PT-2025-20685 · Unknown · Kingfor Kfox

Name of the Vulnerable Software and Affected Versions: KingFor KFOX affected versions not specified Description: The issue allows remote attackers with regular privileges to upload and execute web shell backdoors, enabling arbitrary code execution on the server. This is due to an arbitrary file...

D-Link DIR-619L wan_connected buffer overflow vulnerability

The D-Link DIR-619L is a cost-effective wireless router designed for home office Internet needs. The D-Link DIR-619L suffers from a buffer overflow vulnerability that stems from the improper handling of the wanconnected parameter in the formEasySetupWizard3 function, which can be exploited by an...

PT-2025-20599 · Unknown · Code-Server

Name of the Vulnerable Software and Affected Versions: code-server versions prior to 4.99.4 Description: The issue allows an attacker to gain access to the session token through a maliciously crafted URL using the proxy subpath. This can result in the attacker proxying to an arbitrary domain,...

CVE-2025-4098

CVE-2025-4098 affects Horner Automation Cscape 10.0 (10.0.415.2) SP1. The vulnerability is an out-of-bounds read in a component/function used by Cscape that could allow an attacker to disclose information and potentially execute arbitrary code on affected installations. The CVSS metrics indicate ...

CVE-2025-4208 NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.9.1 - Authenticated (Custom) Limited Code Execution via get_table_records Function

The NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin for WordPress is vulnerable to Limited Code Execution in all versions up to, and including, 8.9.1 via the gettablerecords function. This is due to the unsanitized use of user-supplied input in calluserfunc. This makes it...

CVE-2025-20181

A vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches could allow an authenticated, local attacker with privilege level 15 or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the...

CVE-2025-47691

CVE-2025-47691 corresponds to an authenticated Arbitrary Function Call/Code Injection vulnerability in the WordPress plugin Ultimate Member up to version 2.10.3. The issue is categorized as Improper Generation of Code and affects Ultimate Member until 2.10.3. The CVSSbase score is 5.5 (Medium); a...

CVE-2025-25014 Kibana arbitrary code execution via prototype pollution

A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints...

CVE-2025-27132 arkcompiler_ets_runtime has an out-of-bounds write vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios...

CVE-2025-43845 GHSL-2025-015_Retrieval-based-Voice-Conversion-WebUI

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to code injection. The ckptpath2 variable takes user input e.g. a path to a model and passes it to changeinfo function, which opens and reads the file on the given path...

PT-2025-24447

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: A logic error in the code may allow a lock screen bypass, potentially leading to local privilege escalation without requiring additional execution privileges or user interaction. The...

CVE-2025-4125

Delta Electronics ISPSoft version 3.20 is vulnerable to an Out-Of-Bounds Write vulnerability that could allow an attacker to execute arbitrary code when parsing ISP file...

CVE-2025-4022

CVE-2025-4022 concerns web-arena-x webarena up to version 0.2.0. The vulnerability lies in the function HTMLContentEvaluator located at we barena/evaluation_harness/evaluators.py, where manipulation of the argument target["url"] enables code injection. The attack is remote and the exploit has bee...

CVE-2025-4022 web-arena-x webarena evaluators.py HTMLContentEvaluator code injection

A vulnerability was found in web-arena-x webarena up to 0.2.0. It has been declared as critical. This vulnerability affects the function HTMLContentEvaluator of the file webarena/evaluationharness/evaluators.py. The manipulation of the argument target"url" leads to code injection. The attack can ...

CVE-2025-44134

A vulnerability was found in Code-Projects Online Class and Exam Scheduling System 1.0 in the file /Scheduling/pages/classsave.php. Manipulation of parameter class will lead to SQL injection attacks...

CVE-2025-3842

The CVE-2025-3842 entry concerns panhainan DS-Java 1.0, specifically the function uploadUserPic.action in FileUpload.java. The issue arises from manipulation of the fileUpload argument, leading to code injection. The vulnerability is described as exploitable remotely, with public disclosures of t...

CVE-2025-29281

In PerfreeBlog version 4.0.11, regular users can exploit the arbitrary file upload vulnerability in the attach component to upload arbitrary files and execute code within them...

CVE-2025-3563

A vulnerability was found in WuzhiCMS 4.1. It has been rated as critical. Affected by this issue is the function Set of the file /index.php?m=attachment&f=index&su=wuzhicms&v=set&submit=1 of the component Setting Handler. The manipulation of the argument Setting leads to code injection. The attac...

Microsoft Edge (Chromium) < 135.0.3179.73 (CVE-2025-29834)

The version of Microsoft Edge installed on the remote Windows host is prior to 135.0.3179.73. It is, therefore, affected by a vulnerability as referenced in the April 11, 2025 advisory. - Out-of-bounds read in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a...

GHSA-M454-3XV7-QJ85

creationtimestamp| type| source ---|---|--- 2025-04-11 04:49:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11384...