Les dernières vulnérabilités publiées sur la National Vulnerability Database (NVD)

CVE-2025-3305 - A vulnerability has been found in 1902756969/code-projects IKUN_Library 1.0 and classified as problematic. This vulnerability affects the function addInterceptors of the file MvcConfig.java of the component Borrow Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3305
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32366 - In ConnMan through 1.44, parse_rr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., *rdlen=ntohs(rr->rdlen) and memcpy(response+offset,*end,*rdlen).
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32366
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3304 - A vulnerability, which was classified as critical, was found in code-projects Patient Record Management System 1.0. This affects an unknown part of the file /dental_not.php. The manipulation of the argument itr_no leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3304
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32365 - Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32365
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32364 - A floating-point exception in the PSStack::roll function of Poppler before 25.04.0 can cause an application to crash when handling malformed inputs associated with INT_MIN.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32364
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3303 - A vulnerability, which was classified as critical, has been found in code-projects Patient Record Management System 1.0. Affected by this issue is some unknown functionality of the file /birthing_record.php. The manipulation of the argument itr_no leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3303
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32360 - In Zammad 6.4.x before 6.4.2, there is information exposure. Only agents should be able to see and work on shared article drafts. However, a logged in customer was able to see details about shared drafts for their customer tickets in the browser console, which may contain confidential information, and also to manipulate them via API.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32360
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32359 - In Zammad 6.4.x before 6.4.2, there is client-side enforcement of server-side security. When changing their two factor authentication configuration, users need to re-authenticate with their current password first. However, this change was enforced in Zammad only on the front end level, and not when using the API directly.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32359
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32358 - In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which are triggered as POST requests when certain conditions are met. If a webhook endpoint returned a redirect response, Zammad would follow it automatically with another GET request. This could be abused by an attacker to cause GET requests for example in the local network.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32358
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32357 - In Zammad 6.4.x before 6.4.2, an authenticated agent with knowledge base permissions was able to use the Zammad API to fetch knowledge base content that they have no permission for.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32357
Partager : LinkedIn / Twitter / Facebook

CVE-2024-56370 - Net::Xero 0.044 and earlier for Perl uses the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Xero uses the Data::Random library which specifically states that it is "Useful mostly for test programs". Data::Random uses the rand() function.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-56370
Partager : LinkedIn / Twitter / Facebook

CVE-2024-52322 - WebService::Xero 0.11 and earlier for Perl uses the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically WebService::Xero uses the Data::Random library which specifically states that it is "Useful mostly for test programs". Data::Random uses the rand() function.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-52322
Partager : LinkedIn / Twitter / Facebook

CVE-2024-58036 - Net::Dropbox::API 1.9 and earlier for Perl uses the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test programs". Data::Random uses the rand() function.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-58036
Partager : LinkedIn / Twitter / Facebook

CVE-2024-57868 - Web::API 2.8 and earlier for Perl uses the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Web::API uses the Data::Random library which specifically states that it is "Useful mostly for test programs". Data::Random uses the rand() function.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-57868
Partager : LinkedIn / Twitter / Facebook

CVE-2024-57835 - Amon2::Auth::Site::LINE uses the String::Random module to generate nonce values. String::Random defaults to Perl's built-in predictable random number generator, the rand() function, which is not cryptographically secure
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-57835
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30401 - A spoofing issue in WhatsApp for Windows prior to version 2.2450.6 displayed attachments according to their MIME type but selected the file opening handler based on the attachment's filename extension. A maliciously crafted mismatch could have caused the recipient to inadvertently execute arbitrary code rather than view the attachment when manually opening the attachment inside WhatsApp.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30401
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3299 - A vulnerability was found in PHPGurukul Men Salon Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /appointment.php. The manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3299
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3298 - A vulnerability has been found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /oews/classes/Master.php?f=save_product of the component Registration Handler. The manipulation of the argument email leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3298
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3297 - A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /classes/Master.php?f=save_product. The manipulation of the argument brand leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3297
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3296 - A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the file /classes/Users.php?f=delete_customer. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3296
Partager : LinkedIn / Twitter / Facebook

CVE-2025-2941 - The Drag and Drop Multiple File Upload for WooCommerce plugin for WordPress is vulnerable to arbitrary file moving due to insufficient file path validation via the wc-upload-file[] parameter in all versions up to, and including, 1.1.4. This makes it possible for unauthenticated attackers to move arbitrary files on the server, which can easily lead to remote code execution when the right file is moved (such as wp-config.php).
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-2941
Partager : LinkedIn / Twitter / Facebook

CVE-2025-2789 - The MultiVendorX – Empower Your WooCommerce Store with a Dynamic Multivendor Marketplace – Build the Next Amazon, eBay, Etsy plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the delete_table_rate_shipping_row function in all versions up to, and including, 4.2.19. This makes it possible for unauthenticated attackers to delete Table Rates that can impact the shipping cost calculations.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-2789
Partager : LinkedIn / Twitter / Facebook

CVE-2025-1233 - The Lafka Plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the 'lafka_options_upload' AJAX function in all versions up to, and including, 7.1.0. This makes it possible for authenticated attackers, with subscriber-level access and above, to update the theme option that overrides the site.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-1233
Partager : LinkedIn / Twitter / Facebook

CVE-2025-0839 - The ZoomSounds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 6.91 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-0839
Partager : LinkedIn / Twitter / Facebook

CVE-2024-13776 - The ZoomSounds - WordPress Wave Audio Player with Playlist plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the 'dzsap_delete_notice' AJAX action in all versions up to, and including, 6.91. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update option values to 'seen' on the WordPress site. This can be leveraged to update an option that would create an error on the site and deny service to legitimate users or be used to set some values to true such as registration. There are several other functions also vulnerable to missing authorization.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-13776
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32352 - A type confusion vulnerability in lib/NSSAuthenticator.php in ZendTo before v5.04-7 allows remote attackers to bypass authentication for users with passwords stored as MD5 hashes that can be interpreted as numbers. A solution requires moving from MD5 to bcrypt.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32352
Partager : LinkedIn / Twitter / Facebook

CVE-2021-47667 - An OS command injection vulnerability in lib/NSSDropoff.php in ZendTo 5.24-3 through 6.x before 6.10-7 allows unauthenticated remote attackers to execute arbitrary commands via shell metacharacters in the tmp_name parameter when dropping off a file via a POST /dropoff request.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2021-47667
Partager : LinkedIn / Twitter / Facebook

CVE-2025-2933 - The Email Notifications for Updates plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the awun_import_settings() function in all versions up to, and including, 1.1.6. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-2933
Partager : LinkedIn / Twitter / Facebook

CVE-2025-2544 - The AI Content Pipelines plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses the SVG file.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-2544
Partager : LinkedIn / Twitter / Facebook

CVE-2025-0810 - The Read More & Accordion plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.4.5. This is due to missing or incorrect nonce validation on the addNewButtons() function. This makes it possible for unauthenticated attackers to include and execute arbitrary PHP files via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-0810
Partager : LinkedIn / Twitter / Facebook

CVE-2024-13604 - The KB Support – Customer Support Ticket & Helpdesk Plugin, Knowledge Base Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.7.4 via the 'kbs' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads/kbs directory which can contain file attachments included in support tickets. The vulnerability was partially patched in version 1.7.3.2.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-13604
Partager : LinkedIn / Twitter / Facebook

CVE-2025-1500 - IBM Maximo Application Suite 9.0 could allow an authenticated user to upload a file with dangerous types that could be executed by another user if opened.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-1500
Partager : LinkedIn / Twitter / Facebook

CVE-2025-2889 - The Link Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Link Additional Parameters in all versions up to, and including, 7.7.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
05/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-2889
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3268 - A vulnerability has been found in qinguoyi TinyWebServer up to 1.0 and classified as critical. This vulnerability affects unknown code of the file http/http_conn.cpp. The manipulation of the argument m_url_real leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3268
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3267 - A vulnerability, which was classified as critical, was found in qinguoyi TinyWebServer up to 1.0. This affects an unknown part of the file /http/http_conn.cpp. The manipulation of the argument name/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3267
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3266 - A vulnerability, which was classified as critical, has been found in qinguoyi TinyWebServer up to 1.0. Affected by this issue is some unknown functionality of the file /http/http_conn.cpp. The manipulation of the argument name/password leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3266
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3265 - A vulnerability classified as critical was found in PHPGurukul e-Diary Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-category.php. The manipulation of the argument Category leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3265
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3259 - A vulnerability, which was classified as critical, has been found in Tenda RX3 16.03.13.11. This issue affects the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3259
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29477 - An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the function consume_event.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29477
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29476 - Buffer Overflow vulnerability in compress_chunk_fuzzer with oss-fuzz on commit 16450518afddcb3139de627157208e49bfef6987 in c-blosc2 v.2.17.0 and before.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29476
Partager : LinkedIn / Twitter / Facebook

CVE-2024-11235 - In PHP versions 8.3.* before 8.3.19 and 8.4.* before 8.4.5, a code sequence involving __set handler or ??= operator and exceptions can lead to a use-after-free vulnerability. If the third party can control the memory layout leading to this, for example by supplying specially crafted inputs to the script, it could lead to remote code execution.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-11235
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3258 - A vulnerability classified as critical was found in PHPGurukul Old Age Home Management System 1.0. This vulnerability affects unknown code of the file /search.php. The manipulation of the argument searchdata leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3258
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3257 - A vulnerability classified as problematic has been found in xujiangfei admintwo 1.0. This affects an unknown part of the file /user/updateSet. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3257
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3256 - A vulnerability was found in xujiangfei admintwo 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/updateSet. The manipulation of the argument email leads to improper access controls. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3256
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3255 - A vulnerability was found in xujiangfei admintwo 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /user/home. The manipulation of the argument ID leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3255
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3254 - A vulnerability was found in xujiangfei admintwo 1.0. It has been classified as critical. Affected is an unknown function of the file /resource/add. The manipulation of the argument description leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3254
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3253 - A vulnerability was found in xujiangfei admintwo 1.0 and classified as problematic. This issue affects some unknown processing of the file /ztree/insertTree. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3253
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3252 - A vulnerability has been found in xujiangfei admintwo 1.0 and classified as problematic. This vulnerability affects unknown code of the file /resource/add. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3252
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32280 - Cross-Site Request Forgery (CSRF) vulnerability in weDevs WP Project Manager allows Cross Site Request Forgery. This issue affects WP Project Manager: from n/a through 2.6.22.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32280
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32278 - Cross-Site Request Forgery (CSRF) vulnerability in wprio Table Block by RioVizual allows Cross Site Request Forgery. This issue affects Table Block by RioVizual: from n/a through 2.1.7.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32278
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32277 - Missing Authorization vulnerability in Ateeq Rafeeq RepairBuddy allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects RepairBuddy: from n/a through 3.8211.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32277
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32276 - Cross-Site Request Forgery (CSRF) vulnerability in Quý Lê 91 Administrator Z allows Cross Site Request Forgery. This issue affects Administrator Z: from n/a through 2025.03.04.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32276
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32274 - Cross-Site Request Forgery (CSRF) vulnerability in axew3 WP w3all phpBB allows Cross Site Request Forgery. This issue affects WP w3all phpBB: from n/a through 2.9.2.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32274
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32273 - Cross-Site Request Forgery (CSRF) vulnerability in freetobook Freetobook Responsive Widget allows Cross Site Request Forgery. This issue affects Freetobook Responsive Widget: from n/a through 1.1.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32273
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32272 - Cross-Site Request Forgery (CSRF) vulnerability in PickPlugins Wishlist allows Cross Site Request Forgery. This issue affects Wishlist: from n/a through 1.0.44.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32272
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32271 - Cross-Site Request Forgery (CSRF) vulnerability in ablancodev Woocommerce Role Pricing allows Cross Site Request Forgery. This issue affects Woocommerce Role Pricing: from n/a through 3.5.5.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32271
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32270 - Cross-Site Request Forgery (CSRF) vulnerability in Broadstreet Broadstreet allows Cross Site Request Forgery. This issue affects Broadstreet: from n/a through 1.51.1.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32270
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32269 - Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms allows Cross Site Request Forgery. This issue affects WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms: from n/a through 1.1.3.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32269
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32268 - Cross-Site Request Forgery (CSRF) vulnerability in www.15.to QR Code Tag for WC allows Cross Site Request Forgery. This issue affects QR Code Tag for WC: from n/a through 1.9.36.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32268
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32267 - Cross-Site Request Forgery (CSRF) vulnerability in wpzinc Post to Social Media – WordPress to Hootsuite allows Cross Site Request Forgery. This issue affects Post to Social Media – WordPress to Hootsuite: from n/a through 1.5.8.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32267
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32266 - Cross-Site Request Forgery (CSRF) vulnerability in wp-buy 404 Image Redirection (Replace Broken Images) allows Cross Site Request Forgery. This issue affects 404 Image Redirection (Replace Broken Images): from n/a through 1.4.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32266
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32265 - Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak JobWP allows Cross Site Request Forgery. This issue affects JobWP: from n/a through 2.3.9.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32265
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32264 - Cross-Site Request Forgery (CSRF) vulnerability in Saiful Islam UltraAddons Elementor Lite allows Cross Site Request Forgery. This issue affects UltraAddons Elementor Lite: from n/a through 2.0.0.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32264
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32263 - Cross-Site Request Forgery (CSRF) vulnerability in BeRocket Sequential Order Numbers for WooCommerce allows Cross Site Request Forgery. This issue affects Sequential Order Numbers for WooCommerce: from n/a through 3.6.2.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32263
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32262 - Cross-Site Request Forgery (CSRF) vulnerability in Robert D Payne RDP Wiki Embed allows Cross Site Request Forgery. This issue affects RDP Wiki Embed: from n/a through 1.2.20.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32262
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32261 - Cross-Site Request Forgery (CSRF) vulnerability in Kuppuraj Advanced All in One Admin Search by WP Spotlight allows Cross Site Request Forgery. This issue affects Advanced All in One Admin Search by WP Spotlight: from n/a through 1.1.1.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32261
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32258 - Missing Authorization vulnerability in InfoGiants Simple Website Logo allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Simple Website Logo: from n/a through 1.1.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32258
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32257 - Exposure of Sensitive System Information Due to Uncleared Debug Information vulnerability in 1clickmigration 1 Click WordPress Migration allows Retrieve Embedded Sensitive Data. This issue affects 1 Click WordPress Migration: from n/a through 2.2.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32257
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32256 - Missing Authorization vulnerability in devsoftbaltic SurveyJS allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects SurveyJS: from n/a through 1.12.20.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32256
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32255 - Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ERA404 StaffList allows Retrieve Embedded Sensitive Data. This issue affects StaffList: from n/a through 3.2.6.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32255
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32254 - Missing Authorization vulnerability in Iqonic Design WPBookit allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects WPBookit: from n/a through 1.0.1.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32254
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32253 - Missing Authorization vulnerability in ComMotion Course Booking System allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Course Booking System: from n/a through 6.0.5.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32253
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32252 - Missing Authorization vulnerability in blackandwhitedigital WP Genealogy – Your Family History Website allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Genealogy – Your Family History Website: from n/a through 0.1.9.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32252
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32251 - Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in J. Tyler Wiest Jetpack Feedback Exporter allows Retrieve Embedded Sensitive Data. This issue affects Jetpack Feedback Exporter: from n/a through 1.23.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32251
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32250 - Cross-Site Request Forgery (CSRF) vulnerability in rollbar Rollbar allows Cross Site Request Forgery. This issue affects Rollbar: from n/a through 2.7.1.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32250
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32249 - Cross-Site Request Forgery (CSRF) vulnerability in designinvento DirectoryPress allows Cross Site Request Forgery. This issue affects DirectoryPress: from n/a through 3.6.19.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32249
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32248 - Cross-Site Request Forgery (CSRF) vulnerability in SwiftXR SwiftXR (3D/AR/VR) Viewer allows Cross Site Request Forgery. This issue affects SwiftXR (3D/AR/VR) Viewer: from n/a through 1.0.7.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32248
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32247 - Cross-Site Request Forgery (CSRF) vulnerability in ABCdatos AI Content Creator allows Cross Site Request Forgery. This issue affects AI Content Creator: from n/a through 1.2.6.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32247
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32246 - Missing Authorization vulnerability in Tim Nguyen 1-Click Backup & Restore Database allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects 1-Click Backup & Restore Database: from n/a through 1.0.3.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32246
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32241 - Cross-Site Request Forgery (CSRF) vulnerability in CleverReach® Official CleverReach Plugin for WooCommerce allows Cross Site Request Forgery. This issue affects Official CleverReach Plugin for WooCommerce: from n/a through 3.4.3.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32241
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32239 - Missing Authorization vulnerability in Joao Romao Social Share Buttons & Analytics Plugin – GetSocial.io allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Social Share Buttons & Analytics Plugin – GetSocial.io: from n/a through 4.5.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32239
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32238 - Generation of Error Message Containing Sensitive Information vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita allows Retrieve Embedded Sensitive Data. This issue affects Online Booking & Scheduling Calendar for WordPress by vcita: from n/a through 4.5.2.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32238
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32237 - Missing Authorization vulnerability in Stylemix MasterStudy LMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MasterStudy LMS: from n/a through 3.5.23.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32237
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32235 - Missing Authorization vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.9.4.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32235
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32234 - Missing Authorization vulnerability in aleswebs AdMail – Multilingual Back in-Stock Notifier for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects AdMail – Multilingual Back in-Stock Notifier for WooCommerce: from n/a through 1.7.0.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32234
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32233 - Missing Authorization vulnerability in WP Chill Revive.so – Bulk Rewrite and Republish Blog Posts allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Revive.so – Bulk Rewrite and Republish Blog Posts: from n/a through 2.0.3.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32233
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32232 - Missing Authorization vulnerability in ERA404 StaffList allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects StaffList: from n/a through 3.2.6.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32232
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32231 - Missing Authorization vulnerability in Bookingor Bookingor allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Bookingor: from n/a through 1.0.6.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32231
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32229 - Missing Authorization vulnerability in Bowo Variable Inspector allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Variable Inspector: from n/a through 2.6.3.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32229
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32226 - Missing Authorization vulnerability in Anzar Ahmed Display product variations dropdown on shop page allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Display product variations dropdown on shop page: from n/a through 1.1.3.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32226
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32225 - Missing Authorization vulnerability in WP Event Manager WP Event Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Event Manager: from n/a through 3.1.47.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32225
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32224 - Missing Authorization vulnerability in shivammani Privyr CRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Privyr CRM: from n/a through 1.0.1.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32224
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32220 - Missing Authorization vulnerability in Dimitri Grassi Salon booking system allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Salon booking system: from n/a through 10.10.7.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32220
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32219 - Missing Authorization vulnerability in Syntactics, Inc. eaSYNC allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects eaSYNC: from n/a through 1.3.19.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32219
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32218 - Missing Authorization vulnerability in RealMag777 TableOn – WordPress Posts Table Filterable allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects TableOn – WordPress Posts Table Filterable: from n/a through 1.0.4.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32218
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32217 - Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Generator for WP allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Ai Image Alt Text Generator for WP: from n/a through 1.0.8.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32217
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32207 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Anzar Ahmed Ni WooCommerce Cost Of Goods allows Stored XSS. This issue affects Ni WooCommerce Cost Of Goods: from n/a through 3.2.8.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32207
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32204 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in rocketelements Split Test For Elementor allows SQL Injection. This issue affects Split Test For Elementor: from n/a through 1.8.2.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32204
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32203 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in manu225 Falling things allows SQL Injection. This issue affects Falling things: from n/a through 1.08.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32203
Partager : LinkedIn / Twitter / Facebook

CVE-2025-32201 - Missing Authorization vulnerability in Xpro Xpro Theme Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Xpro Theme Builder: from n/a through 1.2.8.3.
04/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-32201
Partager : LinkedIn / Twitter / Facebook

Les annonces ayant été modifiées dernièrement

CVE-2025-31161 - CrushFTP 10 before 10.8.4 and 11 before 11.3.1 allows authentication bypass and takeover of the crushadmin account (unless a DMZ proxy instance is used), as exploited in the wild in March and April 2025, aka "Unauthenticated HTTP(S) port access." A race condition exists in the AWS4-HMAC (compatible with S3) authorization method of the HTTP component of the FTP server. The server first verifies the existence of the user by performing a call to login_user_pass() with no password requirement. This will authenticate the session through the HMAC verification process and up until the server checks for user verification once more. The vulnerability can be further stabilized, eliminating the need for successfully triggering a race condition, by sending a mangled AWS4-HMAC header. By providing only the username and a following slash (/), the server will successfully find a username, which triggers the successful anypass authentication process, but the server will fail to find the expected SignedHeaders entry, resulting in an index-out-of-bounds error that stops the code from reaching the session cleanup. Together, these issues make it trivial to authenticate as any known or guessable user (e.g., crushadmin), and can lead to a full compromise of the system by obtaining an administrative account.
05/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31161
Partager : LinkedIn / Twitter / Facebook

CVE-2025-22457 - A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution.
05/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-22457
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3185 - A vulnerability was found in projectworlds Online Doctor Appointment Booking System 1.0. It has been classified as critical. Affected is an unknown function of the file /patient/patientupdateprofile.php. The manipulation of the argument patientFirstName leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-3185
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3184 - A vulnerability was found in projectworlds Online Doctor Appointment Booking System 1.0 and classified as critical. This issue affects some unknown processing of the file /patient/profile.php?patientId=1. The manipulation of the argument patientFirstName leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-3184
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30370 - jupyterlab-git is a JupyterLab extension for version control using Git. On many platforms, a third party can create a Git repository under a name that includes a shell command substitution string in the syntax $(). These directory names are allowed in macOS and a majority of Linux distributions. If a user starts jupyter-lab in a parent directory of this inappropriately-named Git repository, opens it, and clicks "Git > Open Git Repository in Terminal" from the menu bar, then the injected command is run in the user's shell without the user's permission. This issue is occurring because when that menu entry is clicked, jupyterlab-git opens the terminal and runs cd through the shell to set the current directory. Doing so runs any command substitution strings present in the directory name, which leads to the command injection issue described here. A previous patch provided an incomplete fix. This vulnerability is fixed in 0.51.1.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30370
Partager : LinkedIn / Twitter / Facebook

CVE-2024-47213 - An issue was discovered affecting Enrich 5.1.0 and below. It involves sending a maliciously crafted Snowplow event to the pipeline. Upon receiving this event and trying to validate it, Enrich crashes and attempts to restart indefinitely. As a result, event processing would be halted.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2024-47213
Partager : LinkedIn / Twitter / Facebook

CVE-2024-47212 - An issue was discovered in Iglu Server 0.13.0 and below. It involves sending very large payloads to a particular API endpoint of Iglu Server and can render it completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2024-47212
Partager : LinkedIn / Twitter / Facebook

CVE-2024-45199 - insightsoftware Hive JDBC through 2.6.13 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the database. This can further lead to remote code execution.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2024-45199
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30406 - Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025. This enables threat actors (who know the machineKey) to serialize a payload for server-side deserialization to achieve remote code execution. NOTE: a CentreStack admin can manually delete the machineKey defined in portal\web.config.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30406
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29504 - Insecure Permission vulnerability in student-manage 1 allows a local attacker to escalate privileges via the Unsafe permission verification.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-29504
Partager : LinkedIn / Twitter / Facebook

CVE-2025-26818 - Netwrix Password Secure through 9.2 allows command injection.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-26818
Partager : LinkedIn / Twitter / Facebook

CVE-2025-26817 - Netwrix Password Secure 9.2.0.32454 allows OS command injection.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-26817
Partager : LinkedIn / Twitter / Facebook

CVE-2024-45198 - insightsoftware Spark JDBC 2.6.21 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the database. This can further lead to remote code execution.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2024-45198
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29647 - SeaCMS v13.3 has a SQL injection vulnerability in the component admin_tempvideo.php.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-29647
Partager : LinkedIn / Twitter / Facebook

CVE-2024-22611 - OpenEMR 7.0.2 is vulnerable to SQL Injection via \openemr\library\classes\Pharmacy.class.php, \controllers\C_Pharmacy.class.php and \openemr\controller.php.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2024-22611
Partager : LinkedIn / Twitter / Facebook

CVE-2024-4877 - OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2024-4877
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3162 - A vulnerability was found in InternLM LMDeploy up to 0.7.1. It has been classified as critical. Affected is the function load_weight_ckpt of the file lmdeploy/lmdeploy/vl/model/utils.py of the component PT File Handler. The manipulation leads to deserialization. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-3162
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3155 - A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-3155
Partager : LinkedIn / Twitter / Facebook

CVE-2025-2842 - A flaw was found in the Tempo Operator. When the Jaeger UI Monitor Tab functionality is enabled in a Tempo instance managed by the Tempo Operator, the Operator creates a ClusterRoleBinding for the Service Account of the Tempo instance to grant the cluster-monitoring-view ClusterRole. This can be exploited if a user has 'create' permissions on TempoStack and 'get' permissions on Secret in a namespace (for example, a user has ClusterAdmin permissions for a specific namespace), as the user can read the token of the Tempo service account and therefore has access to see all cluster metrics.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-2842
Partager : LinkedIn / Twitter / Facebook

CVE-2025-2786 - A flaw was found in Tempo Operator, where it creates a ServiceAccount, ClusterRole, and ClusterRoleBinding when a user deploys a TempoStack or TempoMonolithic instance. This flaw allows a user with full access to their namespace to extract the ServiceAccount token and use it to submit TokenReview and SubjectAccessReview requests, potentially revealing information about other users' permissions. While this does not allow privilege escalation or impersonation, it exposes information that could aid in gathering information for further attacks.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-2786
Partager : LinkedIn / Twitter / Facebook

CVE-2023-46988 - Directory Traversal vulnerability in ONLYOFFICE Document Server v.7.5.0 and before allows a remote attacker to obtain sensitive information via a crafted file upload.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2023-46988
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29070 - A heap buffer overflow vulnerability has been identified in thesmooth2() in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. NOTE: the Supplier disputes this because "this is not exploitable as this function is never called on normal color management, is there only as a helper for low-level programming and investigation."
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-29070
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29036 - An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-29036
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29033 - An issue in BambooHR Build v.25.0210.170831-83b08dd allows a remote attacker to escalate privileges via the /saml/index.php?r=" HTTP GET parameter.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-29033
Partager : LinkedIn / Twitter / Facebook

CVE-2003-20001 - An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided includes the service type, extension number and other parameters, related to the call activity.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2003-20001
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29069 - A heap buffer overflow vulnerability has been identified in the lcms2-2.16. The vulnerability exists in the UnrollChunkyBytes function in cmspack.c, which is responsible for handling color space transformations. NOTE: this is disputed by the Supplier because the finding identified a bug in a third-party calling program, not in lcms.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-29069
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3061 - Vulnerability in Drupal Material Admin.This issue affects Material Admin: *.*.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-3061
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31194 - An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A Shortcut may run with admin privileges without authentication.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31194
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31191 - This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access sensitive user data.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31191
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31187 - This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to modify protected parts of the file system.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31187
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31183 - The issue was addressed with improved restriction of data container access. This issue is fixed in macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, tvOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31183
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31182 - This issue was addressed with improved handling of symlinks. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to delete files for which it does not have permission.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31182
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30471 - A validation issue was addressed with improved logic. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A remote user may be able to cause a denial-of-service.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30471
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30470 - A path handling issue was addressed with improved logic. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to read sensitive location information.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30470
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30469 - This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4. A person with physical access to an iOS device may be able to access photos from the lock screen.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30469
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30467 - The issue was addressed with improved checks. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. Visiting a malicious website may lead to address bar spoofing.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30467
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30465 - A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A shortcut may be able to access files that are normally inaccessible to the Shortcuts app.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30465
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30464 - An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to cause unexpected system termination or corrupt kernel memory.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30464
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30463 - The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30463
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30462 - A library injection issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. Apps that appear to use App Sandbox may be able to launch without restrictions.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30462
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30461 - An access issue was addressed with additional sandbox restrictions on the system pasteboards. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protected user data.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30461
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30460 - A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30460
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30458 - A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4. An app may be able to read files outside of its sandbox.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30458
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30457 - This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A malicious app may be able to create symlinks to protected regions of the disk.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30457
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30456 - A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to gain root privileges.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30456
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30451 - This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30451
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30441 - This issue was addressed through improved state management. This issue is fixed in Xcode 16.3. An app may be able to overwrite arbitrary files.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30441
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30437 - The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.4. An app may be able to corrupt coprocessor memory.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30437
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30435 - This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.4. A sandboxed app may be able to access sensitive user data in system logs.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30435
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24282 - A library injection issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4. An app may be able to modify protected parts of the file system.
04/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24282
Partager : LinkedIn / Twitter / Facebook