CVE-2025-67741 - JetBrains TeamCity Stored XSS Vulnerability
CVE ID : CVE-2025-67741
Published : Dec. 11, 2025, 4:16 p.m. | 1 hour, 7 minutes ago
Description : In JetBrains TeamCity before 2025.11 stored XSS was possible via session attribute
Severity: 4.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-67741
Published : Dec. 11, 2025, 4:16 p.m. | 1 hour, 7 minutes ago
Description : In JetBrains TeamCity before 2025.11 stored XSS was possible via session attribute
Severity: 4.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-67742 - JetBrains TeamCity Arbitrary File Access Vulnerability
CVE ID : CVE-2025-67742
Published : Dec. 11, 2025, 4:16 p.m. | 1 hour, 7 minutes ago
Description : In JetBrains TeamCity before 2025.11 path traversal was possible via file upload
Severity: 3.8 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-67742
Published : Dec. 11, 2025, 4:16 p.m. | 1 hour, 7 minutes ago
Description : In JetBrains TeamCity before 2025.11 path traversal was possible via file upload
Severity: 3.8 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2024-8273 - HYPR Server Authentication Bypass
CVE ID : CVE-2024-8273
Published : Dec. 11, 2025, 4:29 p.m. | 54 minutes ago
Description : Authentication Bypass by Spoofing vulnerability in HYPR Server allows Identity Spoofing.This issue affects Server: before 10.1.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2024-8273
Published : Dec. 11, 2025, 4:29 p.m. | 54 minutes ago
Description : Authentication Bypass by Spoofing vulnerability in HYPR Server allows Identity Spoofing.This issue affects Server: before 10.1.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-14526 - Tenda CH22 L7Im frmL7ImForm buffer overflow
CVE ID : CVE-2025-14526
Published : Dec. 11, 2025, 4:32 p.m. | 52 minutes ago
Description : A security flaw has been discovered in Tenda CH22 1.0.0.1. This affects the function frmL7ImForm of the file /goform/L7Im. Performing manipulation of the argument page results in buffer overflow. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-14526
Published : Dec. 11, 2025, 4:32 p.m. | 52 minutes ago
Description : A security flaw has been discovered in Tenda CH22 1.0.0.1. This affects the function frmL7ImForm of the file /goform/L7Im. Performing manipulation of the argument page results in buffer overflow. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-66043 - Biosig Project Libbiosig MFER Parsing Stack-Based Buffer Overflow Vulnerability
CVE ID : CVE-2025-66043
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 3
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-66043
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 3
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-66044 - Biosig Project libbiosig Arbitrary Code Execution Vulnerability
CVE ID : CVE-2025-66044
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 64
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-66044
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 64
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-66045 - Biosig Project libbiosig Stack-based Buffer Overflow Vulnerability
CVE ID : CVE-2025-66045
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 65
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-66045
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 65
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-66046 - Biosig Project libbiosig MFER Parsing Buffer Overflow Vulnerability
CVE ID : CVE-2025-66046
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 67
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-66046
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 67
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-66047 - Biosig Project libbiosig MFER Parsing Stack-Based Buffer Overflow Vulnerability
CVE ID : CVE-2025-66047
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 131
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-66047
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 131
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-66048 - Biosig Project libbiosig MFER Parsing Stack-Based Buffer Overflow Vulnerability
CVE ID : CVE-2025-66048
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 133
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-66048
Published : Dec. 11, 2025, 4:43 p.m. | 40 minutes ago
Description : Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 133
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-14527 - projectworlds Advanced Library Management System view_book.php sql injection
CVE ID : CVE-2025-14527
Published : Dec. 11, 2025, 5:02 p.m. | 22 minutes ago
Description : A weakness has been identified in projectworlds Advanced Library Management System 1.0. This vulnerability affects unknown code of the file /view_book.php. Executing manipulation of the argument book_id can lead to sql injection. The attack can be executed remotely. The exploit has been made available to the public and could be exploited.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-14527
Published : Dec. 11, 2025, 5:02 p.m. | 22 minutes ago
Description : A weakness has been identified in projectworlds Advanced Library Management System 1.0. This vulnerability affects unknown code of the file /view_book.php. Executing manipulation of the argument book_id can lead to sql injection. The attack can be executed remotely. The exploit has been made available to the public and could be exploited.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-14528 - D-Link DIR-803 Configuration getcfg.php information disclosure
CVE ID : CVE-2025-14528
Published : Dec. 11, 2025, 5:02 p.m. | 21 minutes ago
Description : A vulnerability was detected in D-Link DIR-803 up to 1.04. Impacted is an unknown function of the file /getcfg.php of the component Configuration Handler. The manipulation of the argument AUTHORIZED_GROUP results in information disclosure. The attack may be performed from remote. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-14528
Published : Dec. 11, 2025, 5:02 p.m. | 21 minutes ago
Description : A vulnerability was detected in D-Link DIR-803 up to 1.04. Impacted is an unknown function of the file /getcfg.php of the component Configuration Handler. The manipulation of the argument AUTHORIZED_GROUP results in information disclosure. The attack may be performed from remote. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36928 - Citrix NetScaler Remote Code Execution
CVE ID : CVE-2025-36928
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In GetHostAddress of gxp_buffer.h, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36928
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In GetHostAddress of gxp_buffer.h, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36929 - Apache AreFences Registered Information Leak
CVE ID : CVE-2025-36929
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In AreFencesRegistered of gxp_fence_manager.cc, there is a possible information leak due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36929
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In AreFencesRegistered of gxp_fence_manager.cc, there is a possible information leak due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36930 - Apache GetHostAddress Out-of-Bounds Write Vulnerability
CVE ID : CVE-2025-36930
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In GetHostAddress of gxp_buffer.h, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36930
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In GetHostAddress of gxp_buffer.h, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36931 - Apache Getsystem Privilege Escalation Vulnerability
CVE ID : CVE-2025-36931
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In GetHostAddress of gxp_buffer.h, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36931
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In GetHostAddress of gxp_buffer.h, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36932 - Google CPM Tracepoint IPC Local Privilege Escalation
CVE ID : CVE-2025-36932
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In tracepoint_msg_handler of cpm/google/lib/tracepoint/tracepoint_ipc.c, there is a possible memory overwrite due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36932
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In tracepoint_msg_handler of cpm/google/lib/tracepoint/tracepoint_ipc.c, there is a possible memory overwrite due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36934 - Google Bigo Use After Free Vulnerability (Local Privilege Escalation)
CVE ID : CVE-2025-36934
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In bigo_worker_thread of private/google-modules/video/gchips/bigo.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36934
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In bigo_worker_thread of private/google-modules/video/gchips/bigo.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36935 - Apache Shared-Memory Memory Corruption Vulnerability
CVE ID : CVE-2025-36935
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In trusty_ffa_mem_reclaim of shared-mem-smcall.c, there is a possible memory corruption due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36935
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In trusty_ffa_mem_reclaim of shared-mem-smcall.c, there is a possible memory corruption due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36936 - Tachyon Server Local Privilege Escalation Vulnerability
CVE ID : CVE-2025-36936
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In GetTachyonCommand of tachyon_server_common.h, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36936
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In GetTachyonCommand of tachyon_server_common.h, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-36937 - Adobe AudioDecoder Out-of-Bounds Write RCE
CVE ID : CVE-2025-36937
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In AudioDecoder::HandleProduceRequest of audio_decoder.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-36937
Published : Dec. 11, 2025, 8:15 p.m. | 1 hour, 10 minutes ago
Description : In AudioDecoder::HandleProduceRequest of audio_decoder.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...