CVE List - 2025 / October
Showing 3901 - 4000 of 4280 CVEs for October 2025 (Page 40 of 43)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-10932 | 2025-10-29 | AS2 module allows uncontrolled file uploads |
| CVE-2023-32199 | 2025-10-29 | Rancher user retains access to clusters despite Global Role removal |
| CVE-2024-58269 | 2025-10-29 | Rancher exposes sensitive information through audit logs |
| CVE-2025-54384 | 2025-10-29 | CKAN stored XSS vulnerability in Markdown description fields |
| CVE-2025-12147 | 2025-10-29 | Unauthorized access to fields protected by Field-Level Security (FLS) when those fields are members of an object |
| CVE-2024-14012 | 2025-10-29 | Potential Privilege Escalation in Revenera InstallShield 2023 R1 |
| CVE-2025-12148 | 2025-10-29 | Unauthorized access to fields protected by Field Masking (FM) for fields of type IP |
| CVE-2025-62785 | 2025-10-29 | Wazuh fillData NULL pointer dereference causes analysisd crash |
| CVE-2025-62786 | 2025-10-29 | Wazuh Vulnerable to Heap-based Buffer Out-Of-Bounds WRITE in decode_win_permissions |
| CVE-2025-62787 | 2025-10-29 | Wazuh Vulnerable to Heap-based Buffer Over-read in DecodeWinevt |
| CVE-2025-12476 | 2025-10-29 | Resource Lacking AuthN |
| CVE-2025-12477 | 2025-10-29 | Server Version Disclosure |
| CVE-2025-12478 | 2025-10-29 | Non-Compliant TLS Configuration |
| CVE-2025-62788 | 2025-10-29 | Wazuh Vulnerable to Heap Use After Free in w_copy_event_for_log |
| CVE-2025-62789 | 2025-10-29 | Wazuh vulnerable to NULL pointer dereference in fim_alert line 712 |
| CVE-2025-62790 | 2025-10-29 | Wazuh vulnerable to NULL pointer dereference in fim_fetch_attributes_state |
| CVE-2025-62791 | 2025-10-29 | Wazuh vulnerable to NULL pointer dereference in DecodeCiscat |
| CVE-2025-62792 | 2025-10-29 | Wazuh vulnerable to Heap-based Buffer Over-read in w_expression_match |
| CVE-2025-12479 | 2025-10-29 | Systemic Lack of Cross-Site Request Forgery (CSRF) Token Implementation |
| CVE-2025-1549 | 2025-10-29 | WatchGuard Mobile VPN with SSL Local Privilege Escallation |
| CVE-2025-62797 | 2025-10-29 | CSRF in FluxCP account endpoints allows account takeover / state-changing actions |
| CVE-2025-64100 | 2025-10-29 | CKAN Vulnerable to Session Cookie Fixation |
| CVE-2025-11232 | 2025-10-29 | Invalid characters cause assert |
| CVE-2025-64101 | 2025-10-29 | ZITADEL Vulnerable to Account Takeover via Malicious Forwarded Header Injection |
| CVE-2025-64102 | 2025-10-29 | Zitadel allows brute-forcing authentication factors |
| CVE-2018-25120 | 2025-10-29 | D-Link DNS-343 ShareCenter <= 1.05 Command Injection via /goform/Mail_Test |
| CVE-2025-64103 | 2025-10-29 | Zitadel Bypass Second Authentication Factor |
| CVE-2025-64104 | 2025-10-29 | LangGraph SQLite Checkpoint Filter Key SQL Injection POC for SqliteStore |
| CVE-2025-10920 | 2025-10-29 | GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2025-10921 | 2025-10-29 | GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2025-10922 | 2025-10-29 | GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2025-10923 | 2025-10-29 | GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability |
| CVE-2025-10924 | 2025-10-29 | GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability |
| CVE-2025-10925 | 2025-10-29 | GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2025-11203 | 2025-10-29 | LiteLLM Information health API_KEY Information Disclosure Vulnerability |
| CVE-2025-9869 | 2025-10-29 | Razer Synapse 3 Macro Module Link Following Local Privilege Escalation Vulnerability |
| CVE-2025-9871 | 2025-10-29 | Razer Synapse 3 Chroma Connect Link Following Local Privilege Escalation Vulnerability |
| CVE-2025-9870 | 2025-10-29 | Razer Synapse 3 RazerPhilipsHueUninstall Link Following Local Privilege Escalation Vulnerability |
| CVE-2025-11202 | 2025-10-29 | win-cli-mcp-server resolveCommandPath Command Injection Remote Code Execution Vulnerability |
| CVE-2025-11201 | 2025-10-29 | MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability |
| CVE-2025-11200 | 2025-10-29 | MLflow Weak Password Requirements Authentication Bypass Vulnerability |
| CVE-2025-11466 | 2025-10-29 | Allegra DatabaseBackupBL Directory Traversal Information Disclosure Vulnerability |
| CVE-2025-11463 | 2025-10-29 | Ashlar-Vellum Cobalt XE File Parsing Integer Overflow Remote Code Execution Vulnerability |
| CVE-2025-11464 | 2025-10-29 | Ashlar-Vellum Cobalt CO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2025-11465 | 2025-10-29 | Ashlar-Vellum Cobalt CO File Parsing Use-After-Free Remote Code Execution Vulnerability |
| CVE-2025-10934 | 2025-10-29 | GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2025-54459 | 2025-10-29 | Vertikal Systems Hospital Manager Backend Services Exposure of Sensitive System Information to an Unauthorized Control Sphere |
| CVE-2025-61959 | 2025-10-29 | Vertikal Systems Hospital Manager Backend Services Generation of Error Message Containing Sensitive Information |
| CVE-2025-61725 | 2025-10-29 | Excessive CPU consumption in ParseAddress in net/mail |
| CVE-2025-58187 | 2025-10-29 | Quadratic complexity when checking name constraints in crypto/x509 |
| CVE-2025-58189 | 2025-10-29 | ALPN negotiation error contains attacker controlled information in crypto/tls |
| CVE-2025-61723 | 2025-10-29 | Quadratic complexity when parsing some invalid inputs in encoding/pem |
| CVE-2025-47912 | 2025-10-29 | Insufficient validation of bracketed IPv6 hostnames in net/url |
| CVE-2025-58185 | 2025-10-29 | Parsing DER payload can cause memory exhaustion in encoding/asn1 |
| CVE-2025-58186 | 2025-10-29 | Lack of limit when parsing cookies can cause memory exhaustion in net/http |
| CVE-2025-58188 | 2025-10-29 | Panic when validating certificates with DSA public keys in crypto/x509 |
| CVE-2025-58183 | 2025-10-29 | Unbounded allocation when parsing GNU sparse map in archive/tar |
| CVE-2025-61724 | 2025-10-29 | Excessive CPU consumption in Reader.ReadResponse in net/textproto |
| CVE-2025-54545 | 2025-10-29 | On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges. |
| CVE-2025-54546 | 2025-10-29 | On affected platforms, restricted users could use SSH port forwarding to access host-internal services |
| CVE-2025-54547 | 2025-10-29 | On affected platforms, if SSH session multiplexing was configured on the client side, SSH sessions (e.g, scp, sftp) multiplexed onto the same channel could perform file-system operations after a configured session timeout expired |
| CVE-2025-54548 | 2025-10-29 | On affected platforms, restricted users could view sensitive portions of the config database via a debug API (e.g., user password hashes) |
| CVE-2025-54549 | 2025-10-29 | Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO |
| CVE-2025-9954 | 2025-10-29 | Acquia DAM - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2025-105 |
| CVE-2025-10926 | 2025-10-29 | JSON Field - Critical - Cross Site Scripting - SA-CONTRIB-2025-106 |
| CVE-2025-10927 | 2025-10-29 | Plausible tracking - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-107 |
| CVE-2025-10928 | 2025-10-29 | Access code - Moderately critical - Access bypass - SA-CONTRIB-2025-108 |
| CVE-2025-10931 | 2025-10-29 | Umami Analytics - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-109 |
| CVE-2025-10930 | 2025-10-29 | Currency - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2025-110 |
| CVE-2025-10929 | 2025-10-29 | Reverse Proxy Header - Less critical - Access bypass - SA-CONTRIB-2025-111 |
| CVE-2025-12082 | 2025-10-29 | CivicTheme Design System - Moderately critical - Information disclosure - SA-CONTRIB-2025-112 |
| CVE-2025-12083 | 2025-10-29 | CivicTheme Design System - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-113 |
| CVE-2025-12466 | 2025-10-29 | Simple OAuth (OAuth2) & OpenID Connect - Critical - Access bypass - SA-CONTRIB-2025-114 |
| CVE-2025-62257 | 2025-10-29 | Password enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92,... |
| CVE-2025-50574 | 2025-10-30 | Cross-site scripting (XSS) vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter. |
| CVE-2025-50736 | 2025-10-30 | An open redirect vulnerability exists in Byaidu PDFMathTranslate v1.9.9 that allows attackers to craft URLs that cause the application to redirect users to arbitrary external websites via the file parameter... |
| CVE-2025-50739 | 2025-10-30 | iib0011 omni-tools v0.4.0 is vulnerable to remote code execution via unsafe JSON deserialization. |
| CVE-2025-52179 | 2025-10-30 | Cross-site scripting (XSS) vulnerability in Zucchetti Ad Hoc Revolution 4.1 and earlier allows remote unauthenticated attackers to inject arbitrary JavaScript via the pHtmlSource parameter of the /ahrw/jsp/gsfr_feditorHTML.jsp endpoint. |
| CVE-2025-52180 | 2025-10-30 | Cross-site scripting (XSS) vulnerability in Zucchetti Ad Hoc Infinity 4.2 and earlier allows remote unauthenticated attackers to inject arbitrary JavaScript via the pHtmlSource parameter of the /ahi/jsp/gsfr_feditorHTML.jsp?pHtmlSource endpoint. |
| CVE-2025-56313 | 2025-10-30 | A Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the /publix/run endpoint of JATOS 3.7.1 through 3.9.6 (inclusive). This allows remote attackers to execute arbitrary JavaScript in a user's web... |
| CVE-2025-57109 | 2025-10-30 | Kitware VTK (Visualization Toolkit) 9.5.0 is vulnerable to Heap Use-After-Free in vtkGLTFImporter::ImportActors. When processing GLTF files with invalid scene node references, the application accesses string members of mesh objects that... |
| CVE-2025-60319 | 2025-10-30 | PerfreeBlog v4.0.11 is vulnerable to Server-Side Request Forgery due to a missing authorization check in the uploadAttachByUrl API endpoint (AttachController.java). |
| CVE-2025-60950 | 2025-10-30 | An arbitrary file upload vulnerability in the Data Preparation function of AIxBlock commit f60975 allows attackers to execute arbitrary code via a crafted SVG file. |
| CVE-2025-61113 | 2025-10-30 | TalkTalk 3.3.6 Android App contains improper access control vulnerabilities in multiple API endpoints. By modifying request parameters, attackers may obtain sensitive user information (such as device identifiers and birthdays) and... |
| CVE-2025-61114 | 2025-10-30 | 2nd Line Android App version v1.2.92 and before (package name com.mysecondline.app), developed by AutoBizLine, Inc., contains an improper access control vulnerability in its authentication mechanism. The server only validates the... |
| CVE-2025-61115 | 2025-10-30 | ABC Fine Wine & Spirits Android App version v.11.27.5 and before (package name com.cta.abcfinewineandspirits), developed by ABC Liquors, Inc., contains an improper access control vulnerability in its login mechanism. The... |
| CVE-2025-61116 | 2025-10-30 | AdForest - Classified Android App version 4.0.12 (package name scriptsbundle.adforest), developed by Muhammad Jawad Arshad, contains an improper access control vulnerability in its authentication mechanism. The app uses a Base64-encoded... |
| CVE-2025-61117 | 2025-10-30 | Senza: Keto & Fasting Android App version 2.10.15 (package name com.gl.senza), developed by Paul Itoi, contains an improper access control vulnerability. By exploiting insufficient checks in user data API endpoints,... |
| CVE-2025-61118 | 2025-10-30 | mCarFix Motorists App version 2.3 (package name com.skytop.mcarfix), developed by Paniel Mwaura, contains improper access control vulnerabilities. Attackers may bypass verification to arbitrarily register accounts, and by tampering with sequential... |
| CVE-2025-61119 | 2025-10-30 | Kanova Android App version 1.0.27 (package name com.karelane), developed by Karely L.L.C., contains improper access control vulnerabilities. Attackers may gain unauthorized access to user details and obtain group information, including... |
| CVE-2025-61120 | 2025-10-30 | AG Life Logger Android App version v1.0.2.72 and before (package name com.donki.healthy), developed by IO FIT, K.K., contains improper access control vulnerabilities. Exposed credentials in traffic may allow attackers to... |
| CVE-2025-61121 | 2025-10-30 | Mobile Scanner Android App version 2.12.38 (package name com.glority.everlens), developed by Glority Global Group Ltd., contains a credential leakage vulnerability. Improper handling of cloud service credentials may allow attackers to... |
| CVE-2025-61141 | 2025-10-30 | sqls-server/sqls 0.2.28 is vulnerable to command injection in the config command because the openEditor function passes the EDITOR environment variable and config file path to sh -c without sanitization, allowing... |
| CVE-2025-61196 | 2025-10-30 | An issue in BusinessNext CRMnext v.10.8.3.0 allows a remote attacker to execute arbitrary code via the comments input parameter. |
| CVE-2025-61498 | 2025-10-30 | A buffer overflow in the UPnP service of Tenda AC8 Hardware v03.03.10.01 allows attackers to cause a Denial of Service (DoS) via supplying a crafted packet. |
| CVE-2025-63298 | 2025-10-30 | A path traversal vulnerability was identified in SourceCodester Pet Grooming Management System 1.0, affecting the admin/manage_website.php component. An authenticated user with administrative privileges can leverage this flaw by submitting a... |
| CVE-2025-63422 | 2025-10-30 | Incorrect access control in the Web management interface in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to arbitrarily change the administrator username and password via sending a... |
| CVE-2025-63423 | 2025-10-30 | Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 was discovered to store the Administrator password. |
| CVE-2025-63608 | 2025-10-30 | A SQL injection vulnerability exists in CSZ-CMS <=1.3.0 in the Form Builder view functionality. The vulnerability is located in the field parameter of the form viewing feature, allowing authenticated administrators... |
| CVE-2025-63885 | 2025-10-30 | A stored cross-site scripting (XSS) vulnerability in AIxBlock commit 04f305 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the model_desc field. |