22 matches found
CVE-2026-25207
Out-of-bounds write vulnerability in Samsung Open Source Escargot allows Overflow Buffers.This issue affects Escargot: 97e8115ab1110bc502b4b5e4a0c689a71520d335...
CVE-2026-25207
creationtimestamp| type| source ---|---|--- 2026-04-13 07:03:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjeceprhl32k 2026-04-13 07:18:01+00:00| published-proof-of-concept| Telegram/WZFVHGgaKyJ7TxaSM0HnzDZsEpM2ufMQ-E7g3YgMqDv7PE...
CVE-2025-25207
creationtimestamp| type| source ---|---|--- 2025-06-09 07:08:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lr5t2hazkg2a...
CVE-2025-25207 Rhcl: authpolicy callbacks result in denial of service in authorino severity
The Authorino service in the Red Hat Connectivity Link is the authorization service for zero trust API security. Authorino allows the users with developer persona to add callbacks to be executed to HTTP endpoints once the authorization process is completed. It was found that an attacker with...
CVE-2025-25207 Rhcl: authpolicy callbacks result in denial of service in authorino severity
The Authorino service in the Red Hat Connectivity Link is the authorization service for zero trust API security. Authorino allows the users with developer persona to add callbacks to be executed to HTTP endpoints once the authorization process is completed. It was found that an attacker with...
Linux Distros Unpatched Vulnerability : CVE-2025-25207
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Red Hat Enterprise Linux - RHCL: AuthPolicy Callbacks Result in Denial of Service in Authorino Severity CVE-2025-25207 Note that Nessus relies on the presence o...
CVE-2020-25207 affecting package toolbox 0.0.18-9
CVE-2020-25207 affecting package toolbox 0.0.18-9. This CVE either no longer is or was never applicable...
CVE-2024-25207
Barangay Population Monitoring System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in the Add Resident function at /barangay-population-monitoring-system/masterlist.php. This vulnerabiity allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2024-25207
Barangay Population Monitoring System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in the Add Resident function at /barangay-population-monitoring-system/masterlist.php. This vulnerabiity allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2024-25207
Barangay Population Monitoring System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in the Add Resident function at /barangay-population-monitoring-system/masterlist.php. This vulnerabiity allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2024-25207
The CVE-2024-25207 entry concerns Barangay Population Monitoring System v1.0, which has a cross-site scripting (XSS) flaw in the Add Resident function (masterlist.php) allowing payloads in the Contact Number field to execute arbitrary scripts. Affected component: Add Resident feature in Barangay ...
CVE-2023-25207
PrestaShop dpdfrance 6.1.3 is vulnerable to SQL Injection via dpdfrance/ajax.php...
CVE-2022-25207
A cross-site request forgery CSRF vulnerability in Jenkins Chef Sinatra Plugin 1.20 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-controlled URL and have it parse an XML response...
CVE-2022-25207
A cross-site request forgery CSRF vulnerability in Jenkins Chef Sinatra Plugin 1.20 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-controlled URL and have it parse an XML response...
CVE-2022-25207
A cross-site request forgery CSRF vulnerability in Jenkins Chef Sinatra Plugin 1.20 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-controlled URL and have it parse an XML response...
CVE-2022-25207
Jenkins Chef Sinatra Plugin 1.20 and earlier is affected by a CSRF vulnerability. Affected component: the plugin’s form validation flow; root cause: insufficient protection allows an attacker with Overall/Read permission to have Jenkins send requests to an attacker‑controlled URL and parse the XM...
CVE-2021-25207
creationtimestamp| type| source ---|---|--- 2021-07-23 16:37:34+00:00| seen| https://t.me/cibsecurity/26436...
CVE-2021-25207
CVE-2021-25207 corresponds to an Arbitrary file upload vulnerability in SourceCodester E-Commerce Website v1.0, exploitable via prodViewUpdate.php. Connected sources corroborate the issue and describe that uploading a crafted file can lead to arbitrary code execution. The CVE entry has a high/cri...
CVE-2020-25207
creationtimestamp| type| source ---|---|--- 2020-11-16 18:37:39+00:00| seen| https://t.me/cibsecurity/16352...
CVE-2020-25207
CVE-2020-25207 affects JetBrains Toolbox prior to version 1.18. The vulnerability enables remote code execution via a browser protocol handler, with CVSS 3.1 base score 9.8 (CRITICAL). Connected documents confirm the issue and vector but do not specify a patched version; no exploitation details a...