Overview
Description
Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications which execute untrusted templates. Jinja's sandbox does catch calls to str.format and ensures they don't escape the sandbox. However, it's possible to use the |attr filter to get a reference to a string's plain format method, bypassing the sandbox. After the fix, the |attr filter no longer bypasses the environment's attribute lookup. This vulnerability is fixed in 3.1.6.
Statistics
- 1 Post
Last activity: 2 hours ago
Overview
- Apache Software Foundation
- Apache Tika core
- org.apache.tika:tika-core
04 Dec 2025
Published
05 Dec 2025
Updated
CVSS
Pending
EPSS
0.06%
KEV
Description
Critical XXE in Apache Tika tika-core (1.13-3.2.1), tika-pdf-module (2.0.0-3.2.1) and tika-parsers (1.13-1.28.5) modules on all platforms allows an attacker to carry out XML External Entity injection via a crafted XFA file inside of a PDF.
This CVE covers the same vulnerability as in CVE-2025-54988. However, this CVE expands the scope of affected packages in two ways.
First, while the entrypoint for the vulnerability was the tika-parser-pdf-module as reported in CVE-2025-54988, the vulnerability and its fix were in tika-core. Users who upgraded the tika-parser-pdf-module but did not upgrade tika-core to >= 3.2.2 would still be vulnerable.
Second, the original report failed to mention that in the 1.x Tika releases, the PDFParser was in the "org.apache.tika:tika-parsers" module.
Statistics
- 1 Post
Last activity: 14 hours ago
Overview
- Adobe
- ColdFusion
09 Dec 2025
Published
10 Dec 2025
Updated
CVSS v3.1
CRITICAL (9.1)
EPSS
0.25%
KEV
Description
ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could lead to arbitrary code execution by a high priviledged attacker. Exploitation of this issue does not require user interaction and scope is changed.
Statistics
- 1 Post
Last activity: 17 hours ago
Fediverse
🚨 CRITICAL: CVE-2025-61808 in Adobe ColdFusion (2025.4, 2023.16, 2021.22 & earlier) allows unrestricted dangerous file uploads—arbitrary code exec, no user interaction. Patch ASAP & lock down uploads! https://radar.offseq.com/threat/cve-2025-61808-unrestricted-upload-of-file-with-da-35155246 #OffSeq #ColdFusion #Vuln #cybersecurity
Overview
Description
A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and Ivanti Neurons for ZTA allows an attacker to access certain restricted resources without authentication.
Statistics
- 1 Post
Last activity: 15 hours ago
Overview
Description
A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance.
Statistics
- 1 Post
Last activity: 15 hours ago
Overview
Description
ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used.
Statistics
- 1 Post
Last activity: 1 hour ago
Overview
- Apache Software Foundation
- Apache Struts
- org.apache.struts:struts2-core
10 Dec 2025
Published
10 Dec 2025
Updated
CVSS
Pending
EPSS
0.02%
KEV
Description
Denial of Service vulnerability in Apache Struts, file leak in multipart request processing causes disk exhaustion.
This issue affects Apache Struts: from 2.0.0 through 6.7.4, from 7.0.0 through 7.0.3.
Users are recommended to upgrade to version 6.8.0 or 7.1.1, which fixes the issue.
It's related to https://cve.org/CVERecord?id=CVE-2025-64775 - this CVE addresses missing affected version 6.7.4
Statistics
- 1 Post
Last activity: 11 hours ago
Overview
Description
ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence expansion of a configuration file. (A configuration file that provides a complete literal username is not categorized as an untrusted source.)
Statistics
- 1 Post
Last activity: 1 hour ago
Overview
- WAGO
- Indsutrial-Managed-Switches
10 Dec 2025
Published
10 Dec 2025
Updated
CVSS v3.1
HIGH (8.8)
EPSS
0.08%
KEV
Description
An unauthenticated remote attacker can abuse unsafe sscanf calls within the check_account() function to write arbitrary data into fixed-size stack buffers which leads to full device compromise.
Statistics
- 1 Post
- 3 Interactions
Last activity: 4 hours ago
Overview
- Toto Link
- X5000R's (AX1800 router)
10 Dec 2025
Published
10 Dec 2025
Updated
CVSS
Pending
EPSS
Pending
KEV
Description
Unauthenticated Telnet enablement via cstecgi.cgi (auth bypass) leading to unauthenticated root login with a blank password on factory/reset X5000R V9.1.0u.6369_B20230113 (arbitrary command execution). Earlier versions that share the same implementation, may also be affected.
Statistics
- 1 Post
- 3 Interactions
Last activity: 4 hours ago