CVE-2025-27244 - AssetView and AssetView CLOUD contain an issue with acquiring sensitive information from sent data to the developer. If exploited, sensitive information may be obtained by a remote unauthenticated attacker.
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-27244
Partager : LinkedIn / Twitter / Facebook

CVE-2025-25060 - Missing authentication for critical function vulnerability exists in AssetView and AssetView CLOUD. If exploited, the files on the server where the product is running may be obtained and/or deleted by a remote unauthenticated attacker.
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-25060
Partager : LinkedIn / Twitter / Facebook

CVE-2025-2779 - The Insert Headers and Footers Code – HT Script plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_dismiss function in all versions up to, and including, 1.1.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update option values to 1/true on the WordPress site. This can be leveraged to update an option that would create an error on the site and deny access to legitimate users or be used to set some values to true, such as registration.
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-2779
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3074 - Inappropriate implementation in Downloads in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3074
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3073 - Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3073
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3072 - Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3072
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3071 - Inappropriate implementation in Navigations in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3071
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3070 - Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3070
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3069 - Inappropriate implementation in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3069
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3068 - Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3068
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3067 - Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted app. (Chromium security severity: Medium)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3067
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3066 - Use after free in Navigations in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3066
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29982 - Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Insecure Inherited Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access.
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29982
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29981 - Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Exposure of Sensitive Information Through Data Queries vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29981
Partager : LinkedIn / Twitter / Facebook

CVE-2025-27694 - Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Insufficient Resource Pool vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Denial of service.
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-27694
Partager : LinkedIn / Twitter / Facebook

CVE-2025-27693 - Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Script injection.
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-27693
Partager : LinkedIn / Twitter / Facebook

CVE-2025-27692 - Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Unrestricted Upload of File with Dangerous Type vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service, Information disclosure, and Remote execution
02/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-27692
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31135 - Go-Guerrilla SMTP Daemon is a lightweight SMTP server written in Go. Prior to 1.6.7, when ProxyOn is enabled, the PROXY command will be accepted multiple times, with later invocations overriding earlier ones. The proxy protocol only supports one initial PROXY header; anything after that is considered part of the exchange between client and server, so the client is free to send further PROXY commands with whatever data it pleases. go-guerrilla will treat these as coming from the reverse proxy, allowing a client to spoof its IP address. This vulnerability is fixed in 1.6.7.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31135
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30356 - CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. In 1.3.3 and earlier, a heap buffer overflow vulnerability persists in the Crypto_TC_ApplySecurity function due to an incomplete validation check on the fl (frame length) field. Although CVE-2025-29912 addressed an underflow issue involving fl, the patch fails to fully prevent unsafe calculations. As a result, an attacker can still craft malicious frames that cause a negative tf_payload_len, which is then interpreted as a large unsigned value, leading to a heap buffer overflow in a memcpy call.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30356
Partager : LinkedIn / Twitter / Facebook

CVE-2023-46988 - Directory Traversal vulnerability in ONLYOFFICE Document Server v.7.5.0 and before allows a remote attacker to obtain sensitive information via a crafted file upload.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2023-46988
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31889 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in petesheppard84 Extensions for Elementor. This issue affects Extensions for Elementor: from n/a through 2.0.40.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31889
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31819 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pixelgrade Nova Blocks by Pixelgrade. This issue affects Nova Blocks by Pixelgrade: from n/a through 2.1.8.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31819
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31753 - Cross-Site Request Forgery (CSRF) vulnerability in Animesh Kumar Advanced Speed Increaser. This issue affects Advanced Speed Increaser: from n/a through 2.2.1.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31753
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31628 - Missing Authorization vulnerability in SlicedInvoices Sliced Invoices. This issue affects Sliced Invoices: from n/a through 3.9.4.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31628
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31619 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in marcoingraiti Actionwear products sync allows SQL Injection. This issue affects Actionwear products sync: from n/a through 2.3.3.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31619
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31612 - Deserialization of Untrusted Data vulnerability in Sabuj Kundu CBX Poll allows Object Injection. This issue affects CBX Poll: from n/a through 1.2.7.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31612
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31594 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPglob Auto scroll for reading allows Reflected XSS. This issue affects Auto scroll for reading: from n/a through 1.1.4.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31594
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31580 - Missing Authorization vulnerability in Anzar Ahmed Ni WooCommerce Product Enquiry allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Ni WooCommerce Product Enquiry: from n/a through 4.1.8.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31580
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31579 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in EXEIdeas International WP AutoKeyword allows SQL Injection. This issue affects WP AutoKeyword: from n/a through 1.0.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31579
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31578 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wisdomlogix Solutions Pvt. Ltd. Fonts Manager | Custom Fonts allows Reflected XSS. This issue affects Fonts Manager | Custom Fonts: from n/a through 1.2.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31578
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31571 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cynob IT Consultancy The Logo Slider allows Reflected XSS. This issue affects The Logo Slider: from n/a through 1.0.0.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31571
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31568 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wiredmindshelp LeadLab by wiredminds allows Reflected XSS. This issue affects LeadLab by wiredminds: from n/a through 1.3.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31568
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31564 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in aitool Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One allows Blind SQL Injection. This issue affects Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One: from n/a through 2.1.7.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31564
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31563 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vimal Kava AI Search Bar allows Stored XSS. This issue affects AI Search Bar: from n/a through 1.3.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31563
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31561 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in M. Tuhin Ultimate Push Notifications allows SQL Injection. This issue affects Ultimate Push Notifications: from n/a through 1.1.8.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31561
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31560 - Incorrect Privilege Assignment vulnerability in Dimitri Grassi Salon booking system allows Privilege Escalation. This issue affects Salon booking system: from n/a through 10.11.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31560
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31553 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPFactory Advanced WooCommerce Product Sales Reporting allows SQL Injection. This issue affects Advanced WooCommerce Product Sales Reporting: from n/a through 3.1.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31553
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31552 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in davidfcarr RSVPMarker allows SQL Injection. This issue affects RSVPMarker : from n/a through 11.4.8.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31552
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31551 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Salesmate.io Salesmate Add-On for Gravity Forms allows SQL Injection. This issue affects Salesmate Add-On for Gravity Forms: from n/a through 2.0.3.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31551
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31550 - Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in thom4 WP-LESS allows Retrieve Embedded Sensitive Data. This issue affects WP-LESS: from 1.9.3 through 3.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31550
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31548 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in M. Tuhin Ultimate Push Notifications allows Reflected XSS. This issue affects Ultimate Push Notifications: from n/a through 1.1.8.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31548
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31537 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in madfishdigital Bulk NoIndex & NoFollow Toolkit allows Reflected XSS. This issue affects Bulk NoIndex & NoFollow Toolkit: from n/a through 2.16.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31537
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31534 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in shopperdotcom Shopper allows SQL Injection. This issue affects Shopper: from n/a through 3.2.5.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31534
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31531 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in click5 History Log by click5 allows SQL Injection. This issue affects History Log by click5: from n/a through 1.0.13.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31531
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31525 - Missing Authorization vulnerability in WP Messiah WP Mobile Bottom Menu allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Mobile Bottom Menu: from n/a through 1.2.9.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31525
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31462 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in rzfarrell CGM Event Calendar allows Reflected XSS. This issue affects CGM Event Calendar: from n/a through 0.8.5.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31462
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31461 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound NanoSupport allows Reflected XSS. This issue affects NanoSupport: from n/a through 0.6.0.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31461
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31455 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Limit Max IPs Per User allows DOM-Based XSS. This issue affects Limit Max IPs Per User: from n/a through 1.5.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31455
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31454 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Delete Post Revision allows Reflected XSS. This issue affects Delete Post Revision: from n/a through 1.1.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31454
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31446 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jiangmiao WP Cleaner allows Reflected XSS. This issue affects WP Cleaner: from n/a through 1.1.5.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31446
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31445 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Pages Order allows Reflected XSS. This issue affects Pages Order: from n/a through 1.1.3.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31445
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31441 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in S WordPress Galleria allows Reflected XSS. This issue affects WordPress Galleria: from n/a through 1.4.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31441
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31431 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Bookmarks allows Reflected XSS. This issue affects WP Bookmarks: from n/a through 1.1.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31431
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31097 - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ho3einie Material Dashboard allows PHP Local File Inclusion. This issue affects Material Dashboard: from n/a through 1.4.5.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31097
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31089 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Fahad Mahmood Order Splitter for WooCommerce allows SQL Injection. This issue affects Order Splitter for WooCommerce: from n/a through 5.3.0.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31089
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31086 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nick McReynolds Product Table by WBW allows Reflected XSS. This issue affects Product Table by WBW: from n/a through 2.1.4.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31086
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31085 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michel - xiligroup dev xili-language allows Reflected XSS. This issue affects xili-language: from n/a through 2.21.2.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31085
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31082 - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in InfornWeb News & Blog Designer Pack allows PHP Local File Inclusion. This issue affects News & Blog Designer Pack: from n/a through 4.0.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31082
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31081 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ShortPixel Enable Media Replace allows Reflected XSS. This issue affects Enable Media Replace: from n/a through 4.1.5.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31081
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31080 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Software LLC HTML Forms allows Stored XSS. This issue affects HTML Forms: from n/a through 1.5.1.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31080
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31078 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in enituretechnology Small Package Quotes – Worldwide Express Edition allows Reflected XSS. This issue affects Small Package Quotes – Worldwide Express Edition: from n/a through 5.2.18.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31078
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30913 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in podpirate Access Areas allows Reflected XSS. This issue affects Access Areas: from n/a through 1.5.19.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30913
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30906 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Coffee Code Tech Plugin Oficial – Getnet para WooCommerce allows Reflected XSS. This issue affects Plugin Oficial – Getnet para WooCommerce: from n/a through 1.7.3.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30906
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30905 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ays Pro Secure Copy Content Protection and Content Locking allows Stored XSS. This issue affects Secure Copy Content Protection and Content Locking: from n/a through 4.4.3.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30905
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30892 - Deserialization of Untrusted Data vulnerability in magepeopleteam WpTravelly allows Object Injection. This issue affects WpTravelly: from n/a through 1.8.7.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30892
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30853 - Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ShortPixel Adaptive Images: from n/a through 3.10.0.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30853
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30852 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in emotionalonlinestorytelling Oracle Cards Lite allows Reflected XSS. This issue affects Oracle Cards Lite: from n/a through 1.2.1.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30852
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30844 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bob Watu Quiz allows Reflected XSS. This issue affects Watu Quiz: from n/a through 3.4.2.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30844
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30841 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in adamskaat Countdown & Clock allows Remote Code Inclusion. This issue affects Countdown & Clock: from n/a through 2.8.8.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30841
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30825 - Missing Authorization vulnerability in WPClever WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce allows Privilege Escalation. This issue affects WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce: from n/a through 1.3.5.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30825
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30807 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Martin Nguyen Next-Cart Store to WooCommerce Migration allows SQL Injection. This issue affects Next-Cart Store to WooCommerce Migration: from n/a through 3.9.4.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30807
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30778 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vikas Ratudi VForm allows Reflected XSS. This issue affects VForm: from n/a through 3.1.9.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30778
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30580 - Improper Control of Generation of Code ('Code Injection') vulnerability in NotFound DigiWidgets Image Editor allows Remote Code Inclusion. This issue affects DigiWidgets Image Editor: from n/a through 1.10.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30580
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30554 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Frizzly allows Reflected XSS. This issue affects Frizzly: from n/a through 1.1.0.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-30554
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29070 - A heap buffer overflow vulnerability has been identified in thesmooth2() in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29070
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29049 - Cross Site Scripting vulnerability in arnog MathLive Versions v0.103.0 and before (fixed in 0.104.0) allows an attacker to execute arbitrary code via the MathLive function.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29049
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29036 - An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29036
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29033 - An issue in BambooHR Build v.25.0210.170831-83b08dd allows a remote attacker to escalate privileges via the /saml/index.php?r=" HTTP GET parameter.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29033
Partager : LinkedIn / Twitter / Facebook

CVE-2024-13941 - A vulnerability was found in ouch-org ouch up to 0.3.1. It has been classified as critical. This affects the function ouch::archive::zip::convert_zip_date_time of the file zip.rs. The manipulation of the argument month leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. Upgrading to version 0.4.0 is able to address this issue. It is recommended to upgrade the affected component.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2024-13941
Partager : LinkedIn / Twitter / Facebook

CVE-2003-20001 - An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided includes the service type, extension number and other parameters, related to the call activity.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2003-20001
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29069 - A heap buffer overflow vulnerability has been identified in the lcms2-2.16. The vulnerability exists in the UnrollChunkyBytes function in cmspack.c, which is responsible for handling color space transformations.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29069
Partager : LinkedIn / Twitter / Facebook

CVE-2025-3096 - Clinic's Patient Management System versions 2.0 suffers from a SQL injection vulnerability in the login page.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-3096
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31137 - React Router is a multi-strategy router for React bridging the gap from React 18 to React 19. There is a vulnerability in Remix/React Router that affects all Remix 2 and React Router 7 consumers using the Express adapter. Basically, this vulnerability allows anyone to spoof the URL used in an incoming Request by putting a URL pathname in the port section of a URL that is part of a Host or X-Forwarded-Host header sent to a Remix/React Router request handler. This issue has been patched and released in Remix 2.16.3 and React Router 7.4.1.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-31137
Partager : LinkedIn / Twitter / Facebook

CVE-2025-26056 - A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands on the underlying system with the same privileges as the web application process.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-26056
Partager : LinkedIn / Twitter / Facebook

CVE-2025-26055 - An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-26055
Partager : LinkedIn / Twitter / Facebook

CVE-2025-26054 - Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting (XSS) via the "Description" field during LAN configuration.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-26054
Partager : LinkedIn / Twitter / Facebook

CVE-2025-29208 - CodeZips Gym Management System v1.0 is vulnerable to SQL injection in the name parameter within /dashboard/admin/deleteroutine.php.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-29208
Partager : LinkedIn / Twitter / Facebook

CVE-2018-1472 - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it was erroneously associated with an open source vulnerability by another vendor.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2018-1472
Partager : LinkedIn / Twitter / Facebook

CVE-2025-28132 - A session management flaw in Nagios Network Analyzer 2024R1.0.3 allows an attacker to reuse session tokens even after a user logs out, leading to unauthorized access and account takeover. This occurs due to insufficient session expiration, where session tokens remain valid beyond logout, allowing an attacker to impersonate users and perform actions on their behalf.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-28132
Partager : LinkedIn / Twitter / Facebook

CVE-2025-28131 - A Broken Access Control vulnerability in Nagios Network Analyzer 2024R1.0.3 allows low-privilege users with "Read-Only" access to perform administrative actions, including stopping system services and deleting critical resources. This flaw arises due to improper authorization enforcement, enabling unauthorized modifications that compromise system integrity and availability.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-28131
Partager : LinkedIn / Twitter / Facebook

CVE-2025-27829 - An issue was discovered in Stormshield Network Security (SNS) 4.3.x before 4.3.35. If multicast streams are enabled on different interfaces, it may be possible to interrupt multicast traffic on some of these interfaces. That could result in a denial of the multicast routing service on the firewall.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-27829
Partager : LinkedIn / Twitter / Facebook

CVE-2025-25041 - A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow malicious users to overwrite arbitrary files as NT AUTHORITY\SYSTEM (root). A successful exploit could allow the creation of a Denial-of-Service (DoS) condition affecting the Microsoft Windows Operating System. This vulnerability does not affect Linux and Android based clients.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-25041
Partager : LinkedIn / Twitter / Facebook

CVE-2025-21986 - In the Linux kernel, the following vulnerability has been resolved: net: switchdev: Convert blocking notification chain to a raw one A blocking notification chain uses a read-write semaphore to protect the integrity of the chain. The semaphore is acquired for writing when adding / removing notifiers to / from the chain and acquired for reading when traversing the chain and informing notifiers about an event. In case of the blocking switchdev notification chain, recursive notifications are possible which leads to the semaphore being acquired twice for reading and to lockdep warnings being generated [1]. Specifically, this can happen when the bridge driver processes a SWITCHDEV_BRPORT_UNOFFLOADED event which causes it to emit notifications about deferred events when calling switchdev_deferred_process(). Fix this by converting the notification chain to a raw notification chain in a similar fashion to the netdev notification chain. Protect the chain using the RTNL mutex by acquiring it when modifying the chain. Events are always informed under the RTNL mutex, but add an assertion in call_switchdev_blocking_notifiers() to make sure this is not violated in the future. Maintain the "blocking" prefix as events are always emitted from process context and listeners are allowed to block. [1]: WARNING: possible recursive locking detected 6.14.0-rc4-custom-g079270089484 #1 Not tainted -------------------------------------------- ip/52731 is trying to acquire lock: ffffffff850918d8 ((switchdev_blocking_notif_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x58/0xa0 but task is already holding lock: ffffffff850918d8 ((switchdev_blocking_notif_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x58/0xa0 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock((switchdev_blocking_notif_chain).rwsem); lock((switchdev_blocking_notif_chain).rwsem); *** DEADLOCK *** May be due to missing lock nesting notation 3 locks held by ip/52731: #0: ffffffff84f795b0 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x727/0x1dc0 #1: ffffffff8731f628 (&net->rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x790/0x1dc0 #2: ffffffff850918d8 ((switchdev_blocking_notif_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x58/0xa0 stack backtrace: ... ? __pfx_down_read+0x10/0x10 ? __pfx_mark_lock+0x10/0x10 ? __pfx_switchdev_port_attr_set_deferred+0x10/0x10 blocking_notifier_call_chain+0x58/0xa0 switchdev_port_attr_notify.constprop.0+0xb3/0x1b0 ? __pfx_switchdev_port_attr_notify.constprop.0+0x10/0x10 ? mark_held_locks+0x94/0xe0 ? switchdev_deferred_process+0x11a/0x340 switchdev_port_attr_set_deferred+0x27/0xd0 switchdev_deferred_process+0x164/0x340 br_switchdev_port_unoffload+0xc8/0x100 [bridge] br_switchdev_blocking_event+0x29f/0x580 [bridge] notifier_call_chain+0xa2/0x440 blocking_notifier_call_chain+0x6e/0xa0 switchdev_bridge_port_unoffload+0xde/0x1a0 ...
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-21986
Partager : LinkedIn / Twitter / Facebook

CVE-2025-21985 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bound accesses [WHAT & HOW] hpo_stream_to_link_encoder_mapping has size MAX_HPO_DP2_ENCODERS(=4), but location can have size up to 6. As a result, it is necessary to check location against MAX_HPO_DP2_ENCODERS. Similiarly, disp_cfg_stream_location can be used as an array index which should be 0..5, so the ASSERT's conditions should be less without equal.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-21985
Partager : LinkedIn / Twitter / Facebook

CVE-2025-21984 - In the Linux kernel, the following vulnerability has been resolved: mm: fix kernel BUG when userfaultfd_move encounters swapcache userfaultfd_move() checks whether the PTE entry is present or a swap entry. - If the PTE entry is present, move_present_pte() handles folio migration by setting: src_folio->index = linear_page_index(dst_vma, dst_addr); - If the PTE entry is a swap entry, move_swap_pte() simply copies the PTE to the new dst_addr. This approach is incorrect because, even if the PTE is a swap entry, it can still reference a folio that remains in the swap cache. This creates a race window between steps 2 and 4. 1. add_to_swap: The folio is added to the swapcache. 2. try_to_unmap: PTEs are converted to swap entries. 3. pageout: The folio is written back. 4. Swapcache is cleared. If userfaultfd_move() occurs in the window between steps 2 and 4, after the swap PTE has been moved to the destination, accessing the destination triggers do_swap_page(), which may locate the folio in the swapcache. However, since the folio's index has not been updated to match the destination VMA, do_swap_page() will detect a mismatch. This can result in two critical issues depending on the system configuration. If KSM is disabled, both small and large folios can trigger a BUG during the add_rmap operation due to: page_pgoff(folio, page) != linear_page_index(vma, address) [ 13.336953] page: refcount:6 mapcount:1 mapping:00000000f43db19c index:0xffffaf150 pfn:0x4667c [ 13.337520] head: order:2 mapcount:1 entire_mapcount:0 nr_pages_mapped:1 pincount:0 [ 13.337716] memcg:ffff00000405f000 [ 13.337849] anon flags: 0x3fffc0000020459(locked|uptodate|dirty|owner_priv_1|head|swapbacked|node=0|zone=0|lastcpupid=0xffff) [ 13.338630] raw: 03fffc0000020459 ffff80008507b538 ffff80008507b538 ffff000006260361 [ 13.338831] raw: 0000000ffffaf150 0000000000004000 0000000600000000 ffff00000405f000 [ 13.339031] head: 03fffc0000020459 ffff80008507b538 ffff80008507b538 ffff000006260361 [ 13.339204] head: 0000000ffffaf150 0000000000004000 0000000600000000 ffff00000405f000 [ 13.339375] head: 03fffc0000000202 fffffdffc0199f01 ffffffff00000000 0000000000000001 [ 13.339546] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000 [ 13.339736] page dumped because: VM_BUG_ON_PAGE(page_pgoff(folio, page) != linear_page_index(vma, address)) [ 13.340190] ------------[ cut here ]------------ [ 13.340316] kernel BUG at mm/rmap.c:1380! [ 13.340683] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP [ 13.340969] Modules linked in: [ 13.341257] CPU: 1 UID: 0 PID: 107 Comm: a.out Not tainted 6.14.0-rc3-gcf42737e247a-dirty #299 [ 13.341470] Hardware name: linux,dummy-virt (DT) [ 13.341671] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 13.341815] pc : __page_check_anon_rmap+0xa0/0xb0 [ 13.341920] lr : __page_check_anon_rmap+0xa0/0xb0 [ 13.342018] sp : ffff80008752bb20 [ 13.342093] x29: ffff80008752bb20 x28: fffffdffc0199f00 x27: 0000000000000001 [ 13.342404] x26: 0000000000000000 x25: 0000000000000001 x24: 0000000000000001 [ 13.342575] x23: 0000ffffaf0d0000 x22: 0000ffffaf0d0000 x21: fffffdffc0199f00 [ 13.342731] x20: fffffdffc0199f00 x19: ffff000006210700 x18: 00000000ffffffff [ 13.342881] x17: 6c203d2120296567 x16: 6170202c6f696c6f x15: 662866666f67705f [ 13.343033] x14: 6567617028454741 x13: 2929737365726464 x12: ffff800083728ab0 [ 13.343183] x11: ffff800082996bf8 x10: 0000000000000fd7 x9 : ffff80008011bc40 [ 13.343351] x8 : 0000000000017fe8 x7 : 00000000fffff000 x6 : ffff8000829eebf8 [ 13.343498] x5 : c0000000fffff000 x4 : 0000000000000000 x3 : 0000000000000000 [ 13.343645] x2 : 0000000000000000 x1 : ffff0000062db980 x0 : 000000000000005f [ 13.343876] Call trace: [ 13.344045] __page_check_anon_rmap+0xa0/0xb0 (P) [ 13.344234] folio_add_anon_rmap_ptes+0x22c/0x320 [ 13.344333] do_swap_page+0x1060/0x1400 [ 13.344417] __handl ---truncated---
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-21984
Partager : LinkedIn / Twitter / Facebook

CVE-2025-21983 - In the Linux kernel, the following vulnerability has been resolved: mm/slab/kvfree_rcu: Switch to WQ_MEM_RECLAIM wq Currently kvfree_rcu() APIs use a system workqueue which is "system_unbound_wq" to driver RCU machinery to reclaim a memory. Recently, it has been noted that the following kernel warning can be observed: workqueue: WQ_MEM_RECLAIM nvme-wq:nvme_scan_work is flushing !WQ_MEM_RECLAIM events_unbound:kfree_rcu_work WARNING: CPU: 21 PID: 330 at kernel/workqueue.c:3719 check_flush_dependency+0x112/0x120 Modules linked in: intel_uncore_frequency(E) intel_uncore_frequency_common(E) skx_edac(E) ... CPU: 21 UID: 0 PID: 330 Comm: kworker/u144:6 Tainted: G E 6.13.2-0_g925d379822da #1 Hardware name: Wiwynn Twin Lakes MP/Twin Lakes Passive MP, BIOS YMM20 02/01/2023 Workqueue: nvme-wq nvme_scan_work RIP: 0010:check_flush_dependency+0x112/0x120 Code: 05 9a 40 14 02 01 48 81 c6 c0 00 00 00 48 8b 50 18 48 81 c7 c0 00 00 00 48 89 f9 48 ... RSP: 0018:ffffc90000df7bd8 EFLAGS: 00010082 RAX: 000000000000006a RBX: ffffffff81622390 RCX: 0000000000000027 RDX: 00000000fffeffff RSI: 000000000057ffa8 RDI: ffff88907f960c88 RBP: 0000000000000000 R08: ffffffff83068e50 R09: 000000000002fffd R10: 0000000000000004 R11: 0000000000000000 R12: ffff8881001a4400 R13: 0000000000000000 R14: ffff88907f420fb8 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff88907f940000(0000) knlGS:0000000000000000 CR2: 00007f60c3001000 CR3: 000000107d010005 CR4: 00000000007726f0 PKRU: 55555554 Call Trace: ? __warn+0xa4/0x140 ? check_flush_dependency+0x112/0x120 ? report_bug+0xe1/0x140 ? check_flush_dependency+0x112/0x120 ? handle_bug+0x5e/0x90 ? exc_invalid_op+0x16/0x40 ? asm_exc_invalid_op+0x16/0x20 ? timer_recalc_next_expiry+0x190/0x190 ? check_flush_dependency+0x112/0x120 ? check_flush_dependency+0x112/0x120 __flush_work.llvm.1643880146586177030+0x174/0x2c0 flush_rcu_work+0x28/0x30 kvfree_rcu_barrier+0x12f/0x160 kmem_cache_destroy+0x18/0x120 bioset_exit+0x10c/0x150 disk_release.llvm.6740012984264378178+0x61/0xd0 device_release+0x4f/0x90 kobject_put+0x95/0x180 nvme_put_ns+0x23/0xc0 nvme_remove_invalid_namespaces+0xb3/0xd0 nvme_scan_work+0x342/0x490 process_scheduled_works+0x1a2/0x370 worker_thread+0x2ff/0x390 ? pwq_release_workfn+0x1e0/0x1e0 kthread+0xb1/0xe0 ? __kthread_parkme+0x70/0x70 ret_from_fork+0x30/0x40 ? __kthread_parkme+0x70/0x70 ret_from_fork_asm+0x11/0x20 ---[ end trace 0000000000000000 ]--- To address this switch to use of independent WQ_MEM_RECLAIM workqueue, so the rules are not violated from workqueue framework point of view. Apart of that, since kvfree_rcu() does reclaim memory it is worth to go with WQ_MEM_RECLAIM type of wq because it is designed for this purpose.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-21983
Partager : LinkedIn / Twitter / Facebook

CVE-2025-21982 - In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: npcm8xx: Add NULL check in npcm8xx_gpio_fw devm_kasprintf() calls can return null pointers on failure. But the return values were not checked in npcm8xx_gpio_fw(). Add NULL check in npcm8xx_gpio_fw(), to handle kernel NULL pointer dereference error.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-21982
Partager : LinkedIn / Twitter / Facebook

CVE-2025-21981 - In the Linux kernel, the following vulnerability has been resolved: ice: fix memory leak in aRFS after reset Fix aRFS (accelerated Receive Flow Steering) structures memory leak by adding a checker to verify if aRFS memory is already allocated while configuring VSI. aRFS objects are allocated in two cases: - as part of VSI initialization (at probe), and - as part of reset handling However, VSI reconfiguration executed during reset involves memory allocation one more time, without prior releasing already allocated resources. This led to the memory leak with the following signature: [root@os-delivery ~]# cat /sys/kernel/debug/kmemleak unreferenced object 0xff3c1ca7252e6000 (size 8192): comm "kworker/0:0", pid 8, jiffies 4296833052 hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace (crc 0): [] __kmalloc_cache_noprof+0x275/0x340 [] ice_init_arfs+0x3a/0xe0 [ice] [] ice_vsi_cfg_def+0x607/0x850 [ice] [] ice_vsi_setup+0x5b/0x130 [ice] [] ice_init+0x1c1/0x460 [ice] [] ice_probe+0x2af/0x520 [ice] [] local_pci_probe+0x43/0xa0 [] work_for_cpu_fn+0x13/0x20 [] process_one_work+0x179/0x390 [] worker_thread+0x239/0x340 [] kthread+0xcc/0x100 [] ret_from_fork+0x2d/0x50 [] ret_from_fork_asm+0x1a/0x30 ...
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-21981
Partager : LinkedIn / Twitter / Facebook

CVE-2025-21980 - In the Linux kernel, the following vulnerability has been resolved: sched: address a potential NULL pointer dereference in the GRED scheduler. If kzalloc in gred_init returns a NULL pointer, the code follows the error handling path, invoking gred_destroy. This, in turn, calls gred_offload, where memset could receive a NULL pointer as input, potentially leading to a kernel crash. When table->opt is NULL in gred_init(), gred_change_table_def() is not called yet, so it is not necessary to call ->ndo_setup_tc() in gred_offload().
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-21980
Partager : LinkedIn / Twitter / Facebook

CVE-2025-21979 - In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel wiphy_work before freeing wiphy A wiphy_work can be queued from the moment the wiphy is allocated and initialized (i.e. wiphy_new_nm). When a wiphy_work is queued, the rdev::wiphy_work is getting queued. If wiphy_free is called before the rdev::wiphy_work had a chance to run, the wiphy memory will be freed, and then when it eventally gets to run it'll use invalid memory. Fix this by canceling the work before freeing the wiphy.
01/04/2025 | https://cve.nohackme.com/index.php?action=detail&id=CVE-2025-21979
Partager : LinkedIn / Twitter / Facebook

Soutenez No Hack Me sur Tipeee

Les annonces ayant été modifiées dernièrement

CVE-2025-3062 - Vulnerability in Drupal Drupal Admin LTE theme.This issue affects Drupal Admin LTE theme: *.*.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-3062
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31194 - An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A Shortcut may run with admin privileges without authentication.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31194
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31191 - This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access sensitive user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31191
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31187 - This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to modify protected parts of the file system.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31187
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31183 - The issue was addressed with improved restriction of data container access. This issue is fixed in macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, tvOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31183
Partager : LinkedIn / Twitter / Facebook

CVE-2025-31182 - This issue was addressed with improved handling of symlinks. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to delete files for which it does not have permission.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-31182
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30470 - A path handling issue was addressed with improved logic. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to read sensitive location information.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30470
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30467 - The issue was addressed with improved checks. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. Visiting a malicious website may lead to address bar spoofing.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30467
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30463 - The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30463
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30462 - A library injection issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. Apps that appear to use App Sandbox may be able to launch without restrictions.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30462
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30461 - An access issue was addressed with additional sandbox restrictions on the system pasteboards. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protected user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30461
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30460 - A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30460
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30458 - A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4. An app may be able to read files outside of its sandbox.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30458
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30457 - This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A malicious app may be able to create symlinks to protected regions of the disk.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30457
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30455 - The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5. A malicious app may be able to access private information.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30455
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30454 - A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, tvOS 18.4, macOS Sequoia 15.4. A malicious app may be able to access private information.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30454
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30451 - This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30451
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30450 - This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access sensitive user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30450
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30447 - The issue was resolved by sanitizing logging This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access sensitive user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30447
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30446 - A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A malicious app with root privileges may be able to modify the contents of system files.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30446
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30443 - A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access user-sensitive data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30443
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30441 - This issue was addressed through improved state management. This issue is fixed in Xcode 16.3. An app may be able to overwrite arbitrary files.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30441
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30439 - The issue was addressed with improved checks. This issue is fixed in visionOS 2.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An attacker with physical access to a locked device may be able to view sensitive user information.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30439
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30437 - The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.4. An app may be able to corrupt coprocessor memory.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30437
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30435 - This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.4. A sandboxed app may be able to access sensitive user data in system logs.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30435
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30434 - The issue was addressed with improved input sanitization. This issue is fixed in iOS 18.4 and iPadOS 18.4. Processing a maliciously crafted file may lead to a cross site scripting attack.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30434
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30430 - This issue was addressed through improved state management. This issue is fixed in visionOS 2.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. Password autofill may fill in passwords after failing authentication.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30430
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30429 - A path handling issue was addressed with improved validation. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to break out of its sandbox.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30429
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30427 - A use-after-free issue was addressed with improved memory management. This issue is fixed in visionOS 2.4, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, Safari 18.4. Processing maliciously crafted web content may lead to an unexpected Safari crash.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30427
Partager : LinkedIn / Twitter / Facebook

CVE-2025-30426 - This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to enumerate a user's installed apps.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-30426
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24281 - This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24281
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24280 - An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access user-sensitive data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24280
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24279 - This issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access contacts.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24279
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24278 - This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24278
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24273 - An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to cause unexpected system termination or corrupt kernel memory.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24273
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24272 - The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to modify protected parts of the file system.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24272
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24269 - The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.4. An app may be able to cause unexpected system termination.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24269
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24266 - A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to cause unexpected system termination.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24266
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24265 - An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to cause unexpected system termination.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24265
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24264 - The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, Safari 18.4. Processing maliciously crafted web content may lead to an unexpected Safari crash.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24264
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24263 - A privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Sequoia 15.4. An app may be able to observe unprotected user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24263
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24262 - A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.4. A sandboxed app may be able to access sensitive user data in system logs.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24262
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24260 - The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker in a privileged position may be able to perform a denial-of-service.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24260
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24259 - This issue was addressed with additional entitlement checks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to retrieve Safari bookmarks without an entitlement check.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24259
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24256 - The issue was addressed with improved bounds checks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to disclose kernel memory.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24256
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24255 - A file access issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to break out of its sandbox.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24255
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24254 - This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A user may be able to elevate privileges.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24254
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24253 - This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24253
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24250 - This issue was addressed with improved access restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A malicious app acting as a HTTPS proxy could get access to sensitive user data.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24250
Partager : LinkedIn / Twitter / Facebook

CVE-2025-24249 - A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to check the existence of an arbitrary path on the file system.
01/04/2025 | https://nvd.nist.gov/vuln/detail/CVE-2025-24249
Partager : LinkedIn / Twitter / Facebook