CVE-2026-25348 WordPress Download Alt Text AI plugin <= 1.10.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in alttextai Download Alt Text AI alttext-ai allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download Alt Text AI: from n/a through = 1.10.15...

CVE-2019-25348

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2023-25348

ChurchCRM 4.5.3 was discovered to contain a CSV injection vulnerability via the Last Name and First Name input fields when creating a new person. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file...

CVE-2022-25348

Untrusted search path vulnerability in AttacheCase ver.4.0.2.7 and earlier allows an attacker to gain privileges and execute arbitrary code via a Trojan horse DLL in an unspecified directory...

CVE-2025-2023

Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must vis...

CVE-2023-25348

creationtimestamp| type| source ---|---|--- 2023-04-25 16:25:06+00:00| seen| https://t.me/cibsecurity/62791...

CVE-2023-25348

ChurchCRM 4.5.3 was discovered to contain a CSV injection vulnerability via the Last Name and First Name input fields when creating a new person. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file...

CVE-2023-25348

ChurchCRM 4.5.3 was discovered to contain a CSV injection vulnerability via the Last Name and First Name input fields when creating a new person. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file...

CVE-2022-25348

creationtimestamp| type| source ---|---|--- 2022-03-31 12:18:30+00:00| seen| https://t.me/cibsecurity/39905...

CVE-2022-25348

CVE-2022-25348 concerns AttacheCase (HiBARA) where an untrusted DLL search path allows a Trojan horse DLL to be loaded, enabling local privilege escalation and arbitrary code execution. Affected versions are AttacheCase 4.0.2.7 and earlier. The vulnerability stems from insecure DLL loading and se...

JVN#10140834: AttacheCase may insecurely load Dynamic Link Libraries

AttacheCase is an open source file encryption software provided by HiBARA Software. AttacheCase contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privilege to run the software. Solution...

CVE-2021-25348

creationtimestamp| type| source ---|---|--- 2021-03-05 00:46:52+00:00| seen| https://t.me/cibsecurity/24473...

CVE-2021-25348

Samsung Internet (Android) is affected by CVE-2021-25348 due to an improper permission grant check in versions prior to 13.0.1.60, which allows access to files in internal storage without the authorized STORAGE permission. The issue stems from insufficient validation of permission grants when acc...