CVE-2026-25859 WeKan < 8.20 Migration Functionality Insufficient Permission Checks

Wekan versions prior to 8.20 allow non-administrative users to access migration functionality due to insufficient permission checks, potentially resulting in unauthorized migration operations...

CVE-2024-25859

creationtimestamp| type| source ---|---|--- 2024-02-28 21:27:01+00:00| seen| https://t.me/ctinow/195883 2024-02-28 21:27:11+00:00| seen| https://t.me/ctinow/195893...

CVE-2024-25859

A path traversal vulnerability in the /path/to/uploads/ directory of Blesta before v5.9.2 allows attackers to takeover user accounts and execute arbitrary code...

CVE-2024-25859

Blesta (before v5.9.2) is affected by CVE-2024-25859 due to a path traversal in the /path/to/uploads/ directory. The vulnerability allows an attacker to takeover user accounts and execute arbitrary code. Affected versions are prior to 5.9.2. Mitigation: upgrade to Blesta 5.9.2 or later. As a temp...

Adobe Illustrator < 27.3.1 Multiple Vulnerabilities (APSB23-19) (macOS)

The version of Adobe Illustrator installed on the remote macOS host is prior to 27.3.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-19 advisory. - Illustrator version 26.5.2 and earlier and 27.2.0 and earlier are affected by a Use After Free vulnerability th...

CVE-2023-25859 Adobe Illustrator Improper Input Validation Remote Code Execution Vulnerability

Illustrator version 26.5.2 and earlier and 27.2.0 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fi...

CVE-2023-25859

Adobe Illustrator CVE-2023-25859 is an Improper Input Validation vulnerability affecting Illustrator 26.5.2 and 27.2.0 (and earlier) that could allow arbitrary code execution in the context of the current user when a user opens a malicious file. This relies on user interaction and is part of a se...

CVE-2023-25859

Illustrator version 26.5.2 and earlier and 27.2.0 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fi...

Adobe Illustrator < 27.3.1 Multiple Vulnerabilities (APSB23-19)

The version of Adobe Illustrator installed on the remote Windows host is prior to 27.3.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-19 advisory. - Illustrator version 26.5.2 and earlier and 27.2.0 and earlier are affected by a Use After Free vulnerability...

CVE-2020-25859

creationtimestamp| type| source ---|---|--- 2022-11-27 19:25:16+00:00| seen| https://t.me/CyberSecurityTechnologies/1943...

CVE-2020-25859

CVE-2020-25859 concerns the QCMAP_CLI utility in Qualcomm QCMAP, where handling SetGatewayUrl() can invoke system() without input validation. This allows a local attacker with shell access to pass shell metacharacters and execute arbitrary commands. If QCMAP_CLI runs with sudo or setuid, privileg...