CVE-2025-31324 - SAP NetWeaver Unauthenticated Remote Code Execution
CVE ID : CVE-2025-31324
Published : April 24, 2025, 5:15 p.m. | 3 hours, 26 minutes ago
Description : SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system. This could significantly affect the confidentiality, integrity, and availability of the targeted system.
Severity: 10.0 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-31324
Published : April 24, 2025, 5:15 p.m. | 3 hours, 26 minutes ago
Description : SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system. This could significantly affect the confidentiality, integrity, and availability of the targeted system.
Severity: 10.0 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43858 - YouTubeDLSharp Windows Command Injection Vulnerability
CVE ID : CVE-2025-43858
Published : April 24, 2025, 6:15 p.m. | 2 hours, 26 minutes ago
Description : YoutubeDLSharp is a wrapper for the command-line video downloaders youtube-dl and yt-dlp. In versions starting from 1.0.0-beta4 and prior to 1.1.2, an unsafe conversion of arguments allows the injection of a malicious commands when starting `yt-dlp` from a commands prompt running on Windows OS with the `UseWindowsEncodingWorkaround` value defined to true (default behavior). If a user is using built-in methods from the YoutubeDL.cs file, the value is true by default and a user cannot disable it from these methods. This issue has been patched in version 1.1.2.
Severity: 9.2 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43858
Published : April 24, 2025, 6:15 p.m. | 2 hours, 26 minutes ago
Description : YoutubeDLSharp is a wrapper for the command-line video downloaders youtube-dl and yt-dlp. In versions starting from 1.0.0-beta4 and prior to 1.1.2, an unsafe conversion of arguments allows the injection of a malicious commands when starting `yt-dlp` from a commands prompt running on Windows OS with the `UseWindowsEncodingWorkaround` value defined to true (default behavior). If a user is using built-in methods from the YoutubeDL.cs file, the value is true by default and a user cannot disable it from these methods. This issue has been patched in version 1.1.2.
Severity: 9.2 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43859 - Apache h11 Chunked-Coding Request Smuggling Vulnerability
CVE ID : CVE-2025-43859
Published : April 24, 2025, 7:15 p.m. | 1 hour, 26 minutes ago
Description : h11 is a Python implementation of HTTP/1.1. Prior to version 0.16.0, a leniency in h11's parsing of line terminators in chunked-coding message bodies can lead to request smuggling vulnerabilities under certain conditions. This issue has been patched in version 0.16.0. Since exploitation requires the combination of buggy h11 with a buggy (reverse) proxy, fixing either component is sufficient to mitigate this issue.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43859
Published : April 24, 2025, 7:15 p.m. | 1 hour, 26 minutes ago
Description : h11 is a Python implementation of HTTP/1.1. Prior to version 0.16.0, a leniency in h11's parsing of line terminators in chunked-coding message bodies can lead to request smuggling vulnerabilities under certain conditions. This issue has been patched in version 0.16.0. Since exploitation requires the combination of buggy h11 with a buggy (reverse) proxy, fixing either component is sufficient to mitigate this issue.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-26382 - iSTAR ICU Buffer Overflow
CVE ID : CVE-2025-26382
Published : April 24, 2025, 8:15 p.m. | 26 minutes ago
Description : Under certain circumstances the iSTAR Configuration Utility (ICU) tool could have a buffer overflow issue
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-26382
Published : April 24, 2025, 8:15 p.m. | 26 minutes ago
Description : Under certain circumstances the iSTAR Configuration Utility (ICU) tool could have a buffer overflow issue
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2022-44759 - HCL Leap SVG Injection Vulnerability
CVE ID : CVE-2022-44759
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Improper sanitization of SVG files in HCL Leap allows client-side script injection in deployed applications.
Severity: 4.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2022-44759
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Improper sanitization of SVG files in HCL Leap allows client-side script injection in deployed applications.
Severity: 4.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2022-44760 - HCL Leap JavaScript Injection
CVE ID : CVE-2022-44760
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Unsafe default file type filter policy in HCL Leap allows execution of unsafe JavaScript in deployed applications.
Severity: 4.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2022-44760
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Unsafe default file type filter policy in HCL Leap allows execution of unsafe JavaScript in deployed applications.
Severity: 4.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2023-37516 - HCL Leap Information Disclosure
CVE ID : CVE-2023-37516
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Missing "no cache" headers in HCL Leap permits user directory information to be cached.
Severity: 3.2 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2023-37516
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Missing "no cache" headers in HCL Leap permits user directory information to be cached.
Severity: 3.2 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2024-30127 - HCL Leap HTTP Cache Exposure Vulnerability
CVE ID : CVE-2024-30127
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Missing "no cache" headers in HCL Leap permits sensitive data to be cached.
Severity: 3.2 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2024-30127
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Missing "no cache" headers in HCL Leap permits sensitive data to be cached.
Severity: 3.2 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-25777 - Codeastro Bus Ticket Booking System IDOR
CVE ID : CVE-2025-25777
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Insecure Direct Object Reference (IDOR) in Codeastro Bus Ticket Booking System v1.0 allows unauthorized access to user profiles. By manipulating the user ID in the URL, an attacker can access another user's profile without proper authentication or authorization checks.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-25777
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : Insecure Direct Object Reference (IDOR) in Codeastro Bus Ticket Booking System v1.0 allows unauthorized access to user profiles. By manipulating the user ID in the URL, an attacker can access another user's profile without proper authentication or authorization checks.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-29529 - ITC Systems Multiplan/Matrix OneCard SQL Injection
CVE ID : CVE-2025-29529
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : ITC Systems Multiplan/Matrix OneCard platform v3.7.4.1002 was discovered to contain a SQL injection vulnerability via the component Forgotpassword.aspx.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-29529
Published : April 24, 2025, 9:15 p.m. | 3 hours, 27 minutes ago
Description : ITC Systems Multiplan/Matrix OneCard platform v3.7.4.1002 was discovered to contain a SQL injection vulnerability via the component Forgotpassword.aspx.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43861 - ManageWiki Stored and Reflected XSS Vulnerability
CVE ID : CVE-2025-43861
Published : April 24, 2025, 9:15 p.m. | 3 hours, 26 minutes ago
Description : ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 2f177dc, ManageWiki is vulnerable to reflected or stored XSS in the review dialog. A logged-in attacker must change a form field to include a malicious payload. If that same user then opens the "Review Changes" dialog, the payload will be rendered and executed in the context of their own session. This issue has been patched in commit 2f177dc.
Severity: 4.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43861
Published : April 24, 2025, 9:15 p.m. | 3 hours, 26 minutes ago
Description : ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 2f177dc, ManageWiki is vulnerable to reflected or stored XSS in the review dialog. A logged-in attacker must change a form field to include a malicious payload. If that same user then opens the "Review Changes" dialog, the payload will be rendered and executed in the context of their own session. This issue has been patched in commit 2f177dc.
Severity: 4.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-1294 - "eForm for WordPress Stored Cross-Site Scripting Vulnerability"
CVE ID : CVE-2025-1294
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : The eForm - WordPress Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 4.18.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-1294
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : The eForm - WordPress Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 4.18.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-3749 - Breeze Display for WordPress Stored Cross-Site Scripting Vulnerability
CVE ID : CVE-2025-3749
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : The Breeze Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘cal_size’ parameter in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-3749
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : The Breeze Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘cal_size’ parameter in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-46271 - UNI-NMS-Lite Command Injection Vulnerability
CVE ID : CVE-2025-46271
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : UNI-NMS-Lite is vulnerable to a command injection attack that could allow an unauthenticated attacker to read or manipulate device data.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-46271
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : UNI-NMS-Lite is vulnerable to a command injection attack that could allow an unauthenticated attacker to read or manipulate device data.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-46272 - D-Link Router Command Injection Vulnerability
CVE ID : CVE-2025-46272
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection attack that could allow an unauthenticated attacker to execute OS commands on the host system.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-46272
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection attack that could allow an unauthenticated attacker to execute OS commands on the host system.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-46273 - UNI-NMS-Lite Hard-Coded Credentials Authentication Bypass
CVE ID : CVE-2025-46273
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-46273
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-46274 - UNI-NMS-Lite Authentication Bypass
CVE ID : CVE-2025-46274
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to read, manipulate and create entries in the managed database.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-46274
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to read, manipulate and create entries in the managed database.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-46275 - Fortinet FortiSwitch Unauthenticated Administrator Account Creation
CVE ID : CVE-2025-46275
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : WGS-80HPT-V2 and WGS-4215-8T2S are missing authentication that could allow an attacker to create an administrator account without knowing any existing credentials.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-46275
Published : April 24, 2025, 11:15 p.m. | 1 hour, 27 minutes ago
Description : WGS-80HPT-V2 and WGS-4215-8T2S are missing authentication that could allow an attacker to create an administrator account without knowing any existing credentials.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-2185 - ALBEDO Telecom Net.Time PTP/NTP Clock Authentication Bypass
CVE ID : CVE-2025-2185
Published : April 25, 2025, 12:15 a.m. | 27 minutes ago
Description : ALBEDO Telecom Net.Time - PTP/NTP clock (Serial No. NBC0081P) software release 1.4.4 is vulnerable to an insufficient session expiration vulnerability, which could permit an attacker to transmit passwords over unencrypted connections, resulting in the product becoming vulnerable to interception.
Severity: 8.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-2185
Published : April 25, 2025, 12:15 a.m. | 27 minutes ago
Description : ALBEDO Telecom Net.Time - PTP/NTP clock (Serial No. NBC0081P) software release 1.4.4 is vulnerable to an insufficient session expiration vulnerability, which could permit an attacker to transmit passwords over unencrypted connections, resulting in the product becoming vulnerable to interception.
Severity: 8.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-3606 - Vestel AC Charger Information Disclosure Vulnerability
CVE ID : CVE-2025-3606
Published : April 25, 2025, 12:15 a.m. | 27 minutes ago
Description : Vestel AC Charger version 3.75.0 contains a vulnerability that could enable an attacker to access files containing sensitive information, such as credentials which could be used to further compromise the device.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-3606
Published : April 25, 2025, 12:15 a.m. | 27 minutes ago
Description : Vestel AC Charger version 3.75.0 contains a vulnerability that could enable an attacker to access files containing sensitive information, such as credentials which could be used to further compromise the device.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43864 - React Router Cache Poisoning Vulnerability
CVE ID : CVE-2025-43864
Published : April 25, 2025, 1:15 a.m. | 3 hours, 26 minutes ago
Description : React Router is a router for React. Starting in version 7.2.0 and prior to version 7.5.2, it is possible to force an application to switch to SPA mode by adding a header to the request. If the application uses SSR and is forced to switch to SPA, this causes an error that completely corrupts the page. If a cache system is in place, this allows the response containing the error to be cached, resulting in a cache poisoning that strongly impacts the availability of the application. This issue has been patched in version 7.5.2.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43864
Published : April 25, 2025, 1:15 a.m. | 3 hours, 26 minutes ago
Description : React Router is a router for React. Starting in version 7.2.0 and prior to version 7.5.2, it is possible to force an application to switch to SPA mode by adding a header to the request. If the application uses SSR and is forced to switch to SPA, this causes an error that completely corrupts the page. If a cache system is in place, this allows the response containing the error to be cached, resulting in a cache poisoning that strongly impacts the availability of the application. This issue has been patched in version 7.5.2.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...