2025-12-20
2025-12-20 04:16Z
CRIT

CVE-2025-13329 — File: The File Uploader for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-13329

The File Uploader for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the callback function for the 'add-image-data' REST API endpoint in all versions up to, and including, 1.0.3. This makes it possible for unauthenticated attackers to upload arbitrary files to the Uploadcare service and subsequently download them on the affected site's server which may make remote code execution possible. CVSSv3.1 9.8 (CRITICAL)

CWECWE 434TYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-12-19
2025-12-19 21:15Z
CRIT

CVE-2023-53959 — Filezilla-project Filezilla_client: FileZilla Client 3.63.1 contains a DLL hijacking vulnerability that allows attackers to execute malicious

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2023-53959

FileZilla Client 3.63.1 contains a DLL hijacking vulnerability that allows attackers to execute malicious code by placing a crafted TextShaping.dll in the application directory. Attackers can generate a reverse shell payload using msfvenom and replace the missing DLL to achieve remote code execution when the application launches. CVSSv3.1 9.8 (CRITICAL)

CWECWE 427VNDFilezilla ProjectVNDFilezillaTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-12-19
2025-12-19 17:15Z
HIGH

CVE-2025-58052 — Galette Galette: Starting in version 0.9.6 and prior to version 1.2.0, attackers with group manager role

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-58052

Galette is a membership management web application for non profit organizations. Starting in version 0.9.6 and prior to version 1.2.0, attackers with group manager role can bypass intended restrictions allowing unauthorized access and changes despite role-based controls. Since it requires privileged access initially, exploitation is restricted to malicious insiders or compromised group managers accounts. Version 1.2.0 fixes the issue. CVSSv3.1 8.1 (HIGH) · EPSS 20th percentile

CWECWE 863VNDGaletteTYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-12-19
2025-12-19 13:16Z
CRIT

CVE-2025-1928 — Restajet Online_food_delivery_system: Online Food Delivery System allows Password Recovery Exploitation.

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-1928

Improper Restriction of Excessive Authentication Attempts vulnerability in Restajet Information Technologies Inc. Online Food Delivery System allows Password Recovery Exploitation. This issue affects Online Food Delivery System: through 19122025. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. CVSSv3.1 9.1 (CRITICAL) · EPSS 19th percentile

CWECWE 307VNDRestajetTYPVulnerability
9.1
CVSS v3.1
96
Edit Score
2025-12-19
2025-12-19 12:00Z
HIGH

Can chatbots craft correct code?

Trail of Bits·blog.trailofbits.com

Trail of Bits analyzes the fundamental differences between compilers and LLMs in code generation, arguing that while compilers preserve semantic intent deterministically, LLMs are nondeterministic by design and prone to confident misinterpretation of context. The article presents a case study where Claude 'fixed' a non-existent bug in Vendetect by rewriting working recursive code, breaking core functionality, and illustrates why LLMs fail on legacy codebases with implicit constraints and undocumented context.

SRFApplicationTACTA0001TYPResearchTYPTechniqueSTGExecution
78
Edit Score
2025-12-18
2025-12-18 19:16Z
CRIT

CVE-2025-56157 — Langgenius Dify: Default credentials in Dify thru 1.5.1.

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-56157

Default credentials in Dify thru 1.5.1. PostgreSQL username and password specified in the docker-compose.yaml file included in its source code. NOTE: the Supplier reports that the Docker configuration does not make PostgreSQL (on TCP port 5432) exposed by default in version 1.0.1 or later. CVSSv3.1 9.8 (CRITICAL) · EPSS 52th percentile

CWECWE 798VNDLanggeniusTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-12-18
2025-12-18 19:13Z
CRIT

HTB-MonitorsFour-Writeup — Detailed writeup for HackTheBox MonitorsFour machine: IDOR to credentials, Cacti 1.2.28 RCE exploitation, and Docker Des

GitHub · container escape·github.comGITHUB POCCVE-2025-24367CVE-2025-9074

Detailed HTB writeup demonstrating a complete attack chain: IDOR vulnerability on the main site leaks MD5 password hashes, Cacti 1.2.28 RCE via CVE-2025-24367 (command injection in graph templates) achieves initial shell in a Docker container, and CVE-2025-9074 (unauthenticated Docker API access on Docker Desktop's internal subnet 192.168.65.7:2375) enables container escape to read the host root flag.

SRFApplicationTACTA0004TACTA0001TACTA0002SRFWebVNDDockerVNDCactiTYPWriteup
78
Edit Score
728 × 90 / responsive · programmatic ad slot
2025-12-18
2025-12-18 17:15Z
CRIT

CVE-2025-64236 — Authentication: Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn tuturn allows

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-64236

Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn tuturn allows Authentication Abuse.This issue affects Tuturn: from n/a through < 3.6. CVSSv3.1 9.8 (CRITICAL)

CWECWE 288TYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-12-18
2025-12-18 16:15Z
HIGH

CVE-2025-68278 — Ssw Tinacms: In tinacms prior to version 3.1.1, tinacms uses the gray-matter package in an insecure

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-68278

Tina is a headless content management system. In tinacms prior to version 3.1.1, tinacms uses the gray-matter package in an insecure way allowing attackers that can control the content of the processed markdown files, e.g., blog posts, to execute arbitrary code. tinacms version 3.1.1, @tinacms/cli version 2.0.4, and @tinacms/graphql version 2.0.3 contain a fix for the issue. CVSSv3.1 8.8 (HIGH)

CWECWE 94VNDSswVNDTinaTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2025-12-18
2025-12-18 15:15Z
HIGH

CVE-2025-14861 — Mozilla Firefox: Some of these bugs showed evidence of memory corruption and we presume that with

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-14861

Memory safety bugs present in Firefox 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 146.0.1. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDMozillaTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2025-12-18
2025-12-18 15:15Z
CRIT

CVE-2025-14860 — Mozilla Firefox: Use-after-free in the Disability Access APIs component.

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-14860

Use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 146.0.1. CVSSv3.1 9.8 (CRITICAL)

CWECWE 416VNDMozillaTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2025-12-18
2025-12-18 14:15Z
HIGH

CVE-2025-40898 — Nozominetworks Cmc: A path traversal vulnerability was discovered in the Import Arc data archive functionality due

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-40898

A path traversal vulnerability was discovered in the Import Arc data archive functionality due to insufficient validation of the input file. An authenticated user with limited privileges, by uploading a specifically-crafted Arc data archive, can potentially write arbitrary files in arbitrary paths, altering the device configuration and/or affecting its availability. CVSSv3.1 8.1 (HIGH)

CWECWE 22VNDNozominetworksTYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-12-18
2025-12-18 14:15Z
HIGH

CVE-2025-40892 — Nozominetworks Cmc: A Stored Cross-Site Scripting vulnerability was discovered in the Reports functionality due to improper

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-40892

A Stored Cross-Site Scripting vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing a JavaScript payload, or a victim can be socially engineered to import a malicious report template. When the victim views or imports the report, the XSS executes in their browser context, allowing the attacker to perform unauthorized actions as the victim, CVSSv3.1 8.9 (HIGH)

CWECWE 79VNDNozominetworksVNDStoredTYPVulnerability
8.9
CVSS v3.1
95
Edit Score
2025-12-18
2025-12-18 08:16Z
CRIT

CVE-2025-66078 — Control: Improper Control of Generation of Code ('Code Injection') vulnerability in jetmonsters Hotel Booking Lite

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-66078

Improper Control of Generation of Code ('Code Injection') vulnerability in jetmonsters Hotel Booking Lite motopress-hotel-booking-lite allows Remote Code Inclusion.This issue affects Hotel Booking Lite: from n/a through <= 5.2.3. CVSSv3.1 9.1 (CRITICAL)

CWECWE 94TYPVulnerability
9.1
CVSS v3.1
96
Edit Score
2025-12-18
2025-12-18 08:16Z
CRIT

CVE-2025-66074 — Upload: Unrestricted Upload of File with Dangerous Type vulnerability in Cozmoslabs WP Webhooks wp-webhooks allows

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-66074

Unrestricted Upload of File with Dangerous Type vulnerability in Cozmoslabs WP Webhooks wp-webhooks allows Path Traversal.This issue affects WP Webhooks: from n/a through <= 3.3.8. CVSSv3.1 9.0 (CRITICAL)

CWECWE 434TYPVulnerability
9.0
CVSS v3.1
95
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-64373 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-64373

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in shinetheme Traveler traveler allows PHP Local File Inclusion.This issue affects Traveler: from n/a through < 3.2.6. CVSSv3.1 8.1 (HIGH)

CWECWE 98TYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-64371 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-64371

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in shinetheme Traveler traveler allows Blind SQL Injection.This issue affects Traveler: from n/a through < 3.2.6. CVSSv3.1 8.5 (HIGH)

CWECWE 89TYPVulnerability
8.5
CVSS v3.1
93
Edit Score
2025-12-18
2025-12-18 08:16Z
CRIT

CVE-2025-64231 — Upload: Unrestricted Upload of File with Dangerous Type vulnerability in RedefiningTheWeb WordPress Contact Form 7

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-64231

Unrestricted Upload of File with Dangerous Type vulnerability in RedefiningTheWeb WordPress Contact Form 7 PDF, Google Sheet & Database rtwwcfp-wordpress-contact-form-7-pdf allows Using Malicious Files.This issue affects WordPress Contact Form 7 PDF, Google Sheet & Database: from n/a through <= 3.0.0. CVSSv3.1 9.9 (CRITICAL)

CWECWE 434TYPVulnerability
9.9
CVSS v3.1
100
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-64205 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-64205

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in TieLabs Jannah jannah allows PHP Local File Inclusion.This issue affects Jannah: from n/a through <= 7.6.0. CVSSv3.1 8.1 (HIGH)

CWECWE 98TYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-60084 — Deserialization: of Untrusted Data vulnerability in add-ons.org PDF for Elementor Forms + Drag And

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-60084

Deserialization of Untrusted Data vulnerability in add-ons.org PDF for Elementor Forms + Drag And Drop Template Builder pdf-for-elementor-forms allows Object Injection.This issue affects PDF for Elementor Forms + Drag And Drop Template Builder: from n/a through <= 6.5.0. CVSSv3.1 8.8 (HIGH)

CWECWE 502TYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-60072 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-60072

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Processby Anchor smooth scroll anchor-smooth-scroll allows PHP Local File Inclusion.This issue affects Anchor smooth scroll: from n/a through <= 1.0.2. CVSSv3.1 8.1 (HIGH)

CWECWE 98TYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-60071 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-60071

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in don-themes Riode riode allows PHP Local File Inclusion.This issue affects Riode: from n/a through <= 1.6.23. CVSSv3.1 8.1 (HIGH)

CWECWE 98TYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-60069 — Thememove Minimogwp: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-60069

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeMove MinimogWP minimog allows PHP Local File Inclusion.This issue affects MinimogWP: from n/a through <= 3.9.6. CVSSv3.1 8.1 (HIGH)

CWECWE 98VNDThememoveTYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-60067 — Axiomthemes Giardino: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-60067

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Giardino giardino allows PHP Local File Inclusion.This issue affects Giardino: from n/a through <= 1.1.10. CVSSv3.1 8.1 (HIGH)

CWECWE 98VNDAxiomthemesTYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2025-12-18
2025-12-18 08:16Z
HIGH

CVE-2025-60066 — Axiomthemes Katelyn: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2025-60066

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Katelyn katelyn allows PHP Local File Inclusion.This issue affects Katelyn: from n/a through <= 1.0.10. CVSSv3.1 8.1 (HIGH)

CWECWE 98VNDAxiomthemesTYPVulnerability
8.1
CVSS v3.1
91
Edit Score