an access control flaw
CVE-2025-34337	None	0.07%	1	0		2025-11-19T18:31:28	eGovFramework/egovframe-common-components versions up to and including 4.3.1 inc
CVE-2025-34334	None	0.31%	1	0		2025-11-19T18:31:28	AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and inclu
CVE-2025-34335	None	0.28%	1	0		2025-11-19T18:31:27	AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and inclu
CVE-2025-34332	None	0.01%	1	0		2025-11-19T18:31:27	AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and inclu
CVE-2025-34329	None	0.70%	1	0		2025-11-19T18:31:27	AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and inclu
CVE-2025-34328	None	0.10%	1	0		2025-11-19T18:31:27	AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and inclu
CVE-2025-63879	6.1	0.03%	1	0		2025-11-19T18:31:27	A reflected cross-site scripted (XSS) vulnerability in the /ecommerce/products.p
CVE-2025-63224	10.0	0.09%	1	0		2025-11-19T18:31:27	The Itel DAB Encoder (IDEnc build 25aec8d) is vulnerable to Authentication Bypas
CVE-2025-10703	None	0.21%	1	0		2025-11-19T18:31:27	Improper Control of Generation of Code ('Code Injection') vulnerability in Progr
CVE-2025-10702	None	0.21%	1	0		2025-11-19T18:31:27	Improper Control of Generation of Code ('Code Injection') vulnerability in Progr
CVE-2025-63216	10.0	0.07%	1	0		2025-11-19T15:32:40	The Itel DAB Gateway (IDGat build c041640a) is vulnerable to Authentication Bypa
CVE-2025-64446	9.8	70.44%	3	10	template	2025-11-19T15:32:36	A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.1
CVE-2025-58034	7.2	2.42%	6	2		2025-11-19T00:31:24	An Improper Neutralization of Special Elements used in an OS Command ('OS Comman
CVE-2025-9501	9.0	0.83%	3	0		2025-11-18T14:06:29.817000	The W3 Total Cache WordPress plugin before 2.8.13 is vulnerable to command injec
CVE-2025-60672	6.5	0.28%	1	0		2025-11-17T19:04:14.260000	An unauthenticated command injection vulnerability exists in the D-Link DIR-878A
CVE-2025-60673	6.5	0.28%	1	0		2025-11-14T18:32:41	An unauthenticated command injection vulnerability exists in the D-Link DIR-878A
CVE-2025-59367	None	0.36%	1	1		2025-11-13T03:31:30	An authentication bypass vulnerability has been identified in certain DSL series
CVE-2025-64513	0	0.10%	2	2		2025-11-12T16:19:59.103000	Milvus is an open-source vector database built for generative AI applications. A
CVE-2025-59287	9.8	60.40%	1	22	template	2025-11-11T15:32:22	Deserialization of untrusted data in Windows Server Update Service allows an una
CVE-2025-62171	4.4	0.08%	1	0		2025-11-03T18:32:51	## Summary CVE-2025-57803 claims to be patched in ImageMagick 7.1.2-2, but **th
CVE-2024-36331	3.2	0.02%	1	0		2025-11-03T18:32:48	Improper initialization of CPU cache memory could allow a privileged attacker wi
CVE-2025-24893	9.8	94.26%	1	38	template	2025-10-30T19:54:05	### Impact Any guest can perform arbitrary remote code execution through a reque
CVE-2025-27093	6.3	0.03%	2	0		2025-10-30T15:05:32.197000	Sliver is a command and control framework that uses a custom Wireguard netstack.
CVE-2025-20333	9.9	12.47%	1	0		2025-10-28T13:58:58.610000	A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security
CVE-2025-61882	9.8	79.99%	1	13	template	2025-10-27T17:08:52.230000	Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business S
CVE-2025-20362	6.5	30.85%	1	0	template	2025-10-22T00:34:26	A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security
CVE-2024-21413	9.8	93.52%	1	22		2025-10-22T00:33:00	Microsoft Outlook Remote Code Execution Vulnerability
CVE-2023-48022	9.8	92.93%	2	2	template	2025-09-30T18:19:57	Anyscale Ray allows a remote attacker to execute arbitrary code via the job subm
CVE-2025-20363	9.1	0.36%	1	0		2025-09-25T18:30:34	A vulnerability in the web services of Cisco Secure Firewall Adaptive Security A
CVE-2025-59375	7.5	0.12%	1	0		2025-09-17T15:31:32	libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory
CVE-2025-50165	9.8	2.44%	1	0		2025-08-12T18:31:39	Untrusted pointer dereference in Microsoft Graphics Component allows an unauthor
CVE-2025-2492	None	0.16%	1	0		2025-04-18T15:31:45	An improper authentication control vulnerability exists in AiCloud. This vulnera
CVE-2024-52875	8.8	82.42%	1	0	template	2025-01-31T09:31:57	An issue was discovered in GFI Kerio Control 9.2.5 through 9.4.5. The dest GET p
CVE-2024-2141	6.4	0.14%	1	23		2025-01-30T15:20:56.253000	The Ultimate Addons for Beaver Builder – Lite plugin for WordPress is vulnerable
CVE-2024-12912	7.2	0.38%	1	0		2025-01-02T09:15:17.470000	An improper input insertion vulnerability in AiCloud on certain router models ma
CVE-2023-41345	8.8	0.77%	1	0		2024-11-21T08:21:07.047000	ASUS RT-AX55’s authentication-related function has a vulnerability of insufficie
CVE-2024-3871	7.2	2.87%	1	0		2024-04-27T05:02:25	The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface
CVE-2023-41348	8.8	0.65%	1	0		2023-11-12T05:05:03	ASUS RT-AC86U’s authentication-related function has a vulnerability of insuffici
CVE-2023-41346	8.8	0.65%	1	0		2023-11-12T05:04:02	ASUS RT-AC86U’s authentication-related function has a vulnerability of insuffici
CVE-2023-41347	8.8	0.65%	1	0		2023-11-12T05:04:02	ASUS RT-AC86U’s authentication-related function has a vulnerability of insuffici
CVE-2025-64656	0	0.00%	1	0			N/A
CVE-2025-64657	0	0.00%	1	0			N/A
CVE-2025-64428	0	0.04%	2	0			N/A
CVE-2025-64185	0	0.04%	1	0			N/A
CVE-2025-62724	0	0.03%	1	0			N/A
CVE-2025-65094	0	0.04%	2	0			N/A
CVE-2025-64759	0	0.05%	2	0			N/A
CVE-2025-65095	0	0.05%	2	0			N/A
CVE-2025-65034	0	0.04%	2	0			N/A
CVE-2025-65029	0	0.04%	1	0			N/A
CVE-2025-65100	0	0.05%	1	0			N/A
CVE-2025-65024	0	0.03%	1	0			N/A
CVE-2025-65023	0	0.03%	1	0			N/A
CVE-2025-11002	0	0.00%	1	1			N/A
CVE-2025-13402	0	0.00%	1	0			N/A

https://github.com/Jinxia62/Oracle-Identity-Manager-CVE-2025-61757

cisakevtracker@mastodon.social at 2025-11-21T22:00:54.000Z ##

CVE ID: CVE-2025-61757
Vendor: Oracle
Product: Fusion Middleware
Date Added: 2025-11-21
Notes: https://www.oracle.com/security-alerts/cpuoct2025.html ; https://nvd.nist.gov/vuln/detail/CVE-2025-61757
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-61757

##

todb at 2025-11-21T21:24:28.422Z ##

Friday #KEV adds make me shed a tear.

At least @runZeroInc pushed out a Rapid Response yesterday for
CVE-2025-61757. If you're on your way out the door, glance at your dashboard now to know what's up with your exposure.

##

cR0w at 2025-11-21T21:05:59.916Z ##

sev:CRIT EITW CVE in Oracle Fusion.

https://www.cve.org/CVERecord?id=CVE-2025-61757

Vulnerability in the Identity Manager product of Oracle Fusion Middleware (component: REST WebServices). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Identity Manager. Successful attacks of this vulnerability can result in takeover of Identity Manager. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

##

PC_Fluesterer@social.tchncs.de at 2025-11-21T14:29:40.000Z ##

Weiteres Zero-Day Sicherheitsloch bei Oracle angegriffen

Im Oktober hatte ich über CVE-2025-61882 berichtet, eine Zero-Day Sicherheitslücke bei Oracle. Die wurde vorher schon, und erst recht nach der Veröffentlichung, für viele Angriffe ausgenutzt. Diese wiederum haben zu Datenlecks geführt. Jetzt hat ein Sicherheitsunternehmen veröffentlicht, dass es schon vorher eine weitere Zero-Day Sicherheitslücke (CVE-2025-61757) gefunden und an Oracle gemeldet hatte. Oracle hat sie mit den Oktober-Updates geflickt, aber Honigtopf-Protokolle zeigen Angriffe darauf bereits seit dem 2025-08-30. Außerdem ist sie geradezu trivial einfach auszunutzen: Durch Anhängen von ";.wadl" wird

https://www.pc-fluesterer.info/wordpress/2025/11/21/weiteres-zero-day-sicherheitsloch-bei-oracle-angegriffen/

#Hintergrund #Warnung #0day #closedsource #cybercrime #exploits #hintertür #wissen

##

cisakevtracker@mastodon.social at 2025-11-21T22:00:54.000Z ##

CVE ID: CVE-2025-61757
Vendor: Oracle
Product: Fusion Middleware
Date Added: 2025-11-21
Notes: https://www.oracle.com/security-alerts/cpuoct2025.html ; https://nvd.nist.gov/vuln/detail/CVE-2025-61757
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-61757

##

todb@infosec.exchange at 2025-11-21T21:24:28.000Z ##

Friday #KEV adds make me shed a tear.

At least @runZeroInc pushed out a Rapid Response yesterday for
CVE-2025-61757. If you're on your way out the door, glance at your dashboard now to know what's up with your exposure.

##

cR0w@infosec.exchange at 2025-11-21T21:05:59.000Z ##

sev:CRIT EITW CVE in Oracle Fusion.

https://www.cve.org/CVERecord?id=CVE-2025-61757

Vulnerability in the Identity Manager product of Oracle Fusion Middleware (component: REST WebServices). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Identity Manager. Successful attacks of this vulnerability can result in takeover of Identity Manager. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

##

updated 2025-11-21T20:16:29.907000

2 posts

A vulnerability has been found in Tenda AC21 16.03.08.16. This vulnerability affects unknown code of the file /goform/SetSysTimeCfg. The manipulation of the argument timeZone/time leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.

updated 2025-11-21T18:28:01.260000

5 posts

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

benzogaga33@mamot.fr at 2025-11-21T10:40:03.000Z ##

Google a patché une nouvelle faille zero-day exploitée dans le navigateur Chrome (CVE-2025-13223) https://www.it-connect.fr/google-chrome-patch-securite-cve-2025-13223/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Chrome #Google

##

benzogaga33@mamot.fr at 2025-11-21T10:40:03.000Z ##

Google a patché une nouvelle faille zero-day exploitée dans le navigateur Chrome (CVE-2025-13223) https://www.it-connect.fr/google-chrome-patch-securite-cve-2025-13223/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Chrome #Google

##

AAKL@infosec.exchange at 2025-11-20T17:00:52.000Z ##

If you missed this, CISA Released New Guides to Safeguard Critical Infrastructure from Unmanned Aircraft Systems Threats yesterday https://www.cisa.gov/news-events/news/cisa-releases-new-guides-safeguard-critical-infrastructure-unmanned-aircraft-systems-threats

In addition to that, this was added to the KEV catalogue:

CVE-2025-13223" Google Chromium V8 Type Confusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-13223 #CISA #Google #Chromium #infosec

##

DarkWebInformer@infosec.exchange at 2025-11-19T19:20:53.000Z ##

CVE-2025-13223: Google Chromium V8 Type Confusion Vulnerability has been added to the CISA KEV Catalog

https://darkwebinformer.com/cisa-kev-catalog/

CVSS: 8.8

##

cisakevtracker@mastodon.social at 2025-11-19T19:00:54.000Z ##

CVE ID: CVE-2025-13223
Vendor: Google
Product: Chromium V8
Date Added: 2025-11-19
Notes: https://chromereleases.googleblog.com/2025/11/stable-channel-update-for-desktop_17.html ; https://nvd.nist.gov/vuln/detail/CVE-2025-13223
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-13223

##

CVE-2025-65222
(4.3 MEDIUM)

EPSS: 0.01%

updated 2025-11-21T17:25:23.817000

1 posts

Tenda AC21 V16.03.08.16 is vulnerable to Buffer Overflow via the rebootTime parameter of /goform/SetSysAutoRebbotCfg.

cR0w@infosec.exchange at 2025-11-20T15:10:57.000Z ##

Tenda

https://www.cve.org/CVERecord?id=CVE-2025-65221

https://www.cve.org/CVERecord?id=CVE-2025-65222

https://www.cve.org/CVERecord?id=CVE-2025-65223

cc: @Dio9sys @da_667

#internetOfShit

##

CVE-2025-63211
(6.1 MEDIUM)

EPSS: 0.02%

updated 2025-11-21T16:16:14.620000

1 posts

Stored cross-site scripting vulnerability in bridgetech VBC Server & Element Manager, firmware versions 6.5.0-9 thru 6.5.0-10, allows attackers to execute arbitrary code via the addName parameter to the /vbc/core/userSetupDoc/userSetupDoc endpoint.

jos1264@social.skynetcloud.site at 2025-11-19T20:45:03.000Z ##

CVE-2025-63211 - Bridgetech VBC Server & Element Manager Stored Cross-Site Scripting Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-63211

##

CVE-2025-64762(CVSS UNKNOWN)

EPSS: 0.10%

updated 2025-11-21T15:32:25

2 posts

In `authkit-nextjs` version 2.11.0 and below, authenticated responses do not defensively apply anti-caching headers. In environments where CDN caching is enabled, this can result in session tokens being included in cached responses and subsequently served to multiple users. Next.js applications deployed on Vercel are unaffected **unless** they manually enable CDN caching by setting cache headers

updated 2025-11-21T15:31:39

2 posts

### Summary Users can crash the vLLM engine serving multimodal models by passing multimodal embedding inputs with correct `ndim` but incorrect `shape` (e.g. hidden dimension is wrong), regardless of whether the model is intended to support such inputs (as defined in the Supported Models page). The issue has existed ever since we added support for image embedding inputs, i.e. #6613 (released in v

jos1264@social.skynetcloud.site at 2025-11-21T04:55:02.000Z ##

CVE-2025-62372 - vLLM vulnerable to DoS with incorrect shape of multimodal embedding inputs https://cvefeed.io/vuln/detail/CVE-2025-62372

##

jos1264@social.skynetcloud.site at 2025-11-21T04:15:02.000Z ##

CVE-2025-62372 - vLLM vulnerable to DoS with incorrect shape of multimodal embedding inputs https://cvefeed.io/vuln/detail/CVE-2025-62372

##

CVE-2025-41115
(10.0 CRITICAL)

EPSS: 0.00%

updated 2025-11-21T15:15:52.283000

8 posts

SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations manage users and teams in Grafana by introducing automated user lifecycle management. In Grafana versions 12.x where SCIM provisioning is enabled and configured, a vulnerability in user identity handling allows a malicious or compromised SCIM client to provision a user with a numeric ext

1 repos

https://github.com/B1ack4sh/Blackash-CVE-2025-41115

oversecurity@mastodon.social at 2025-11-21T18:10:08.000Z ##

Grafana warns of max severity admin spoofing vulnerability

Grafana Labs is warning of a maximum severity vulnerability (CVE-2025-41115) in its Enterprise product that can be exploited to treat new users as...

🔗️ [Bleepingcomputer] https://link.is.it/MOXWjh

##

RedTeamNews at 2025-11-21T18:08:38.866Z ##

Critical alert for Grafana Enterprise users: A maximum severity vulnerability (CVE-2025-41115) allows full admin takeover via SCIM. Patch immediately if you're on versions 12.0.0-12.2.1. https://redteamnews.com/red-team/cve/grafana-enterprise-critical-scim-vulnerability-enables-full-administrative-takeover/

##

cR0w at 2025-11-21T15:54:49.414Z ##

Go hack more Grafana shit. 🥳

https://github.com/B1ack4sh/Blackash-CVE-2025-41115

##

DarkWebInformer at 2025-11-21T15:54:12.211Z ##

🚨CVE-2025-41115: Grafana Privilege Escalation and User Impersonation

CVSS: 10

PoC: https://github.com/B1ack4sh/Blackash-CVE-2025-41115

Advisory: https://grafana.com/blog/2025/11/19/grafana-enterprise-security-update-critical-severity-security-fix-for-cve-2025-41115/

Timeline:

2025-11-04 - Issue discovered internally
2025-11-04 - Incident declared
2025-11-05 - Cloud vendors privately notified & patched
2025-11-19 - Public disclosure and official fix released

##

undercodenews@mastodon.social at 2025-11-21T12:49:21.000Z ##

Grafana Enterprise Faces Critical SCIM Security Crisis as CVE-2025-41115 Exposes Privilege Escalation Risks

Introduction: A Silent Identity Flaw That Nearly Shook the Enterprise Monitoring World When Grafana Labs introduced automated identity provisioning earlier this year, the feature promised smoother onboarding, tighter lifecycle control, and cleaner enterprise governance. What no one expected was that a single overlooked mechanism inside that system could be used…

https://undercodenews.com/grafana-enterprise-faces-critical-scim-security-crisis-as-cve-2025-41115-exposes-privilege-escalation-risks/

##

oversecurity@mastodon.social at 2025-11-21T18:10:08.000Z ##

Grafana warns of max severity admin spoofing vulnerability

Grafana Labs is warning of a maximum severity vulnerability (CVE-2025-41115) in its Enterprise product that can be exploited to treat new users as...

🔗️ [Bleepingcomputer] https://link.is.it/MOXWjh

##

cR0w@infosec.exchange at 2025-11-21T15:54:49.000Z ##

Go hack more Grafana shit. 🥳

https://github.com/B1ack4sh/Blackash-CVE-2025-41115

##

DarkWebInformer@infosec.exchange at 2025-11-21T15:54:12.000Z ##

🚨CVE-2025-41115: Grafana Privilege Escalation and User Impersonation

CVSS: 10

PoC: https://github.com/B1ack4sh/Blackash-CVE-2025-41115

Advisory: https://grafana.com/blog/2025/11/19/grafana-enterprise-security-update-critical-severity-security-fix-for-cve-2025-41115/

Timeline:

2025-11-04 - Issue discovered internally
2025-11-04 - Incident declared
2025-11-05 - Cloud vendors privately notified & patched
2025-11-19 - Public disclosure and official fix released

##

CVE-2025-11001
(7.0 HIGH)

EPSS: 0.31%

updated 2025-11-21T15:13:59.083000

12 posts

7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this product is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of symbolic links in ZIP files. Craf

3 repos

https://github.com/lastvocher/7zip-CVE-2025-11001

https://github.com/pacbypass/CVE-2025-11001

https://github.com/shalevo13/Se7enSlip

hackmag at 2025-11-21T15:00:06.490Z ##

⚪ Attackers are exploiting a 7-Zip RCE vulnerability

🗨️ NHS England Digital warns of active exploitation of the CVE-2025-11001 vulnerability in the 7-Zip archiver. Users are advised to urgently update to version 25.00, released in July 2025.

🔗 https://hackmag.com/news/7-zip-flaw

#news

##

hackmag@infosec.exchange at 2025-11-21T15:00:06.000Z ##

⚪ Attackers are exploiting a 7-Zip RCE vulnerability

🗨️ NHS England Digital warns of active exploitation of the CVE-2025-11001 vulnerability in the 7-Zip archiver. Users are advised to urgently update to version 25.00, released in July 2025.

🔗 https://hackmag.com/news/7-zip-flaw

#news

##

cR0w@infosec.exchange at 2025-11-20T21:50:36.000Z ##

RE: https://infosec.exchange/@cR0w/115578584891891903

Never mind. Bad info. CVE-2025-11001 is not yet publicly known as EITW.

Removed erroneous references to active exploitation.
The NHS England National CSOC has not observed exploitation of CVE-2025-11001 in the wild, and have removed references to exploitation that were included in error. The National CSOC is aware of a public proof-of-concept exploit.

##

jos1264@social.skynetcloud.site at 2025-11-20T13:30:02.000Z ##

Critical 7-Zip Vulnerability CVE-2025-11001 Prompts NHS Cyber Alert https://thecyberexpress.com/cve-2025-11001-7zip-vulnerability-nhs/ #TheCyberExpressNews #Vulnerabilities #TheCyberExpress #FirewallDaily #Vulnerability #CVE202511001 #NHSDigital #CyberNews #7Zip

##

simonzerafa@infosec.exchange at 2025-11-20T08:31:53.000Z ##

If you use 7zip, or its forks and derivatives, then ensure you have updated to v25.0 or later. Check now! 🙂👍

https://www.helpnetsecurity.com/2025/11/19/7-zip-vulnerability-is-being-actively-exploited-nhs-england-warns-cve-2025-11001/

#7Zip #CVE2005-11011 #RCE

##

cR0w@infosec.exchange at 2025-11-19T21:54:07.000Z ##

RE: https://infosec.exchange/@cR0w/115578517128494200

And it's reported to be EITW:

https://digital.nhs.uk/cyber-alerts/2025/cc-4719

Active exploitation of CVE-2025-11001 has been observed in the wild.

##

cR0w@infosec.exchange at 2025-11-19T21:36:53.000Z ##

RE: https://infosec.exchange/@cR0w/115577705920481071

One of these is now published:

https://www.cve.org/CVERecord?id=CVE-2025-11001

##

sambowne@infosec.exchange at 2025-11-19T19:32:38.000Z ##

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001) https://thehackernews.com/2025/11/hackers-actively-exploiting-7-zip.html

##

cR0w@infosec.exchange at 2025-11-19T18:10:34.000Z ##

RE: https://infosec.exchange/@DarkWebInformer/115577677075391866

Did someone break embargo or what? These links are apparently for 0days for CVE-2025-11001 and CVE-2025-11002 but neither one of those are published as of right now.

https://www.cve.org/CVERecord?id=CVE-2025-11001

https://www.cve.org/CVERecord?id=CVE-2025-11002

##

DarkWebInformer@infosec.exchange at 2025-11-19T18:03:14.000Z ##

🚨CVE-2025-11001: Active Exploitation Reported in 7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability

CVSS: 7.0

PoC: https://github.com/pacbypass/CVE-2025-11001

Write-up: https://pacbypass.github.io/2025/10/16/diffing-7zip-for-cve-2025-11001.html

##

jos1264@social.skynetcloud.site at 2025-11-19T17:35:02.000Z ##

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001) https://thehackernews.com/2025/11/hackers-actively-exploiting-7-zip.html

##

bontchev@infosec.exchange at 2025-11-19T17:21:30.000Z ##

"Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)":

https://thehackernews.com/2025/11/hackers-actively-exploiting-7-zip.html

Note: This requires the ability to run 7-Zip as admin (because symbolic link creation is a privileged operation in Windows), so the whole thing is a bit ho-hum.

##

CVE-2025-40601
(7.5 HIGH)

EPSS: 0.05%

updated 2025-11-21T15:13:59.083000

3 posts

A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

jbhall56 at 2025-11-21T12:37:20.753Z ##

Tracked as CVE-2025-40601, this denial-of-service vulnerability is caused by a stack-based buffer overflow impacting Gen8 and Gen7 (hardware and virtual) firewalls. https://www.bleepingcomputer.com/news/security/new-sonicwall-sonicos-flaw-allows-hackers-to-crash-firewalls/

##

jbhall56@infosec.exchange at 2025-11-21T12:37:20.000Z ##

Tracked as CVE-2025-40601, this denial-of-service vulnerability is caused by a stack-based buffer overflow impacting Gen8 and Gen7 (hardware and virtual) firewalls. https://www.bleepingcomputer.com/news/security/new-sonicwall-sonicos-flaw-allows-hackers-to-crash-firewalls/

##

jos1264@social.skynetcloud.site at 2025-11-20T15:15:02.000Z ##

CVE-2025-40601 - SonicOS SSLVPN Stack-Based Buffer Overflow Denial of Service https://cvefeed.io/vuln/detail/CVE-2025-40601

##

CVE-2025-0645
(7.2 HIGH)

EPSS: 0.04%

updated 2025-11-21T15:13:59.083000

1 posts

Unrestricted Upload of File with Dangerous Type vulnerability in Narkom Communication and Software Technologies Trade Ltd. Co. Pyxis Signage allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Pyxis Signage: through 31012025.

jos1264@social.skynetcloud.site at 2025-11-20T17:20:02.000Z ##

CVE-2025-0645 - Arbitrary File Upload in Narkom Communication Technologies' Pyxis Signage https://cvefeed.io/vuln/detail/CVE-2025-0645

##

CVE-2025-11676
(0 None)

EPSS: 0.03%

updated 2025-11-21T15:13:59.083000

2 posts

Improper input validation vulnerability in TP-Link System Inc. TL-WR940N V6 (UPnP modules), which allows unauthenticated adjacent attackers to perform DoS attack. This issue affects TL-WR940N V6 <= Build 220801.

cR0w@infosec.exchange at 2025-11-20T14:41:24.000Z ##

TP-Link

https://www.cve.org/CVERecord?id=CVE-2025-11676

EPSS: 0.03%

updated 2025-11-21T15:13:59.083000

2 posts

OpenSTAManager is an open source management software for technical assistance and invoicing. Prior to version 2.9.5, an authenticated SQL Injection vulnerability in the API allows any user, regardless of permission level, to execute arbitrary SQL queries. By manipulating the display parameter in an API request, an attacker can exfiltrate, modify, or delete any data in the database, leading to a fu

jos1264@social.skynetcloud.site at 2025-11-19T22:20:03.000Z ##

CVE-2025-65103 - OpenSTAManager has an authenticated SQL Injection vulnerability in API via 'display' parameter https://cvefeed.io/vuln/detail/CVE-2025-65103

##

jos1264@social.skynetcloud.site at 2025-11-19T20:45:03.000Z ##

CVE-2025-65103 - OpenSTAManager has an authenticated SQL Injection vulnerability in API via 'display' parameter https://cvefeed.io/vuln/detail/CVE-2025-65103

##

CVE-2025-63932
(7.3 HIGH)

EPSS: 0.23%

updated 2025-11-21T15:13:59.083000

1 posts

D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote code execution vulnerability in the cgibin binary. The HNAP service provided by cgibin does not filter the HTTP SOAPAction header field. The unauthenticated remote attacker can execute the shell command.

cR0w@infosec.exchange at 2025-11-19T20:20:00.000Z ##

D-Link

https://www.cve.org/CVERecord?id=CVE-2025-63932

cc: @Dio9sys @da_667

#internetOfShit

##

CVE-2025-12160
(7.2 HIGH)

EPSS: 0.07%

updated 2025-11-21T15:13:13.800000

1 posts

The Simple User Registration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpr_admin_msg' parameter in all versions up to, and including, 6.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

offseq at 2025-11-21T10:33:53.318Z ##

⚠️ HIGH severity CVE-2025-12160: Stored XSS in nmedia Simple User Registration (≤6.6) for WordPress. Unauthenticated attackers can inject scripts via 'wpr_admin_msg'. Disable plugin & monitor for abuse. Details: https://radar.offseq.com/threat/cve-2025-12160-cwe-79-improper-neutralization-of-i-d593386d #OffSeq #WordPress #XSS #Infosec

##

CVE-2025-13149
(4.3 MEDIUM)

Azure Monitor Elevation of Privilege Vulnerability

jos1264@social.skynetcloud.site at 2025-11-21T00:55:02.000Z ##

CVE-2025-62207 - Azure Monitor Elevation of Privilege Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-62207

##

jos1264@social.skynetcloud.site at 2025-11-21T00:50:02.000Z ##

CVE-2025-62207 - Azure Monitor Elevation of Privilege Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-62207

##

cR0w@infosec.exchange at 2025-11-20T22:44:18.000Z ##

OMG there are so many more.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64656

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64655

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59245

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62207

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64660

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62459

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64657

##

CVE-2025-13485
(7.3 HIGH)

EPSS: 0.03%

updated 2025-11-21T15:13:13.800000

1 posts

A security flaw has been discovered in itsourcecode Online File Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=login. The manipulation of the argument Username results in sql injection. The attack may be launched remotely. The exploit has been released to the public and may be exploited.

jos1264@social.skynetcloud.site at 2025-11-21T00:50:03.000Z ##

CVE-2025-13485 - itsourcecode Online File Management System ajax.php sql injection https://cvefeed.io/vuln/detail/CVE-2025-13485

##

CVE-2025-52668
(8.7 HIGH)

EPSS: 0.03%

updated 2025-11-21T15:13:13.800000

2 posts

Improper input neutralization in the stats-conversions.php script in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes potential information disclosure and session hijacking via a stored XSS attack.

updated 2025-11-21T15:13:13.800000

updated 2025-11-21T09:30:39

2 posts

The WP AUDIO GALLERY plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in all versions up to, and including, 2.0. This is due to the `wpag_uploadaudio_callback()` AJAX handler not properly validating user-supplied file paths in the `audio_upload` parameter before passing them to `unlink()`. This makes it possible for authenticated attackers, wit

jos1264@social.skynetcloud.site at 2025-11-21T09:50:01.000Z ##

CVE-2025-13322 - WP AUDIO GALLERY <= 2.0 - Authenticated (Subscriber+) Arbitrary File Deletion via 'audio_upload' Parameter https://cvefeed.io/vuln/detail/CVE-2025-13322

##

jos1264@social.skynetcloud.site at 2025-11-21T09:15:02.000Z ##

CVE-2025-13322 - WP AUDIO GALLERY <= 2.0 - Authenticated (Subscriber+) Arbitrary File Deletion via 'audio_upload' Parameter https://cvefeed.io/vuln/detail/CVE-2025-13322

##

CVE-2025-13159
(7.1 HIGH)

EPSS: 0.03%

updated 2025-11-21T09:30:39

1 posts

updated 2025-11-21T03:31:20

2 posts

EPSON WebConfig and Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts. An administrative user's password may be identified through a brute force attack.

updated 2025-11-21T00:30:29

3 posts

Improper authorization in Dynamics OmniChannel SDK Storage Containers allows an unauthorized attacker to elevate privileges over a network.

jos1264@social.skynetcloud.site at 2025-11-21T00:55:03.000Z ##

CVE-2025-64655 - Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-64655

##

jos1264@social.skynetcloud.site at 2025-11-21T00:50:02.000Z ##

CVE-2025-64655 - Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-64655

##

cR0w@infosec.exchange at 2025-11-20T22:44:18.000Z ##

OMG there are so many more.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64656

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64655

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59245

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62207

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64660

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62459

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64657

##

CVE-2025-62459
(8.3 HIGH)

EPSS: 0.08%

updated 2025-11-21T00:30:28

3 posts

Microsoft Defender Portal Spoofing Vulnerability

jos1264@social.skynetcloud.site at 2025-11-21T00:55:02.000Z ##

CVE-2025-62459 - Microsoft Defender Portal Spoofing Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-62459

##

jos1264@social.skynetcloud.site at 2025-11-21T00:50:02.000Z ##

CVE-2025-62459 - Microsoft Defender Portal Spoofing Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-62459

##

cR0w@infosec.exchange at 2025-11-20T22:44:18.000Z ##

OMG there are so many more.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64656

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64655

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59245

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62207

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64660

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62459

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64657

##

CVE-2025-59245
(9.8 CRITICAL)

EPSS: 0.37%

updated 2025-11-21T00:30:28

3 posts

Microsoft SharePoint Online Elevation of Privilege Vulnerability

jos1264@social.skynetcloud.site at 2025-11-21T00:55:02.000Z ##

CVE-2025-59245 - Microsoft SharePoint Online Elevation of Privilege Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-59245

##

jos1264@social.skynetcloud.site at 2025-11-21T00:50:02.000Z ##

CVE-2025-59245 - Microsoft SharePoint Online Elevation of Privilege Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-59245

##

cR0w@infosec.exchange at 2025-11-20T22:44:18.000Z ##

OMG there are so many more.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64656

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64655

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59245

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62207

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64660

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62459

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64657

##

CVE-2025-36072
(8.8 HIGH)

EPSS: 0.07%

updated 2025-11-21T00:30:28

2 posts

IBM webMethods Integration 10.11 through 10.11_Core_Fix22, 10.15 through 10.15_Core_Fix22, and 11.1 through 11.1_Core_Fix6 IBM webMethods Integration allow an authenticated user to execute arbitrary code on the system, caused by the deserialization of untrusted object graphs data.

jos1264@social.skynetcloud.site at 2025-11-21T00:55:02.000Z ##

CVE-2025-36072 - IBM webMethods Integration Deserialization https://cvefeed.io/vuln/detail/CVE-2025-36072

##

jos1264@social.skynetcloud.site at 2025-11-21T00:50:01.000Z ##

CVE-2025-36072 - IBM webMethods Integration Deserialization https://cvefeed.io/vuln/detail/CVE-2025-36072

##

CVE-2025-64660
(5.7 MEDIUM)

EPSS: 0.05%

updated 2025-11-21T00:30:28

2 posts

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to bypass a security feature over a network.

jos1264@social.skynetcloud.site at 2025-11-21T00:50:03.000Z ##

CVE-2025-64660 - GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-64660

##

cR0w@infosec.exchange at 2025-11-20T22:44:18.000Z ##

OMG there are so many more.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64656

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64655

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59245

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62207

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64660

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62459

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64657

##

CVE-2025-13484
(2.4 LOW)

EPSS: 0.03%

updated 2025-11-21T00:30:28

1 posts

A vulnerability was identified in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affects unknown code of the file /admin/customer-list.php. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit is publicly available and might be used.

jos1264@social.skynetcloud.site at 2025-11-21T00:50:01.000Z ##

CVE-2025-13484 - Campcodes Complete Online Beauty Parlor Management System customer-list.php cross site scripting https://cvefeed.io/vuln/detail/CVE-2025-13484

##

CVE-2025-48986
(8.8 HIGH)

EPSS: 0.02%

updated 2025-11-21T00:30:24

2 posts

Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in attacker to change other users' email address and potentialy take over their accounts using the forgot password functionality.

jos1264@social.skynetcloud.site at 2025-11-20T22:50:01.000Z ##

CVE-2025-48986 - Revive Adserver Authorization Bypass Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-48986

##

jos1264@social.skynetcloud.site at 2025-11-20T21:45:01.000Z ##

CVE-2025-48986 - Revive Adserver Authorization Bypass Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-48986

##

CVE-2025-49752
(10.0 CRITICAL)

EPSS: 0.09%

updated 2025-11-21T00:30:23

3 posts

Azure Bastion Elevation of Privilege Vulnerability

1 repos

https://github.com/skipdurex661/cve-2025-49752-Exploit

jos1264@social.skynetcloud.site at 2025-11-21T00:55:02.000Z ##

CVE-2025-49752 - Azure Bastion Elevation of Privilege Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-49752

##

jos1264@social.skynetcloud.site at 2025-11-21T00:50:01.000Z ##

updated 2025-11-20T21:56:35

1 posts

Snipe-IT v8.3.4 (build 20218) contains a reflected cross-site scripting (XSS) vulnerability in the CSV Import workflow. When an invalid CSV file is uploaded, the application returns a progress_message value that is rendered as raw HTML in the admin interface. An attacker can intercept and modify the POST /livewire/update request to inject arbitrary HTML or JavaScript into the progress_message. Bec

1 repos

https://github.com/cybercrewinc/CVE-2025-64027

jos1264@social.skynetcloud.site at 2025-11-20T19:25:01.000Z ##

CVE-2025-64027 - Snipe-IT Reflected Cross-Site Scripting Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-64027

##

CVE-2025-40605
(5.3 MEDIUM)

EPSS: 0.03%

updated 2025-11-20T21:31:39

2 posts

A Path Traversal vulnerability has been identified in the Email Security appliance allows an attacker to manipulate file system paths by injecting crafted directory-traversal sequences (such as ../) and may access files and directories outside the intended restricted path.

DarkWebInformer@infosec.exchange at 2025-11-20T19:15:47.000Z ##

🚨CVE-2025-40604 and CVE-2025-40605: Download of Code Without Integrity Check Vulnerability // Path Traversal Vulnerability

CVSS: 7.2 & 4.9

Advisory: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0018

Affected Product(s): Email Security (ES Appliance 5000, 5050, 7000, 7050, 9000, VMWare and Hyper-V)

Affected Versions: 10.0.33.8195 and earlier versions.

##

jos1264@social.skynetcloud.site at 2025-11-20T15:15:01.000Z ##

CVE-2025-40605 - Cisco Email Security Path Traversal Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-40605

##

CVE-2025-40604
(6.5 MEDIUM)

EPSS: 0.01%

updated 2025-11-20T21:31:39

2 posts

Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifying signatures, allowing attackers with VMDK or datastore access to modify system files and gain persistent arbitrary code execution.

DarkWebInformer@infosec.exchange at 2025-11-20T19:15:47.000Z ##

🚨CVE-2025-40604 and CVE-2025-40605: Download of Code Without Integrity Check Vulnerability // Path Traversal Vulnerability

CVSS: 7.2 & 4.9

Advisory: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0018

updated 2025-11-20T18:32:09

1 posts

A vulnerability was detected in Tenda CH22 1.0.0.1. Affected is the function formWrlExtraGet of the file /goform/WrlExtraGet. Performing manipulation of the argument chkHz results in buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used.

cR0w@infosec.exchange at 2025-11-19T17:21:58.000Z ##

Tenda

https://www.cve.org/CVERecord?id=CVE-2025-13400

cc: @Dio9sys @da_667

#internetOfShit

##

CVE-2025-63207
(9.8 CRITICAL)

EPSS: 0.06%

updated 2025-11-20T18:32:08

1 posts

The R.V.R Elettronica TEX product (firmware TEXL-000400, Web GUI TLAN-000400) is vulnerable to broken access control due to improper authentication checks on the /_Passwd.html endpoint. An attacker can send an unauthenticated POST request to change the Admin, Operator, and User passwords, resulting in complete system compromise.

jos1264@social.skynetcloud.site at 2025-11-20T19:45:02.000Z ##

CVE-2025-63207 - R.V.R Elettronica TEX Web GUI Authentication Bypass Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-63207

##

CVE-2025-65220
(4.3 MEDIUM)

updated 2025-11-20T15:30:30

2 posts

A flaw has been found in Tenda AC21 16.03.08.16. This affects an unknown part of the file /goform/SetIpMacBind. Executing manipulation of the argument list can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been published and may be used.

There's an unpatched admin auth bypass in the Twonky Server

https://www.rapid7.com/blog/post/cve-2025-13315-cve-2025-13316-critical-twonky-server-authentication-bypass-not-fixed/

##

jos1264@social.skynetcloud.site at 2025-11-19T20:10:03.000Z ##

CVE-2025-13316 - Hard-coded encryption keys in Twonky Server https://cvefeed.io/vuln/detail/CVE-2025-13316

##

CVE-2025-13315(CVSS UNKNOWN)

EPSS: 0.17%

updated 2025-11-19T18:31:28

2 posts

Twonky Server 8.5.2 on Linux and Windows is vulnerable to an access control flaw. An unauthenticated attacker can bypass web service API authentication controls to leak a log file and read the administrator's username and encrypted password.

campuscodi@mastodon.social at 2025-11-20T13:20:58.000Z ##

updated 2025-11-19T15:32:36

3 posts

A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.1, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9, FortiWeb 7.2.0 through 7.2.11, FortiWeb 7.0.0 through 7.0.11 may allow an attacker to execute administrative commands on the system via crafted HTTP or HTTPS requests.

Nuclei template

10 repos

https://github.com/AN5I/cve-2025-64446-fortiweb-exploit

https://github.com/verylazytech/CVE-2025-64446

https://github.com/B1ack4sh/Blackash-CVE-2025-64446

https://github.com/sxyrxyy/CVE-2025-64446-FortiWeb-CGI-Bypass-PoC

https://github.com/lincemorado97/CVE-2025-64446_CVE-2025-58034

https://github.com/soltanali0/CVE-2025-64446-Exploit

https://github.com/fevar54/CVE-2025-64446-PoC---FortiWeb-Path-Traversal

https://github.com/sensepost/CVE-2025-64446

https://github.com/D3crypT0r/CVE-2025-64446

https://github.com/Death112233/CVE-2025-64446-

decio@infosec.exchange at 2025-11-20T12:54:39.000Z ##

[VULN] ⚠️Fortinet : encore une faille zero-day dans FortiWeb (CVE-2025-58034)

"Il y a quelques jours, Fortinet a dévoilé une première faille de sécurité zero-day dans FortiWeb : CVE-2025-64446. Dans le sillage de cette première vulnérabilité, une seconde faille de sécurité zero-day a été patchée par l'éditeur américain. Il s'agit d'une faiblesse de type "injection de commande au niveau de l'OS" qu'un attaquant peut exploiter en étant authentifié.

Fortinet précise qu'elle peut "permettre à un attaquant authentifié d'exécuter du code non autorisé sur le système sous-jacent via des requêtes HTTP ou des commandes CLI spécialement conçues."
👇
https://www.it-connect.fr/fortinet-cve-2025-58034-encore-une-faille-zero-day-dans-fortiweb/

"Multiple OS command injection in API and CLI"
👇
https://fortiguard.fortinet.com/psirt/FG-IR-25-513

💬
⬇️
https://infosec.pub/post/37909261

#CyberVeille #fortiweb #CVE_2025_58034

##

nopatience@swecyb.com at 2025-11-19T20:42:51.000Z ##

A few stories you might have missed:

https://www.greynoise.io/blog/fortiweb-cve-2025-64446

Expected exploitation of Fortinet ../ vulnerabilities. Exploitation seen from November 17. Always the useful data from GreyNoise.

https://aws.amazon.com/blogs/security/new-amazon-threat-intelligence-findings-nation-state-actors-bridging-cyber-and-kinetic-warfare/

"Interesting" to see how the physical and cyber realm merges.

https://nattothoughts.substack.com/p/chinas-cybersecurity-companies-advancing

Natto on Chinese attack-defense labs advancing Chinese cyber offensive capabilities and how things "over there" is organized. Great content, as usual.

#Cybersecurity #ThreatIntel #Infosec

##

hrbrmstr@mastodon.social at 2025-11-19T15:32:07.000Z ##

UPDATE: Blog's up => https://www.greynoise.io/blog/fortiweb-cve-2025-64446

-----

Trying to multitask (badly) but we are seeing exploitation slings against Fortinet FortiWeb CVE-2025-64446 (Auth Bypass).

https://viz.greynoise.io/tags/fortinet-fortiweb-cve-2025-64446-authentication-bypass-attempt?days=10

Def an "initial access broker"/"ransomware operator" vibe to the slings.

Will update this with blog link if/when it comes out today.

##

CVE-2025-58034
(7.2 HIGH)

EPSS: 2.42%

updated 2025-11-19T00:31:24

6 posts

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiWeb 8.0.0 through 8.0.1, FortiWeb 7.6.0 through 7.6.5, FortiWeb 7.4.0 through 7.4.10, FortiWeb 7.2.0 through 7.2.11, FortiWeb 7.0.0 through 7.0.11 may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP requests or

2 repos

https://github.com/lincemorado97/CVE-2025-64446_CVE-2025-58034

https://github.com/B1ack4sh/Blackash-CVE-2025-58034

christopherkunz@chaos.social at 2025-11-21T06:35:27.000Z ##

BINGO TIME! With CVE-2025-58034, Fortinet secures the crown in my Insecurity Appliance Bingo. This is technically a "high" severity vuln, but since it's being actively exploited and has landed a spot on CISA KEV, I'm admitting it.

https://cku.gt/appbingo25

Reaching a bingo took longer than expected, with FortiNet and Ivanti sitting at 5/6 vulns since about July. But now, there is a well-deserved winner.

I'm now taking new vuln class and vendor suggestions for next year's edition.

##

jbhall56@infosec.exchange at 2025-11-20T13:53:26.000Z ##

The new bug, tracked as CVE-2025-58034, is an OS command injection vulnerability that allows authenticated attackers to execute unauthorized code on the underlying system using crafted HTTP requests or CLI commands. https://www.theregister.com/2025/11/19/fortinet_confirms_second_fortiweb_0day/

##

decio@infosec.exchange at 2025-11-20T12:54:39.000Z ##

[VULN] ⚠️Fortinet : encore une faille zero-day dans FortiWeb (CVE-2025-58034)

"Il y a quelques jours, Fortinet a dévoilé une première faille de sécurité zero-day dans FortiWeb : CVE-2025-64446. Dans le sillage de cette première vulnérabilité, une seconde faille de sécurité zero-day a été patchée par l'éditeur américain. Il s'agit d'une faiblesse de type "injection de commande au niveau de l'OS" qu'un attaquant peut exploiter en étant authentifié.

Fortinet précise qu'elle peut "permettre à un attaquant authentifié d'exécuter du code non autorisé sur le système sous-jacent via des requêtes HTTP ou des commandes CLI spécialement conçues."
👇
https://www.it-connect.fr/fortinet-cve-2025-58034-encore-une-faille-zero-day-dans-fortiweb/

"Multiple OS command injection in API and CLI"
👇
https://fortiguard.fortinet.com/psirt/FG-IR-25-513

💬
⬇️
https://infosec.pub/post/37909261

#CyberVeille #fortiweb #CVE_2025_58034

##

benzogaga33@mamot.fr at 2025-11-20T10:40:02.000Z ##

Fortinet – CVE-2025-58034 : encore une faille zero-day dans FortiWeb ! https://www.it-connect.fr/fortinet-cve-2025-58034-encore-une-faille-zero-day-dans-fortiweb/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Fortinet

##

AAKL@infosec.exchange at 2025-11-19T17:02:15.000Z ##

New.

CISA Unveils Guide to Combat Bulletproof Hosting Cybercrime https://www.cisa.gov/news-events/news/cisa-unveils-guide-combat-bulletproof-hosting-cybercrime

From yesterday:

CVE-2025-58034: Fortinet FortiWeb OS Command Injection Vulnerability added to the KEV catalogue https://www.cve.org/CVERecord?id=CVE-2025-58034 #CISA #Fortinet #cybercrime #infosec

##

DarkWebInformer@infosec.exchange at 2025-11-19T16:46:35.000Z ##

CVE-2025-58034 has been added to the CISA KEV Catalog

Vuln: Fortinet FortiWeb OS Command Injection Vulnerability

https://darkwebinformer.com/cisa-kev-catalog/

##

CVE-2025-9501
(9.0 CRITICAL)

EPSS: 0.83%

updated 2025-11-18T14:06:29.817000

3 posts

The W3 Total Cache WordPress plugin before 2.8.13 is vulnerable to command injection via the _parse_dynamic_mfunc function, allowing unauthenticated users to execute PHP commands by submitting a comment with a malicious payload to a post.

hackmag at 2025-11-21T21:00:04.307Z ##

⚪ WordPress Plugin W3 Total Cache Vulnerability Allows PHP Command Injection

🗨️ In the popular WordPress plugin W3 Total Cache, a critical vulnerability was discovered CVE-2025-9501, allowing arbitrary PHP command execution on the server without authentication. To carry out the attack, it is sufficient to post a comment with a payload on the vulnerable site.

🔗 https://hackmag.com/news/w3-total-cache-injection

#news

##

hackmag@infosec.exchange at 2025-11-21T21:00:04.000Z ##

updated 2025-11-12T16:19:59.103000

2 posts

Milvus is an open-source vector database built for generative AI applications. An unauthenticated attacker can exploit a vulnerability in versions prior to 2.4.24, 2.5.21, and 2.6.5 to bypass all authentication mechanisms in the Milvus Proxy component, gaining full administrative access to the Milvus cluster. This grants the attacker the ability to read, modify, or delete data, and to perform priv

2 repos

https://github.com/shinyseam/CVE-2025-64513

https://github.com/B1ack4sh/Blackash-CVE-2025-64513

beyondmachines1 at 2025-11-21T10:01:32.008Z ##

Critical authentication bypass flaw enables takeover of Milvus Vector Database

Milvus vector database contains a critical authentication bypass vulnerability (CVE-2025-64513) where attackers can forge a "sourceId" HTTP header with a hardcoded constant to gain full administrative access to clusters. Researchers indicate over 6,000 vulnerable instances exposed online.

**If you're running Milvus vector database, immediately upgrade to the patched version (2.4.24+, 2.5.21+, or 2.6.5+ depending on your branch). There's a flaw which allows attackers to send packets with crafted headers claiming they are authenticated. If you can't patch right away, temporarily block the "sourceId" HTTP header at your gateway or load balancer level. Prioritize the upgrade as filtering the header is a temporary fix.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-authentication-bypass-flaw-enables-takeover-of-milvus-vector-database-2-1-2-k-y/gD2P6Ple2L

##

beyondmachines1@infosec.exchange at 2025-11-21T10:01:32.000Z ##

Critical authentication bypass flaw enables takeover of Milvus Vector Database

Milvus vector database contains a critical authentication bypass vulnerability (CVE-2025-64513) where attackers can forge a "sourceId" HTTP header with a hardcoded constant to gain full administrative access to clusters. Researchers indicate over 6,000 vulnerable instances exposed online.

**If you're running Milvus vector database, immediately upgrade to the patched version (2.4.24+, 2.5.21+, or 2.6.5+ depending on your branch). There's a flaw which allows attackers to send packets with crafted headers claiming they are authenticated. If you can't patch right away, temporarily block the "sourceId" HTTP header at your gateway or load balancer level. Prioritize the upgrade as filtering the header is a temporary fix.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-authentication-bypass-flaw-enables-takeover-of-milvus-vector-database-2-1-2-k-y/gD2P6Ple2L

##

CVE-2025-59287
(9.8 CRITICAL)

EPSS: 60.40%

updated 2025-11-11T15:32:22

1 posts

Deserialization of untrusted data in Windows Server Update Service allows an unauthorized attacker to execute code over a network.

Nuclei template

22 repos

https://github.com/N3k0t-dev/PoC-CVE-collection

https://github.com/QurtiDev/WSUS-CVE-2025-59287-RCE

https://github.com/keeganparr1/CVE-2025-59287-hawktrace

https://github.com/tecxx/CVE-2025-59287-WSUS

https://github.com/fsanzmoya/wsus_CVE-2025-59287

https://github.com/mrk336/Breaking-the-Update-Chain-Inside-CVE-2025-59287-and-the-WSUS-RCE-Threat

https://github.com/jiansiting/CVE-2025-59287

https://github.com/mubix/Find-WSUS

https://github.com/garvitv14/CVE-2025-59287

https://github.com/0xBruno/WSUSploit.NET

https://github.com/Twodimensionalitylevelcrossing817/CVE-2025-59287

https://github.com/dexterm300/cve-2025-59287-exploit-poc

https://github.com/RadzaRr/WSUSResponder

https://github.com/Lupovis/Honeypot-for-CVE-2025-59287-WSUS

https://github.com/0x7556/CVE-2025-59287

https://github.com/M507/CVE-2025-59287-PoC

https://github.com/mrmtwoj/WSUS-Patch-Level-Scanner-A-Lightweight-Tool-for-Detecting-Vulnerable-Microsoft-WSUS-Deployments

https://github.com/esteban11121/WSUS-RCE-Mitigation-59287

https://github.com/th1n0/CVE-2025-59287

https://github.com/Adel-kaka-dz/cve-2025-59287

https://github.com/FurkanKAYAPINAR/CVE-2025-59287

https://github.com/AdityaBhatt3010/CVE-2025-59287-When-your-patch-server-becomes-the-attack-vector

AAKL@infosec.exchange at 2025-11-20T17:23:52.000Z ##

New. This relates to CVE-2025-59287. Threat actors have been abusing the open-source security tool Velociraptor, "to set up communications back to command-and-control (C2) servers."

Huntress: Velociraptor Misuse, Pt. I: WSUS-Up https://www.huntress.com/blog/velociraptor-misuse-part-one-wsus-up @huntress #Windows #infosec #Microsoft #opensource

##

CVE-2025-62171
(4.4 MEDIUM)

EPSS: 0.08%

updated 2025-11-03T18:32:51

1 posts

## Summary CVE-2025-57803 claims to be patched in ImageMagick 7.1.2-2, but **the fix is incomplete and ineffective**. The latest version **7.1.2-5 remains vulnerable** to the same integer overflow attack. The patch added `BMPOverflowCheck()` but placed it **after** the overflow occurs, making it useless. A malicious 58-byte BMP file can trigger AddressSanitizer crashes and DoS. **Affected Versi

Ubuntu@activitypub.awakari.com at 2025-11-20T22:32:16.000Z ## Ubuntu: ImageMagick Critical DoS Attack Advisory USN-7876-1 CVE-2025-62171 ImageMagick could be made to crash or run programs as your login if it opened a specially crafted file.

#Ubuntu #Linux #Distribution #- #Security #Advisories

Origin | Interest | Match ##

CVE-2024-36331
(3.2 LOW)

EPSS: 0.02%

updated 2025-11-03T18:32:48

1 posts

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity.

Ubuntu@activitypub.awakari.com at 2025-11-21T16:02:04.000Z ## Ubuntu 24.04: Critical Memory Corruption CVE-2024-36331 in Linux Kernel Several security issues were fixed in the Linux kernel.

#Ubuntu #Linux #Distribution #- #Security #Advisories

Origin | Interest | Match ##

CVE-2025-24893
(9.8 CRITICAL)

EPSS: 94.26%

updated 2025-10-30T19:54:05

1 posts

### Impact Any guest can perform arbitrary remote code execution through a request to `SolrSearch`. This impacts the confidentiality, integrity and availability of the whole XWiki installation. To reproduce on an instance, without being logged in, go to `<host>/xwiki/bin/get/Main/SolrSearch?media=rss&text=%7D%7D%7D%7B%7Basync%20async%3Dfalse%7D%7D%7B%7Bgroovy%7D%7Dprintln%28"Hello%20from"%20%2B%2

Nuclei template

38 repos

https://github.com/Bishben/xwiki-15.10.8-reverse-shell-cve-2025-24893

https://github.com/b0ySie7e/CVE-2025-24893

https://github.com/AzureADTrent/CVE-2025-24893-Reverse-Shell

https://github.com/andwati/CVE-2025-24893

https://github.com/AliAmouz/CVE2025-24893

https://github.com/dollarboysushil/CVE-2025-24893-XWiki-Unauthenticated-RCE-Exploit-POC

https://github.com/AliElKhatteb/CVE-2024-32019-POC

https://github.com/B1ack4sh/Blackash-CVE-2025-24893

https://github.com/Artemir7/CVE-2025-24893-EXP

https://github.com/zs1n/CVE-2025-24893

https://github.com/Th3Gl0w/CVE-2025-24893-POC

https://github.com/torjan0/xwiki_solrsearch-rce-exploit

https://github.com/dhiaZnaidi/CVE-2025-24893-PoC

https://github.com/iSee857/CVE-2025-24893-PoC

https://github.com/IIIeJlyXaKapToIIIKu/CVE-2025-24893-XWiki-unauthenticated-RCE-via-SolrSearch

https://github.com/kimtangker/CVE-2025-24893

https://github.com/nopgadget/CVE-2025-24893

https://github.com/ibadovulfat/CVE-2025-24893_HackTheBox-Editor-Writeup

https://github.com/gotr00t0day/CVE-2025-24893

https://github.com/Yukik4z3/CVE-2025-24893

https://github.com/rvizx/CVE-2025-24893

https://github.com/Y2F05p2w/CVE-2025-24893

https://github.com/alaxar/CVE-2025-24893

https://github.com/CMassa/CVE-2025-24893

https://github.com/Infinit3i/CVE-2025-24893

https://github.com/Retro023/CVE-2025-24893-POC

https://github.com/80Ottanta80/CVE-2025-24893-PoC

https://github.com/mah4nzfr/CVE-2025-24893

https://github.com/Hex00-0x4/CVE-2025-24893-XWiki-RCE

https://github.com/The-Red-Serpent/CVE-2025-24893

https://github.com/570RMBR3AK3R/xwiki-cve-2025-24893-poc

https://github.com/investigato/cve-2025-24893-poc

https://github.com/x0da6h/POC-for-CVE-2025-24893

https://github.com/achnouri/Editor-CTF-writre-up

https://github.com/D3Ext/CVE-2025-24893

https://github.com/gunzf0x/CVE-2025-24893

https://github.com/Kai7788/CVE-2025-24893-RCE-PoC

https://github.com/hackersonsteroids/cve-2025-24893

hackmag@infosec.exchange at 2025-11-20T16:00:22.000Z ##

⚪ RondoDox Botnet Exploits XWiki Vulnerability to Hack Servers

🗨️ Experts warn of a new wave of attacks by the RondoDox botnet: the malware has begun actively exploiting a critical RCE vulnerability in the XWiki Platform (CVE-2025-24893). The flaw is already listed in CISA’s catalog of actively exploited vulnerabilities, and the number of exploitation attempts has…

🔗 https://hackmag.com/news/cve-2025-24893

#news

##

https://github.com/AshrafZaryouh/CVE-2025-61882-Executive-Summary

https://github.com/Zhert-lab/CVE-2025-61882-CVE-2025-61884

https://github.com/siddu7575/CVE-2025-61882-CVE-2025-61884

https://github.com/B1ack4sh/Blackash-CVE-2025-61882

https://github.com/AdityaBhatt3010/CVE-2025-61882-Oracle-E-Business-Suite-Pre-Auth-RCE-Exploit

https://github.com/GhoStZA-debug/CVE-2025-61882

https://github.com/BattalionX/http-oracle-ebs-cve-2025-61882.nse

https://github.com/watchtowrlabs/watchTowr-vs-Oracle-E-Business-Suite-CVE-2025-61882

PC_Fluesterer@social.tchncs.de at 2025-11-21T14:29:40.000Z ##

Weiteres Zero-Day Sicherheitsloch bei Oracle angegriffen

Im Oktober hatte ich über CVE-2025-61882 berichtet, eine Zero-Day Sicherheitslücke bei Oracle. Die wurde vorher schon, und erst recht nach der Veröffentlichung, für viele Angriffe ausgenutzt. Diese wiederum haben zu Datenlecks geführt. Jetzt hat ein Sicherheitsunternehmen veröffentlicht, dass es schon vorher eine weitere Zero-Day Sicherheitslücke (CVE-2025-61757) gefunden und an Oracle gemeldet hatte. Oracle hat sie mit den Oktober-Updates geflickt, aber Honigtopf-Protokolle zeigen Angriffe darauf bereits seit dem 2025-08-30. Außerdem ist sie geradezu trivial einfach auszunutzen: Durch Anhängen von ";.wadl" wird

https://www.pc-fluesterer.info/wordpress/2025/11/21/weiteres-zero-day-sicherheitsloch-bei-oracle-angegriffen/

#Hintergrund #Warnung #0day #closedsource #cybercrime #exploits #hintertür #wissen

##

CVE-2025-20362
(6.5 MEDIUM)

EPSS: 30.85%

updated 2025-10-22T00:34:26

1 posts

A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to access restricted URL endpoints without authentication that should otherwise be inaccessible without authentication. This vulnerability is due to improper validation of user-supplied i

Nuclei template

GossiTheDog@cyberplace.social at 2025-11-19T18:42:51.000Z ##

New Cisco ASA #CyberWillyWave scan

https://raw.githubusercontent.com/GossiTheDog/scanning/refs/heads/main/Cisco-ASA-firmware-updates-CVE-2025-20333-CVE-2025-20363-CVE-2025-20362.csv

Rescan happening now too, results probably Friday.

##

CVE-2024-21413
(9.8 CRITICAL)

EPSS: 93.52%

updated 2025-10-22T00:33:00

1 posts

Microsoft Outlook Remote Code Execution Vulnerability

22 repos

https://github.com/olebris/CVE-2024-21413

https://github.com/ShubhamKanhere307/CVE-2024-21413

https://github.com/Redfox-Security/Unveiling-Moniker-Link-CVE-2024-21413-Navigating-the-Latest-Cybersecurity-Landscape

https://github.com/xaitax/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability

https://github.com/Mdusmandasthaheer/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability

https://github.com/duy-31/CVE-2024-21413

https://github.com/gurleen-147/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability-PoC

https://github.com/X-Projetion/CVE-2024-21413-Microsoft-Outlook-RCE-Exploit

https://github.com/th3Hellion/CVE-2024-21413

https://github.com/CMNatic/CVE-2024-21413

https://github.com/ArtemCyberLab/Project-NTLM-Hash-Capture-and-Phishing-Email-Exploitation-for-CVE-2024-21413

https://github.com/PolarisXSec/CVE-2024-21413

https://github.com/yass2400012/Email-exploit-Moniker-Link-CVE-2024-21413-

https://github.com/MQKGitHub/Moniker-Link-CVE-2024-21413

https://github.com/MSeymenD/CVE-2024-21413

https://github.com/r00tb1t/CVE-2024-21413-POC

https://github.com/hau2212/Moniker-Link-CVE-2024-21413-

https://github.com/ahmetkarakayaoffical/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability

https://github.com/dshabani96/CVE-2024-21413

https://github.com/ThemeHackers/CVE-2024-21413

https://github.com/Cyber-Trambon/CVE-2024-21413-exploit

https://github.com/D1se0/CVE-2024-21413-Vulnerabilidad-Outlook-LAB

hackmag@infosec.exchange at 2025-11-19T15:58:50.000Z ##

⚪ Hackers exploit RCE vulnerability in Microsoft Outlook

🗨️ The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned Federal Civilian Executive Branch (FCEB) Agencies that they have to secure their systems from ongoing attacks exploiting a critical vulnerability in Microsoft Outlook by February…

🔗 https://hackmag.com/news/cve-2024-21413-attacks

#news

##

CVE-2023-48022
(9.8 CRITICAL)

EPSS: 92.93%

updated 2025-09-30T18:19:57

2 posts

Anyscale Ray allows a remote attacker to execute arbitrary code via the job submission API. NOTE: the vendor's position is that this report is irrelevant because Ray, as stated in its documentation, is not intended for use outside of a strictly controlled network environment.

Nuclei template

2 repos

https://github.com/0x656565/CVE-2023-48022

https://github.com/jakabakos/ShadowRay-RCE-PoC-CVE-2023-48022

cR0w@infosec.exchange at 2025-11-19T21:56:48.000Z ##

Hackers hacking more AI shit. I'm so proud.

https://www.oligo.security/blog/shadowray-2-0-attackers-turn-ai-against-itself-in-global-campaign-that-hijacks-ai-into-self-propagating-botnet

Tl;Dr CVE-2023-48022 is EITW,

##

technadu@infosec.exchange at 2025-11-19T17:23:46.000Z ##

ShadowRay 2.0 demonstrates how attackers are now leveraging AI-generated tooling to exploit exposed Ray clusters and create a globally distributed botnet.

Highlights:
• CVE-2023-48022 exploited across thousands of Ray servers
• LLM-generated scripts tailored to victim environments
• Region-aware updates via GitLab + GitHub
• Hidden GPU mining (A100 clusters)
• Competing cryptominers battling for compute
Thoughts on the broader implications for AI security?

Boost, reply, and follow @technadu for more deep-dive threat research.

#Infosec #CyberSecurity #ShadowRay #AIThreats #RayFramework #Botnet #ThreatHunting #CloudSecurity

##

CVE-2025-20363
(9.1 CRITICAL)

EPSS: 0.36%

updated 2025-09-25T18:30:34

1 posts

A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Threat Defense (FTD) Software, Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, remote attacker (Cisco ASA and FTD Software) or authenticated, remote attacker (Cisco IOS, IOS XE, and IOS XR Software) with low user privile

GossiTheDog@cyberplace.social at 2025-11-19T18:42:51.000Z ##

New Cisco ASA #CyberWillyWave scan

https://raw.githubusercontent.com/GossiTheDog/scanning/refs/heads/main/Cisco-ASA-firmware-updates-CVE-2025-20333-CVE-2025-20363-CVE-2025-20362.csv

Rescan happening now too, results probably Friday.

##

CVE-2025-59375
(7.5 HIGH)

EPSS: 0.12%

updated 2025-09-17T15:31:32

1 posts

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

linux@activitypub.awakari.com at 2025-11-21T13:41:27.000Z ## Oracle Linux 8 ELSA-2025-21776: Important Expat Update for CVE-2025-59375 The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

#Oracle #Linux #Distribution #- #Security #Advisories

Origin | Interest | Match ##

CVE-2025-50165
(9.8 CRITICAL)

EPSS: 2.44%

23 repos

https://github.com/olebris/CVE-2024-21413

https://github.com/ShubhamKanhere307/CVE-2024-21413

https://github.com/Redfox-Security/Unveiling-Moniker-Link-CVE-2024-21413-Navigating-the-Latest-Cybersecurity-Landscape

https://github.com/xaitax/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability

https://github.com/Mdusmandasthaheer/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability

https://github.com/duy-31/CVE-2024-21413

https://github.com/gurleen-147/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability-PoC

https://github.com/X-Projetion/CVE-2024-21413-Microsoft-Outlook-RCE-Exploit

https://github.com/lsr00ter/CVE-2024-21412_Water-Hydra

https://github.com/th3Hellion/CVE-2024-21413

https://github.com/CMNatic/CVE-2024-21413

https://github.com/ArtemCyberLab/Project-NTLM-Hash-Capture-and-Phishing-Email-Exploitation-for-CVE-2024-21413

https://github.com/PolarisXSec/CVE-2024-21413

https://github.com/yass2400012/Email-exploit-Moniker-Link-CVE-2024-21413-

https://github.com/MSeymenD/CVE-2024-21413

https://github.com/MQKGitHub/Moniker-Link-CVE-2024-21413

https://github.com/r00tb1t/CVE-2024-21413-POC

https://github.com/hau2212/Moniker-Link-CVE-2024-21413-

https://github.com/ahmetkarakayaoffical/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability

cR0w@infosec.exchange at 2025-11-20T22:44:18.000Z ##

OMG there are so many more.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64656

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64655

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59245

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62207

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64660

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62459

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64657

##

CVE-2025-64657
(0 None)

EPSS: 0.00%

1 posts

N/A

cR0w@infosec.exchange at 2025-11-20T22:44:18.000Z ##

OMG there are so many more.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64656

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64655

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59245

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62207

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64660

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62459

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64657

##

CVE-2025-64428
(0 None)

EPSS: 0.04%

2 posts

N/A

jos1264@social.skynetcloud.site at 2025-11-20T19:45:02.000Z ##

CVE-2025-64428 - DataEase DB2 JNDI Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-64428

##

jos1264@social.skynetcloud.site at 2025-11-20T19:25:02.000Z ##

CVE-2025-64428 - DataEase DB2 JNDI Vulnerability https://cvefeed.io/vuln/detail/CVE-2025-64428

##

CVE-2025-64185
(0 None)

EPSS: 0.04%

1 posts

N/A

jos1264@social.skynetcloud.site at 2025-11-20T19:25:02.000Z ##

CVE-2025-64185 - Open OnDemand RPM packages create world writable locations https://cvefeed.io/vuln/detail/CVE-2025-64185

##

CVE-2025-62724
(0 None)

1 posts

N/A

1 repos

https://github.com/pacbypass/CVE-2025-11001

cR0w@infosec.exchange at 2025-11-19T18:10:34.000Z ##

RE: https://infosec.exchange/@DarkWebInformer/115577677075391866

Did someone break embargo or what? These links are apparently for 0days for CVE-2025-11001 and CVE-2025-11002 but neither one of those are published as of right now.

https://www.cve.org/CVERecord?id=CVE-2025-11001

https://www.cve.org/CVERecord?id=CVE-2025-11002

##

CVE-2025-13402
(0 None)

EPSS: 0.00%

1 posts

N/A

neverpanic@chaos.social at 2025-11-19T15:51:41.000Z ##

Ouch:

"I stumbled upon a bug in RNP that has been introduced when refactoring. Namely, session keys generated for PKESK are not randomized but always zero."

#RNP is #Thunderbird's implementation of #OpenPGP. This is CVE-2025-13402, best link I found so far is https://bugzilla.redhat.com/show_bug.cgi?id=2415863.

##

CVE-2025-13451(7.3 HIGH)

EPSS: 0.03%

CVE-2025-41075(7.5 HIGH)

EPSS: 0.04%

CVE-2025-41074(7.5 HIGH)

EPSS: 0.04%

CVE-2025-13424(4.7 MEDIUM)

EPSS: 0.03%

CVE-2025-61757(9.8 CRITICAL)

EPSS: 0.07%

CVE-2025-13421(7.3 HIGH)

EPSS: 0.03%

CVE-2025-13423(4.7 MEDIUM)

EPSS: 0.03%

CVE-2025-13446(8.8 HIGH)

EPSS: 0.09%

CVE-2025-13449(7.3 HIGH)

EPSS: 0.03%

CVE-2025-41076(6.5 MEDIUM)

EPSS: 0.04%

CVE-2025-13223(8.8 HIGH)

EPSS: 30.74%

CVE-2025-65222(4.3 MEDIUM)

EPSS: 0.01%

CVE-2025-63211(6.1 MEDIUM)

EPSS: 0.02%

CVE-2025-64762(CVSS UNKNOWN)

EPSS: 0.10%

CVE-2025-64751(CVSS UNKNOWN)

EPSS: 0.04%

CVE-2025-62426(6.5 MEDIUM)

EPSS: 0.04%

CVE-2025-62372(6.5 MEDIUM)

EPSS: 0.04%

CVE-2025-41115(10.0 CRITICAL)

EPSS: 0.00%

CVE-2025-11001(7.0 HIGH)

EPSS: 0.31%

CVE-2025-40601(7.5 HIGH)

EPSS: 0.05%

CVE-2025-0645(7.2 HIGH)

EPSS: 0.04%

CVE-2025-11676(0 None)

EPSS: 0.03%

CVE-2025-12414(0 None)

EPSS: 0.07%

CVE-2025-12778(5.3 MEDIUM)

EPSS: 0.05%

CVE-2025-13434(5.3 MEDIUM)

EPSS: 0.03%

CVE-2025-47914(5.3 MEDIUM)

EPSS: 0.04%

CVE-2025-65103(8.8 HIGH)

EPSS: 0.03%

CVE-2025-63932(7.3 HIGH)

EPSS: 0.23%

CVE-2025-12160(7.2 HIGH)

EPSS: 0.07%

CVE-2025-13149(4.3 MEDIUM)

EPSS: 0.03%

CVE-2025-64755(0 None)

EPSS: 0.05%

CVE-2025-62164(8.8 HIGH)

EPSS: 0.21%

CVE-2025-62207(8.6 HIGH)

EPSS: 0.08%

CVE-2025-13485(7.3 HIGH)

EPSS: 0.03%

CVE-2025-52668(8.7 HIGH)

EPSS: 0.03%

CVE-2025-55124(6.1 MEDIUM)

EPSS: 0.03%

CVE-2025-52670(7.1 HIGH)

EPSS: 0.04%

CVE-2025-52666(2.7 LOW)

EPSS: 0.04%

CVE-2025-62730(0 None)

EPSS: 0.03%

CVE-2025-63848(6.1 MEDIUM)

EPSS: 0.04%

CVE-2025-13451
(7.3 HIGH)

CVE-2025-41075
(7.5 HIGH)

CVE-2025-41074
(7.5 HIGH)

CVE-2025-13424
(4.7 MEDIUM)

CVE-2025-61757
(9.8 CRITICAL)

CVE-2025-13421
(7.3 HIGH)

CVE-2025-13423
(4.7 MEDIUM)

CVE-2025-13446
(8.8 HIGH)

CVE-2025-13449
(7.3 HIGH)

CVE-2025-41076
(6.5 MEDIUM)

CVE-2025-13223
(8.8 HIGH)

CVE-2025-65222
(4.3 MEDIUM)

CVE-2025-63211
(6.1 MEDIUM)

CVE-2025-62426
(6.5 MEDIUM)

CVE-2025-62372
(6.5 MEDIUM)

CVE-2025-41115
(10.0 CRITICAL)

CVE-2025-11001
(7.0 HIGH)

CVE-2025-40601
(7.5 HIGH)

CVE-2025-0645
(7.2 HIGH)

CVE-2025-11676
(0 None)

CVE-2025-12414
(0 None)

CVE-2025-12778
(5.3 MEDIUM)

CVE-2025-13434
(5.3 MEDIUM)

CVE-2025-47914
(5.3 MEDIUM)

CVE-2025-65103
(8.8 HIGH)

CVE-2025-63932
(7.3 HIGH)

CVE-2025-12160
(7.2 HIGH)

CVE-2025-13149
(4.3 MEDIUM)

CVE-2025-64755
(0 None)

CVE-2025-62164
(8.8 HIGH)

CVE-2025-62207
(8.6 HIGH)

CVE-2025-13485
(7.3 HIGH)

CVE-2025-52668
(8.7 HIGH)

CVE-2025-55124
(6.1 MEDIUM)

CVE-2025-52670
(7.1 HIGH)

CVE-2025-52666
(2.7 LOW)

CVE-2025-62730
(0 None)

CVE-2025-63848
(6.1 MEDIUM)

CVE-2025-12121
(7.3 HIGH)

CVE-2025-13156
(8.8 HIGH)

CVE-2025-12039
(5.3 MEDIUM)

CVE-2025-11826
(6.4 MEDIUM)

CVE-2025-11808
(6.4 MEDIUM)

CVE-2025-13322
(8.1 HIGH)

CVE-2025-13159
(7.1 HIGH)

CVE-2025-13141
(6.4 MEDIUM)

CVE-2025-11973
(4.9 MEDIUM)

CVE-2025-11803
(6.4 MEDIUM)

CVE-2025-12138
(8.8 HIGH)

CVE-2025-11985
(8.8 HIGH)

CVE-2025-64695
(7.8 HIGH)

CVE-2025-11456
(9.8 CRITICAL)

CVE-2025-64310
(9.8 CRITICAL)

CVE-2025-55123
(3.5 LOW)

CVE-2025-52671
(4.3 MEDIUM)

CVE-2025-64655
(8.8 HIGH)

CVE-2025-62459
(8.3 HIGH)

CVE-2025-59245
(9.8 CRITICAL)

CVE-2025-36072
(8.8 HIGH)

CVE-2025-64660
(5.7 MEDIUM)

CVE-2025-13484
(2.4 LOW)

CVE-2025-48986
(8.8 HIGH)

CVE-2025-49752
(10.0 CRITICAL)

CVE-2025-52669
(4.3 MEDIUM)

CVE-2025-48987
(6.3 MEDIUM)

CVE-2025-40605
(5.3 MEDIUM)

CVE-2025-40604
(6.5 MEDIUM)

CVE-2025-52667
(3.5 LOW)

CVE-2025-10571
(9.7 CRITICAL)

CVE-2025-13400
(8.8 HIGH)

CVE-2025-63207
(9.8 CRITICAL)

CVE-2025-65220
(4.3 MEDIUM)