WordPress Front User Submit plugin <= 4.9.5 - Open Redirect vulnerability

Open Redirect vulnerability discovered by Bob Matyas - Automattic in WordPress Plugin WP Front User Submit / Front Editor versions = 4.9.5...

CVE-2025-12569

creationtimestamp| type| source ---|---|--- 2025-11-24 09:37:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6ejp33cps2s...

CVE-2025-12569 WP Front User Submit < 5.0.0 - Open Redirect

The Guest posting / Frontend Posting / Front Editor WordPress plugin before 5.0.0 does not validate a parameter before redirecting the user to its value, leading to an Open Redirect issue...

CVE-2020-14049

Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious website could launch Viber with arbitrary parameters, forcing a victim to send an NTLM authentication request, and either relay the request or capture the hash for offline password cracking. NOTE: this...

CVE-2024-12569

CVE-2024-12569 describes an information-disclosure in the Milestone XProtect Device Pack driver’s log files, allowing a local attacker to read camera credentials stored in the Recording Server under certain conditions. The vulnerability affects the Milestone XProtect Device Pack camera drivers an...

CVE-2024-12569 Sensitive Information in Driver’s Log File

Disclosure of sensitive information in a Milestone XProtect Device Pack driver’s log file for third-party cameras, allows an attacker to read camera credentials stored in the Recording Server under specific conditions...

Cross site request forgery (csrf)

Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious website could launch Viber with arbitrary parameters, forcing a victim to send an NTLM authentication request, and either relay the request or capture the hash for offline password cracking. NOTE: this...

CVE-2020-14049

Viber for Windows up to 13.2.0.39 is affected by an issue in its custom URI handler due to improper quoting, connected to an incomplete fix for CVE-2019-12569. A malicious site could launch Viber with arbitrary parameters, forcing a victim to initiate an NTLM authentication request, potentially r...

CVE-2020-14049

Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious website could launch Viber with arbitrary parameters, forcing a victim to send an NTLM authentication request, and either relay the request or capture the hash for offline password cracking. NOTE: this...

CVE-2019-12569

CVE-2019-12569 affects Viber for Desktop (Windows) prior to 10.7.0, due to unsafe search paths in the URI handler. A targeted user must click a malicious link; successfully, the app loads libraries from the URI-specified directory and could execute arbitrary commands with the user’s privileges. C...

Fedora Update for quassel FEDORA-2011-12569

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2020-12569

This CVE entry is rejected and not used; it does not represent an active vulnerability.