Subscribe, build a custom feed, or pitch a sponsorship at hello@acadenix.com
Latest intel// live feed
CVE-2025-13329 — File: The File Uploader for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads
The File Uploader for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the callback function for the 'add-image-data' REST API endpoint in all versions up to, and including, 1.0.3. This makes it possible for unauthenticated attackers to upload arbitrary files to the Uploadcare service and subsequently download them on the affected site's server which may make remote code execution possible. CVSSv3.1 9.8 (CRITICAL)
CVE-2023-53959 — Filezilla-project Filezilla_client: FileZilla Client 3.63.1 contains a DLL hijacking vulnerability that allows attackers to execute malicious
FileZilla Client 3.63.1 contains a DLL hijacking vulnerability that allows attackers to execute malicious code by placing a crafted TextShaping.dll in the application directory. Attackers can generate a reverse shell payload using msfvenom and replace the missing DLL to achieve remote code execution when the application launches. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-58052 — Galette Galette: Starting in version 0.9.6 and prior to version 1.2.0, attackers with group manager role
Galette is a membership management web application for non profit organizations. Starting in version 0.9.6 and prior to version 1.2.0, attackers with group manager role can bypass intended restrictions allowing unauthorized access and changes despite role-based controls. Since it requires privileged access initially, exploitation is restricted to malicious insiders or compromised group managers accounts. Version 1.2.0 fixes the issue. CVSSv3.1 8.1 (HIGH) · EPSS 20th percentile
CVE-2025-1928 — Restajet Online_food_delivery_system: Online Food Delivery System allows Password Recovery Exploitation.
Improper Restriction of Excessive Authentication Attempts vulnerability in Restajet Information Technologies Inc. Online Food Delivery System allows Password Recovery Exploitation. This issue affects Online Food Delivery System: through 19122025. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. CVSSv3.1 9.1 (CRITICAL) · EPSS 19th percentile
Can chatbots craft correct code?
Trail of Bits analyzes the fundamental differences between compilers and LLMs in code generation, arguing that while compilers preserve semantic intent deterministically, LLMs are nondeterministic by design and prone to confident misinterpretation of context. The article presents a case study where Claude 'fixed' a non-existent bug in Vendetect by rewriting working recursive code, breaking core functionality, and illustrates why LLMs fail on legacy codebases with implicit constraints and undocumented context.
CVE-2025-56157 — Langgenius Dify: Default credentials in Dify thru 1.5.1.
Default credentials in Dify thru 1.5.1. PostgreSQL username and password specified in the docker-compose.yaml file included in its source code. NOTE: the Supplier reports that the Docker configuration does not make PostgreSQL (on TCP port 5432) exposed by default in version 1.0.1 or later. CVSSv3.1 9.8 (CRITICAL) · EPSS 52th percentile
HTB-MonitorsFour-Writeup — Detailed writeup for HackTheBox MonitorsFour machine: IDOR to credentials, Cacti 1.2.28 RCE exploitation, and Docker Des
Detailed HTB writeup demonstrating a complete attack chain: IDOR vulnerability on the main site leaks MD5 password hashes, Cacti 1.2.28 RCE via CVE-2025-24367 (command injection in graph templates) achieves initial shell in a Docker container, and CVE-2025-9074 (unauthenticated Docker API access on Docker Desktop's internal subnet 192.168.65.7:2375) enables container escape to read the host root flag.
CVE-2025-64236 — Authentication: Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn tuturn allows
Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn tuturn allows Authentication Abuse.This issue affects Tuturn: from n/a through < 3.6. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-68278 — Ssw Tinacms: In tinacms prior to version 3.1.1, tinacms uses the gray-matter package in an insecure
Tina is a headless content management system. In tinacms prior to version 3.1.1, tinacms uses the gray-matter package in an insecure way allowing attackers that can control the content of the processed markdown files, e.g., blog posts, to execute arbitrary code. tinacms version 3.1.1, @tinacms/cli version 2.0.4, and @tinacms/graphql version 2.0.3 contain a fix for the issue. CVSSv3.1 8.8 (HIGH)
CVE-2025-14861 — Mozilla Firefox: Some of these bugs showed evidence of memory corruption and we presume that with
Memory safety bugs present in Firefox 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 146.0.1. CVSSv3.1 8.8 (HIGH)
CVE-2025-14860 — Mozilla Firefox: Use-after-free in the Disability Access APIs component.
Use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 146.0.1. CVSSv3.1 9.8 (CRITICAL)
CVE-2025-40898 — Nozominetworks Cmc: A path traversal vulnerability was discovered in the Import Arc data archive functionality due
A path traversal vulnerability was discovered in the Import Arc data archive functionality due to insufficient validation of the input file. An authenticated user with limited privileges, by uploading a specifically-crafted Arc data archive, can potentially write arbitrary files in arbitrary paths, altering the device configuration and/or affecting its availability. CVSSv3.1 8.1 (HIGH)
CVE-2025-40892 — Nozominetworks Cmc: A Stored Cross-Site Scripting vulnerability was discovered in the Reports functionality due to improper
A Stored Cross-Site Scripting vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing a JavaScript payload, or a victim can be socially engineered to import a malicious report template. When the victim views or imports the report, the XSS executes in their browser context, allowing the attacker to perform unauthorized actions as the victim, CVSSv3.1 8.9 (HIGH)
CVE-2025-66078 — Control: Improper Control of Generation of Code ('Code Injection') vulnerability in jetmonsters Hotel Booking Lite
Improper Control of Generation of Code ('Code Injection') vulnerability in jetmonsters Hotel Booking Lite motopress-hotel-booking-lite allows Remote Code Inclusion.This issue affects Hotel Booking Lite: from n/a through <= 5.2.3. CVSSv3.1 9.1 (CRITICAL)
CVE-2025-66074 — Upload: Unrestricted Upload of File with Dangerous Type vulnerability in Cozmoslabs WP Webhooks wp-webhooks allows
Unrestricted Upload of File with Dangerous Type vulnerability in Cozmoslabs WP Webhooks wp-webhooks allows Path Traversal.This issue affects WP Webhooks: from n/a through <= 3.3.8. CVSSv3.1 9.0 (CRITICAL)
CVE-2025-64373 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in shinetheme Traveler traveler allows PHP Local File Inclusion.This issue affects Traveler: from n/a through < 3.2.6. CVSSv3.1 8.1 (HIGH)
CVE-2025-64371 — Neutralization: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in shinetheme Traveler traveler allows Blind SQL Injection.This issue affects Traveler: from n/a through < 3.2.6. CVSSv3.1 8.5 (HIGH)
CVE-2025-64231 — Upload: Unrestricted Upload of File with Dangerous Type vulnerability in RedefiningTheWeb WordPress Contact Form 7
Unrestricted Upload of File with Dangerous Type vulnerability in RedefiningTheWeb WordPress Contact Form 7 PDF, Google Sheet & Database rtwwcfp-wordpress-contact-form-7-pdf allows Using Malicious Files.This issue affects WordPress Contact Form 7 PDF, Google Sheet & Database: from n/a through <= 3.0.0. CVSSv3.1 9.9 (CRITICAL)
CVE-2025-64205 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in TieLabs Jannah jannah allows PHP Local File Inclusion.This issue affects Jannah: from n/a through <= 7.6.0. CVSSv3.1 8.1 (HIGH)
CVE-2025-60084 — Deserialization: of Untrusted Data vulnerability in add-ons.org PDF for Elementor Forms + Drag And
Deserialization of Untrusted Data vulnerability in add-ons.org PDF for Elementor Forms + Drag And Drop Template Builder pdf-for-elementor-forms allows Object Injection.This issue affects PDF for Elementor Forms + Drag And Drop Template Builder: from n/a through <= 6.5.0. CVSSv3.1 8.8 (HIGH)
CVE-2025-60072 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Processby Anchor smooth scroll anchor-smooth-scroll allows PHP Local File Inclusion.This issue affects Anchor smooth scroll: from n/a through <= 1.0.2. CVSSv3.1 8.1 (HIGH)
CVE-2025-60071 — Control: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in don-themes Riode riode allows PHP Local File Inclusion.This issue affects Riode: from n/a through <= 1.6.23. CVSSv3.1 8.1 (HIGH)
CVE-2025-60069 — Thememove Minimogwp: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeMove MinimogWP minimog allows PHP Local File Inclusion.This issue affects MinimogWP: from n/a through <= 3.9.6. CVSSv3.1 8.1 (HIGH)
CVE-2025-60067 — Axiomthemes Giardino: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Giardino giardino allows PHP Local File Inclusion.This issue affects Giardino: from n/a through <= 1.1.10. CVSSv3.1 8.1 (HIGH)
CVE-2025-60066 — Axiomthemes Katelyn: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Katelyn katelyn allows PHP Local File Inclusion.This issue affects Katelyn: from n/a through <= 1.0.10. CVSSv3.1 8.1 (HIGH)