CVE-2026-25456

creationtimestamp| type| source ---|---|--- 2026-03-26 21:34:39+00:00| seen| Telegram/-QvDDLq1XmiKkWzrEeLXRlLt5ytYeUCyAFDlagxirK1YIk...

CVE-2019-25456

creationtimestamp| type| source ---|---|--- 2026-02-26 23:00:15+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfscepq4xa2m...

CVE-2019-25456

Web Ofisi Emlak v2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'ara' GET parameter. Attackers can send requests to with time-based SQL injection payloads to extract sensitive database information or...

CVE-2021-25456

OOB read vulnerability in libswmfextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute memcpy at arbitrary address via forged wmf file...

CVE-2025-25456

Tenda AC10 V4.0siV16.03.10.20 is vulnerable to Buffer Overflow in AdvSetMacMtuWan via mac2...

CVE-2025-25456

Tenda AC10 V4.0siV16.03.10.20 is vulnerable to Buffer Overflow in AdvSetMacMtuWan via mac2...

CVE-2025-25456

Tenda AC10 V4.0siV16.03.10.20 is vulnerable to Buffer Overflow in AdvSetMacMtuWan via mac2...

CVE-2025-25456

Tenda AC10 V4.0siV16.03.10.20 is vulnerable to Buffer Overflow in AdvSetMacMtuWan via mac2...

CVE-2025-25456

CVE-2025-25456 affects the Tenda AC10 router (V4.0si V16.03.10.20). The vulnerability is a Buffer Overflow in the AdvSetMacMtuWan function, triggered by the mac2 input, allowing potential arbitrary code execution or a denial of service. The root cause is the mac2 parameter not being properly vali...

CVE-2023-25456

creationtimestamp| type| source ---|---|--- 2023-03-23 19:37:07+00:00| seen| https://t.me/cibsecurity/60603...

CVE-2023-25456

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Klaviyo, Inc. Klaviyo plugin = 3.0.7 versions...

CVE-2023-25456

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Klaviyo, Inc. Klaviyo plugin = 3.0.7 versions...

CVE-2023-25456

CVE-2023-25456 (Klaviyo WordPress plugin) : Authenticated (admin+) Stored Cross-Site Scripting vulnerability affecting Klaviyo plugin versions

WordPress Klaviyo Plugin <= 3.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Klaviyo Type Plugin Vulnerable versions = 3.0.7 Fixed in 3.0.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25456 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID f82861d87775 Credits Abdi Pranata Required privilege...

CVE-2022-25456

creationtimestamp| type| source ---|---|--- 2022-03-18 23:22:57+00:00| seen| https://t.me/cibsecurity/39268...

CVE-2022-25456

CVE-2022-25456 affects Tenda AC6 (Firmware v15.03.05.09_multi). The vulnerability is a stack overflow in the WifiBasicSet function triggered by the security_5g parameter, enabling arbitrary command execution on affected devices. Public sources consistently describe the issue as a stack overflow i...

CVE-2021-25456

creationtimestamp| type| source ---|---|--- 2021-09-09 22:29:57+00:00| seen| https://t.me/cibsecurity/28620...

CVE-2021-25456

CVE-2021-25456 affects the libswmfextractor.so component. The vulnerability is described as an out-of-bounds read that enables an attacker to cause a memcpy at an arbitrary address via a forged WMF file, implying memory corruption with possible in-memory impact. According to the sources, this is ...