CVE-2026-1425

creationtimestamp| type| source ---|---|--- 2026-01-26 09:43:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdcxfkvvbn2n 2026-01-26 10:58:34+00:00| seen| https://infosec.exchange/users/vuldb/statuses/115961044303697007...

EUVD-2019-1425

Malware in sbrugna...

EUVD-2022-1425

Malicious code in bioql PyPI...

CVE-2010-1425

F-Secure Internet Security 2010 and earlier; Anti-Virus for Microsoft Exchange 9 and earlier, and for MIMEsweeper 5.61 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, and for Linux 4.02 and earlier; Anti-Virus 2010 and earlier; Home Server Security 2009; Protection Service for...

CVE-2025-1425

A Sudo privilege misconfiguration vulnerability in PocketBook InkPad Color 3 on Linux, ARM allows attackers to read file contents on the device.This issue affects InkPad Color 3: U743k3.6.8.3671...

CVE-2025-1425 File Read Through Improper Sudo Privilege Management

A Sudo privilege misconfiguration vulnerability in PocketBook InkPad Color 3 on Linux, ARM allows attackers to read file contents on the device.This issue affects InkPad Color 3: U743k3.6.8.3671...

CVE-2021-1425

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance SMA could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability exists because confidential information is bei...

CVE-2024-1425

creationtimestamp| type| source ---|---|--- 2024-03-06 19:17:25+00:00| seen| https://t.me/ctinow/201678...

WordPress EmbedPress Plugin <= 3.9.8 is vulnerable to Cross Site Scripting (XSS)

Software EmbedPress Type Plugin Vulnerable versions = 3.9.8 Fixed in 3.9.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1425 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 71ace84cfcd8 Credits wesley wcraft Required...

CVE-2019-1425

creationtimestamp| type| source ---|---|--- 2024-02-13 07:26:19+00:00| seen| https://t.me/ctinow/183631...

CVE-2013-1425

creationtimestamp| type| source ---|---|--- 2024-02-05 14:16:50+00:00| seen| https://t.me/ctinow/179210...

WordPress Groundhogg Plugin < 2.7.9.4 is vulnerable to SQL Injection

Software Groundhogg Type Plugin Vulnerable versions 2.7.9.4 Fixed in 2.7.9.4 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-1425 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 167f137b46dd Credits rSolutions Security Team Required privilege...

CVE-2023-1425

creationtimestamp| type| source ---|---|--- 2023-04-10 18:38:57+00:00| seen| https://t.me/cibsecurity/61767...

CVE-2023-1425 Groundhogg Contacts < 2.7.9.4 - Admin+ SQLi

The WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg WordPress plugin before 2.7.9.4 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admins...

CVE-2023-1425 Groundhogg Contacts < 2.7.9.4 - Admin+ SQLi

The WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg WordPress plugin before 2.7.9.4 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admins...

CVE-2022-1425

The WPQA Builder Plugin WordPress plugin before 5.2, used as a companion plugin for the Discy and Himer , does not validate that the messageid of the wpqamessageview ajax action belongs to the requesting user, leading to any user being able to read messages for any other users via a Insecure Dire...

CVE-2022-1425

The CVE concerns the WPQA Builder Plugin for WordPress (pre-5.2), used with the Discy and Himer plugins. The vulnerability arises because the wpqa_message_view AJAX action does not validate that the message_id belongs to the requesting user, enabling an IDOR disclosure where any authenticated use...

Amazon Linux AMI : php72, php73 (ALAS-2020-1425)

The version of php72 installed on the remote host is prior to 7.2.33-1.25. The version of php73 installed on the remote host is prior to 7.3.21-1.28. It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1425 advisory. The flaw is in pharparsezipfile of ext/phar/zip.c. When...

CVE-2020-1425

A remoted code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1457...

CVE-2020-1425

Summary: CVE-2020-1425 and CVE-2020-1457 describe remote code execution vulnerabilities in Microsoft Windows Codecs Library due to memory-object handling. The CVE-2020-1425 entry reports a network-exploitable issue with CVSS v3.1 metrics: AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H and CVSS v2 base score...