CVE-2026-8725

creationtimestamp| type| source ---|---|--- 2026-05-17 03:00:39+00:00| seen| https://infosec.exchange/users/offseq/statuses/116587680874193200 2026-05-17 03:01:57+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mlzen4c7jy2l 2026-05-17 04:47:32+00:00| seen|...

MAL-2025-8725 Malicious code in @malware-test-intil-hules-totem-blabs/test-mlw3-intil-hules-totem-blabs (npm)

The package @malware-test-intil-hules-totem-blabs/test-mlw3-intil-hules-totem-blabs was found to contain malicious code...

CVE-2019-8725

The issue was addressed with improved handling of service worker lifetime. This issue is fixed in Safari 13.0.1. Service workers may leak private browsing history...

Linux Distros Unpatched Vulnerability : CVE-2015-8725

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dissectdiameterbaseframedipv6prefix function in epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x befo...

CVE-2024-8725

creationtimestamp| type| source ---|---|--- 2024-09-26 13:48:57+00:00| seen| https://t.me/cvedetector/6407...

CVE-2024-8725 Advanced File Manager <= 5.2.8 - Authenticated (Subscriber+) Limited File Upload

Multiple plugins and/or themes for WordPress are vulnerable to Limited File Upload in various versions. This is due to a lack of proper checks to ensure lower-privileged roles cannot upload .css and .js files to arbitrary directories. This makes it possible for authenticated attackers, with...

WordPress Advanced File Manager Plugin <= 5.2.8 is vulnerable to Arbitrary File Upload

Software Advanced File Manager Type Plugin Vulnerable versions = 5.2.8 Fixed in 5.2.9 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-8725 Patch priority High CVSS severity High 6.8 Developer Claim ownership PSID 8ea10462dd56 Credits TANG Cheuk Hei siunam Required...

Moxa AWK-3131A Web Application systemlog.log Information Disclosure (CVE-2016-8725)

An exploitable information disclosure vulnerability exists in the Web Application functionality of the Moxa AWK-3131A wireless access point running firmware 1.1. Retrieving a specific URL without authentication can reveal sensitive information to an attacker. This plugin only works with Tenable.o...

CVE-2020-8725

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none...

CVE-2018-8725

K7Computing Pvt Ltd K7AntiVirus Premium 15.01.00.53 is affected by: Buffer Overflow. The impact is: execute arbitrary code local. The component is: K7TSMngr.exe...

CVE-2018-8725

The CVE-2018-8725 entry concerns K7AntiVirus Premium 15.01.00.53. Affected component: K7TSMngr.exe. Vulnerability type: Buffer Overflow, leading to local arbitrary code execution. The provided sources consistently identify this product and component as vulnerable; no public exploit details are in...

CVE-2019-8725

The issue was addressed with improved handling of service worker lifetime. This issue is fixed in Safari 13.0.1. Service workers may leak private browsing history...

CVE-2019-8725

The CVE-2019-8725 issue affects Apple Safari (WebKit) and relates to service workers leaking private browsing history due to improper handling of service worker lifetime. The vulnerability is addressed in Safari 13.0.1, with Apple’s advisory listing the Service Workers fix under that update. Conn...

Moxa AWK-3131A Web Application systemlog.log Information Disclosure Vulnerability(CVE-2016-8725)

Summary An exploitable information disclosure vulnerability exists in the Web Application functionality of the Moxa AWK-3131A wireless access point running firmware 1.1. Retrieving a specific URL without authentication can reveal sensitive information to an attacker. Tested Versions Moxa AWK-3131...

CVE-2017-8725

A remote code execution vulnerability exists in Microsoft Publisher 2007 Service Pack 3 and Microsoft Publisher 2010 Service Pack 2 when they fail to properly handle objects in memory, aka "Microsoft Office Publisher Remote Code Execution"...

CVE-2017-8725

A remote code execution vulnerability exists in Microsoft Publisher 2007 Service Pack 3 and Microsoft Publisher 2010 Service Pack 2 when they fail to properly handle objects in memory, aka "Microsoft Office Publisher Remote Code Execution"...

CVE-2017-8725

A remote code execution vulnerability exists in Microsoft Publisher 2007 Service Pack 3 and Microsoft Publisher 2010 Service Pack 2 when they fail to properly handle objects in memory, aka "Microsoft Office Publisher Remote Code Execution"...

CVE-2017-8725

CVE-2017-8725 affects Microsoft Publisher 2007 SP3 and Publisher 2010 SP2, where improper handling of objects in memory can allow a specially crafted file to execute arbitrary code in the context of the current user. The vulnerability enables remote code execution and requires user interaction (o...

Description of the security update for Publisher 2010: September 12, 2017

Description of the security update for Publisher 2010: September 12, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Comm...

Security Updates for Microsoft Publisher Products (September 2017)

The Microsoft Publisher Products are missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory. An attacker who successfully exploited the...