CVE-2025-3324 godcheese/code-projects Nimrod FileRestController.java unrestricted upload

A vulnerability, which was classified as critical, has been found in godcheese/code-projects Nimrod 0.8. Affected by this issue is some unknown functionality of the file FileRestController.java. The manipulation of the argument File leads to unrestricted upload. The attack may be launched remotel...

IBM InfoSphere Information Server Information Disclosure Vulnerability (CNVD-2025-06805)

IBM InfoSphere Information Server is a set of data integration platforms from International Business Machines IBM. The platform can be used to integrate data information obtained from various sources. A security vulnerability exists in IBM InfoSphere Information Server version 11.7, which stems...

CVE-2024-56474

IBM TXSeries for Multiplatforms 9.1 and 11.1 are affected by a cross-site request forgery (CSRF) vulnerability (CVE-2024-56474). The issue permits an attacker to submit malicious actions via trusted user sessions. The IBM security bulletin lists multiple vulnerabilities and recommends upgrading t...

CVE-2025-2779

The CVE-2025-2779 entry describes a vulnerability in the WordPress plugin Insert Headers and Footers Code – HT Script where a missing capability check in ajax_dismiss (versions

PT-2025-13591 · Onenav · Onenav

Name of the Vulnerable Software and Affected Versions: OneNav version 1.1.0 Description: The issue is related to Server-Side Request Forgery SSRF in custom headers. This means an attacker could potentially force the server to make requests to arbitrary domains, which could lead to unauthorized...

CVE-2023-53024 bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation To mitigate Spectre v4, 2039f26f3aca "bpf: Fix leakage due to insufficient speculative store bypass mitigation" inserts lfence instructions after 1...

D-Link DIR-605L/DIR-618 formAdvFirewall Function Access Control Error Vulnerability

The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An Access Control Error vulnerability exists in the D-Link DIR-605L version 3.02 and the D-Link DIR-618 version 2.02, which stems from improper access control in the file /goform/formAdvFirewall, and ca...

Exploit for Server-Side Request Forgery in Microsoft

CVE-2025-29927 - Critical Security Vulnerability in Next.js...

CVE-2025-30598 WordPress OSS Upload plugin <= 4.8.9 Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Link OSS Upload oss-upload allows Cross Site Request Forgery.This issue affects OSS Upload: from n/a through = 4.8.9...

Jasmin Ransomware Arbitrary File Download

Jasmin Ransomware suffers from an arbitrary file download vulnerability. Exploit Title: Jasmin Ransomware - Authenticated Arbitrary File Download Google Dork: N/A Date: 22-03-2025 Exploit Author: bRpsd cyatlive.no Vendor Homepage: https://github.com/codesiddhant/Jasmin-Ransomware Software Link:...

CVE-2024-12216

A vulnerability in the ImageClassificationDataset.fromcsv API of the dmlc/gluon-cv repository, version 0.10.0, allows for arbitrary file write. The function downloads and extracts tar.gz files from URLs without proper sanitization, making it susceptible to a TarSlip vulnerability. Attackers can...

CVE-2024-8156 Command Injection in significant-gravitas/autogpt

A command injection vulnerability exists in the workflow-checker.yml workflow of significant-gravitas/autogpt. The untrusted user input github.head.ref is used insecurely, allowing an attacker to inject arbitrary commands. This vulnerability affects versions up to and including the latest version...

PT-2025-12146 · Langgenius · Dify

Name of the Vulnerable Software and Affected Versions: langgenius/dify version 0.10.1 Description: The issue concerns the /forgot-password/resets endpoint, which does not verify the password reset code. This allows an attacker to reset the password of any user, including administrators, potential...

CVE-2025-2392 code-projects Online Class and Exam Scheduling System activate.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Online Class and Exam Scheduling System 1.0. This issue affects some unknown processing of the file /pages/activate.php. The manipulation of the argument id leads to sql injection. The attack may be initiated...

CVE-2024-30143

CVE-2024-30143 describes a path traversal vulnerability in the HCL AppScan Traffic Recorder. The root cause is failure to adequately neutralize special characters in filenames, which could allow resolution beyond restricted directories and potentially enable disruption or takeover of the applicat...

Dotclear 2.29 Shell Upload

Dotclear version 2.29 proof of concept remote shell upload exploit that leverages a previously discovered vulnerability from 2024. ============================================================================================================================================= | Title : Dotclear 2.29...

Samsung Notes Out-of-Bounds Read Vulnerability (CNVD-2025-12770)

Samsung Notes is an application program from the South Korean company Samsung SAMSUNG. It is used to provide a recording function. Samsung Notes suffers from an out-of-bounds read vulnerability, which arises from an out-of-bounds read when the base content extra data is applied, and can be...

WordPress Elementor Pro Animation Addon 1.6 Missing Authorization Exploit

import argparse import requests from bs4 import BeautifulSoup import re Exploit By Nxploit Khaled ALenazi def loginsession, url, username, password, useragent: loginurl = url + '/wp-login.php' response = session.postloginurl, verify=False, data= 'log': username, 'pwd': password, 'rememberme':...

Apache NiFi 1.21.0 Remote Code Execution

Apache NiFi version 1.21.0 proof of concept remote code execution exploit that takes advantage of a flaw discovered in 2023. ============================================================================================================================================= | Title : Apache NiFi 1.21.0 R...

GHSA-46R4-F8GJ-XG56 The SimpleSAMLphp SAML2 library incorrectly verifies signatures for HTTP-Redirect binding

Summary There's a signature confusion attack in the HTTPRedirect binding. An attacker with any signed SAMLResponse via the HTTP-Redirect binding can cause the application to accept an unsigned message. I believe that it exists for v4 only. I have not yet developed a PoC. V5 is well designed and...