24h | 7d | 30d

CVE-2025-67728

Overview

  • ShaneIsrael
  • fireshare
12 Dec 2025
Published
12 Dec 2025
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
0.25%
KEV

Description

Fireshare facilitates self-hosted media and link sharing. Versions 1.2.30 and below allow an authenticated user, or unauthenticated user if the Public Uploads setting is enabled, to craft a malicious filename when uploading a video file. The malicious filename is then concatenated directly into a shell command, which can be used for uploading files to arbitrary directories via path traversal, or executing system commands for Remote Code Execution (RCE). This issue is fixed in version 1.3.0.

Statistics

  • 1 Post
Last activity: 22 hours ago

Fediverse

Profile picture
Offensive Sequence @offseq

🔥 CRITICAL: CVE-2025-67728 in ShaneIsrael fireshare (<1.3.0) enables RCE via crafted file uploads—no auth needed if Public Uploads is on. Patch to 1.3.0+ now & disable Public Uploads! radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 22h ago

CVE-2025-14344

Overview

  • sh1zen
  • Multi Uploader for Gravity Forms
12 Dec 2025
Published
12 Dec 2025
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
0.14%
KEV

Description

The Multi Uploader for Gravity Forms plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'plupload_ajax_delete_file' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to delete arbitrary files on the server.

Statistics

  • 1 Post
Last activity: 23 hours ago

Fediverse

Profile picture
Offensive Sequence @offseq

🚨 CRITICAL (CVSS 9.8): Path traversal in sh1zen Multi Uploader for Gravity Forms (all versions) lets unauthenticated attackers delete files on WordPress servers. Audit, disable, or remove plugin now. CVE-2025-14344 radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 23h ago

CVE-2025-58360

Overview

  • geoserver
  • geoserver
25 Nov 2025
Published
12 Dec 2025
Updated
CVSS v3.1
HIGH (8.2)
EPSS
73.17%
KEV

Description

GeoServer is an open source server that allows users to share and edit geospatial data. From version 2.26.0 to before 2.26.2 and before 2.25.6, an XML External Entity (XXE) vulnerability was identified. The application accepts XML input through a specific endpoint /geoserver/wms operation GetMap. However, this input is not sufficiently sanitized or restricted, allowing an attacker to define external entities within the XML request. This issue has been patched in GeoServer 2.25.6, GeoServer 2.26.3, and GeoServer 2.27.0.

Statistics

  • 2 Posts
Last activity: 20 hours ago

Fediverse

Profile picture
leakix @leakix

🚨 New plugin: GeoserverXxePlugin (CVE-2025-58360).

GeoServer XXE vulnerability detection - XML External Entity injection in WMS GetMap operation, added to CISA KEV catalog.

Results: leakix.net/search?q=%2Bplugin%

  • 0
  • 0
  • 1
  • 20h ago

CVE-2025-11693

Overview

  • recorp
  • Export WP Pages to HTML & PDF – Simply Create a Static Website
13 Dec 2025
Published
13 Dec 2025
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
Pending
KEV

Description

The Export WP Page to Static HTML & PDF plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.3.4 through publicly exposed cookies.txt files containing authentication cookies. This makes it possible for unauthenticated attackers to cookies that may have been injected into the log file if the site administrator triggered a back-up using a specific user role like 'administrator.'

Statistics

  • 1 Post
Last activity: Last hour

Fediverse

Profile picture
Offensive Sequence @offseq

🚨 CVE-2025-11693 (CRITICAL, CVSS 9.8): recorp Export WP Pages to HTML & PDF plugin exposes admin cookies via cookies.txt — risk of WordPress site takeover. Disable plugin & secure backups. No patch yet. radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • Last hour

CVE-2025-40205

Overview

  • Linux
  • Linux
12 Nov 2025
Published
01 Dec 2025
Updated
CVSS
Pending
EPSS
0.03%
KEV

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfs_encode_fh() The function btrfs_encode_fh() does not properly account for the three cases it handles. Before writing to the file handle (fh), the function only returns to the user BTRFS_FID_SIZE_NON_CONNECTABLE (5 dwords, 20 bytes) or BTRFS_FID_SIZE_CONNECTABLE (8 dwords, 32 bytes). However, when a parent exists and the root ID of the parent and the inode are different, the function writes BTRFS_FID_SIZE_CONNECTABLE_ROOT (10 dwords, 40 bytes). If *max_len is not large enough, this write goes out of bounds because BTRFS_FID_SIZE_CONNECTABLE_ROOT is greater than BTRFS_FID_SIZE_CONNECTABLE originally returned. This results in an 8-byte out-of-bounds write at fid->parent_root_objectid = parent_root_id. A previous attempt to fix this issue was made but was lost. https://lore.kernel.org/all/4CADAEEC020000780001B32C@vpn.id2.novell.com/ Although this issue does not seem to be easily triggerable, it is a potential memory corruption bug that should be fixed. This patch resolves the issue by ensuring the function returns the appropriate size for all three cases and validates that *max_len is large enough before writing any data.

Statistics

  • 1 Post
Last activity: 23 hours ago

Bluesky

Profile picture
SecQube | Harvey | AI Platform for MS Graph @secqube.com
CVE-2025-40205 btrfs: avoid potential out-of-bounds in btrfs_encode_fh() scq.ms/3XFaLLu #MicrosoftSecurity #cybersecurity
  • 0
  • 0
  • 0
  • 23h ago

CVE-2025-12735

Overview

  • silentmatt
  • expr-eval
05 Nov 2025
Published
22 Nov 2025
Updated
CVSS
Pending
EPSS
0.06%
KEV

Description

The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However, due to insufficient input validation, an attacker can pass a crafted context object or use MEMBER of the context object into the evaluate() function and trigger arbitrary code execution.

Statistics

  • 1 Post
Last activity: 12 hours ago

Fediverse

Profile picture
robrich @robrich

docker.com/blog/security-that- - #Docker hardened #images fix #vulnerabilities FAST! I love they're contributing to upstream too.

  • 0
  • 0
  • 0
  • 12h ago

CVE-2025-66429

Overview

  • Pending
11 Dec 2025
Published
12 Dec 2025
Updated
CVSS
Pending
EPSS
0.07%
KEV

Description

An issue was discovered in cPanel 110 through 132. A directory traversal vulnerability within the Team Manager API allows for overwrite of an arbitrary file. This can allow for privilege escalation to the root user.

Statistics

  • 1 Post
Last activity: 8 hours ago

Bluesky

Profile picture
r/blueteamsec bot @r-blueteamsec.bsky.social
CVE-2025-66429 - cPanel Directory Traversal Privilege Escalation
  • 0
  • 0
  • 0
  • 8h ago

CVE-2025-11266

Overview

  • Grassroots
  • DICOM (GDCM)
12 Dec 2025
Published
12 Dec 2025
Updated
CVSS v4.0
MEDIUM (6.8)
EPSS
Pending
KEV

Description

An out-of-bounds write vulnerability exists in the Grassroots DICOM library (GDCM). The issue is triggered during parsing of a malformed DICOM file containing encapsulated PixelData fragments (compressed image data stored as multiple fragments). This vulnerability leads to a segmentation fault caused by an out-of-bounds memory access due to unsigned integer underflow in buffer indexing. It is exploitable via file input, simply opening a crafted malicious DICOM file is sufficient to trigger the crash, resulting in a denial-of-service condition.

Statistics

  • 1 Post
Last activity: 16 hours ago

Fediverse

Profile picture
morgen @morgenm

I have identified an out-of-bounds write vulnerability affecting the Grassroots DICOM library versions 3.0.24 and prior. Parsing a malformed DICOM image triggers out-of-bound memory access resulting in a segfault. Software utlizing GDCM for DICOM parsing is affected. GDCM, SimpleITK, and medInria have released patches.

CVE-2025-11266

cisa.gov/news-events/ics-medic

  • 0
  • 0
  • 0
  • 16h ago

CVE-2025-46288

Overview

  • Pending
Pending
Published
Pending
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

  • 1 Post
Last activity: 10 hours ago

Fediverse

Profile picture
Dan (he/him) :twit: @brass75

If you needed a reason to update your Mac to 26.2 sooner rather than later:

App Store
Available for: macOS Tahoe

Impact: An app may be able to access sensitive payment tokens

Description: A permissions issue was addressed with additional restrictions.

CVE-2025-46288: floeki, Zhongcheng Li from IES Red Team of ByteDance

Source: support.apple.com/en-us/125886

(In case you're wondering, yes this CVE does impact iPad and and iPhone as well.)

  • 0
  • 0
  • 0
  • 10h ago

CVE-2025-66039

Overview

  • FreePBX
  • security-reporting
09 Dec 2025
Published
10 Dec 2025
Updated
CVSS v4.0
CRITICAL (9.3)
EPSS
0.08%
KEV

Description

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.

Statistics

  • 2 Posts
Last activity: 15 hours ago

Bluesky

Profile picture
/r/netsec @r-netsec-bot.bsky.social
The FreePBX Rabbit Hole: CVE-2025-66039 & More
  • 0
  • 0
  • 1
  • 15h ago
Showing 21 to 30 of 49 CVEs