CVE List - 2025 / July
Showing 3301 - 3400 of 3776 CVEs for July 2025 (Page 34 of 38)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-54569 | 2025-07-28 | In Malwarebytes Binisoft Windows Firewall Control before 6.16.0.0, the installer is vulnerable to local privilege escalation. |
| CVE-2025-8248 | 2025-07-28 | code-projects Online Ordering System signup.php sql injection |
| CVE-2025-8249 | 2025-07-28 | code-projects Exam Form Submission update_s3.php sql injection |
| CVE-2025-8250 | 2025-07-28 | code-projects Exam Form Submission update_s4.php sql injection |
| CVE-2025-8251 | 2025-07-28 | code-projects Exam Form Submission delete_s4.php sql injection |
| CVE-2025-8252 | 2025-07-28 | code-projects Exam Form Submission delete_s5.php sql injection |
| CVE-2025-8253 | 2025-07-28 | code-projects Exam Form Submission delete_s6.php sql injection |
| CVE-2025-8254 | 2025-07-28 | Campcodes Courier Management System view_parcel.php sql injection |
| CVE-2025-8255 | 2025-07-28 | code-projects Exam Form Submission register.php unrestricted upload |
| CVE-2025-8256 | 2025-07-28 | code-projects Online Ordering System product.php unrestricted upload |
| CVE-2025-8257 | 2025-07-28 | Lobby Universe Lobby App com.maverick.lobby AndroidManifest.xml improper export of android application components |
| CVE-2025-8267 | 2025-07-28 | Versions of the package ssrfcheck before 1.2.0 are vulnerable to Server-Side Request Forgery (SSRF) due to an incomplete denylist of IP address ranges. Specifically, the package fails to classify the... |
| CVE-2025-8258 | 2025-07-28 | Cool Mo Maigcal Number App com.sdmagic.number AndroidManifest.xml improper export of android application components |
| CVE-2025-8259 | 2025-07-28 | Vaelsys vgrid_server.php execute_DataObjectProc os command injection |
| CVE-2025-8260 | 2025-07-28 | Vaelsys MD4 Hash vgrid_server.php weak hash |
| CVE-2025-8261 | 2025-07-28 | Vaelsys User Creation vgrid_server.php improper authorization |
| CVE-2025-8262 | 2025-07-28 | yarnpkg Yarn hosted-git-resolver.js explodeHostedGitFragment redos |
| CVE-2025-8265 | 2025-07-28 | 299Ko CMS File Management view unrestricted upload |
| CVE-2025-8266 | 2025-07-28 | yanyutao0402 ChanCMS collect.js getArticle deserialization |
| CVE-2025-27800 | 2025-07-28 | Stored Cross-Site Scripting in Episerver Content Management System (CMS) Admin Dashboard |
| CVE-2025-27801 | 2025-07-28 | Stored Cross-Site Scripting in Episerver Content Management System (CMS) Media Selection Preview |
| CVE-2025-27802 | 2025-07-28 | Stored Cross-Site Scripting in Episerver Content Management System (CMS) Edit Preview |
| CVE-2025-8269 | 2025-07-28 | code-projects Exam Form Submission delete_s1.php sql injection |
| CVE-2025-8270 | 2025-07-28 | code-projects Exam Form Submission delete_s2.php sql injection |
| CVE-2025-8271 | 2025-07-28 | code-projects Exam Form Submission delete_s3.php sql injection |
| CVE-2025-40730 | 2025-07-28 | HTML injection in Vox Media's Chorus CMS |
| CVE-2025-8272 | 2025-07-28 | code-projects Exam Form Submission update_fst.php sql injection |
| CVE-2025-8273 | 2025-07-28 | code-projects Exam Form Submission update_s8.php sql injection |
| CVE-2025-6918 | 2025-07-28 | SQLi in Ncvav's Virtual PBX Software |
| CVE-2025-38468 | 2025-07-28 | net/sched: Return NULL when htb_lookup_leaf encounters an empty rbtree |
| CVE-2025-38469 | 2025-07-28 | KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls |
| CVE-2025-38470 | 2025-07-28 | net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime |
| CVE-2025-38471 | 2025-07-28 | tls: always refresh the queue when reading sock |
| CVE-2025-38472 | 2025-07-28 | netfilter: nf_conntrack: fix crash due to removal of uninitialised entry |
| CVE-2025-38473 | 2025-07-28 | Bluetooth: Fix null-ptr-deref in l2cap_sock_resume_cb() |
| CVE-2025-38474 | 2025-07-28 | usb: net: sierra: check for no status endpoint |
| CVE-2025-38475 | 2025-07-28 | smc: Fix various oops due to inet_sock type confusion. |
| CVE-2025-38476 | 2025-07-28 | rpl: Fix use-after-free in rpl_do_srh_inline(). |
| CVE-2025-38477 | 2025-07-28 | net/sched: sch_qfq: Fix race condition on qfq_aggregate |
| CVE-2025-38478 | 2025-07-28 | comedi: Fix initialization of data for instructions that write to subdevice |
| CVE-2025-38480 | 2025-07-28 | comedi: Fix use of uninitialized data in insn_rw_emulate_bits() |
| CVE-2025-38481 | 2025-07-28 | comedi: Fail COMEDI_INSNLIST ioctl if n_insns is too large |
| CVE-2025-38482 | 2025-07-28 | comedi: das6402: Fix bit shift out of bounds |
| CVE-2025-38483 | 2025-07-28 | comedi: das16m1: Fix bit shift out of bounds |
| CVE-2025-38484 | 2025-07-28 | iio: backend: fix out-of-bound write |
| CVE-2025-38485 | 2025-07-28 | iio: accel: fxls8962af: Fix use after free in fxls8962af_fifo_flush |
| CVE-2025-38486 | 2025-07-28 | soundwire: Revert "soundwire: qcom: Add set_channel_map api support" |
| CVE-2025-38487 | 2025-07-28 | soc: aspeed: lpc-snoop: Don't disable channels that aren't enabled |
| CVE-2025-38488 | 2025-07-28 | smb: client: fix use-after-free in crypt_message when using async crypto |
| CVE-2025-38489 | 2025-07-28 | s390/bpf: Fix bpf_arch_text_poke() with new_addr == NULL again |
| CVE-2025-38490 | 2025-07-28 | net: libwx: remove duplicate page_pool_put_full_page() |
| CVE-2025-38491 | 2025-07-28 | mptcp: make fallback action and fallback decision atomic |
| CVE-2025-38492 | 2025-07-28 | netfs: Fix race between cache write completion and ALL_QUEUED being set |
| CVE-2025-38493 | 2025-07-28 | tracing/osnoise: Fix crash in timerlat_dump_stack() |
| CVE-2025-38494 | 2025-07-28 | HID: core: do not bypass hid_hw_raw_request |
| CVE-2025-38495 | 2025-07-28 | HID: core: ensure the allocated report buffer can contain the reserved report ID |
| CVE-2025-38496 | 2025-07-28 | dm-bufio: fix sched in atomic context |
| CVE-2025-38497 | 2025-07-28 | usb: gadget: configfs: Fix OOB read on empty string write |
| CVE-2025-5997 | 2025-07-28 | Privilege Escalation in Beamsec PhishPro |
| CVE-2025-8274 | 2025-07-28 | Campcodes Online Recruitment Management System ajax.php sql injection |
| CVE-2025-8275 | 2025-07-28 | bsc Peru Cocktails App bsc.devy.peru_cocktails AndroidManifest.xml improper export of android application components |
| CVE-2025-4056 | 2025-07-28 | Glib: glib crash after long command line |
| CVE-2025-24485 | 2025-07-28 | A server-side request forgery vulnerability exists in the cecho.php functionality of MedDream PACS Premium 7.3.5.860. A specially crafted HTTP request can lead to SSRF. An attacker can make an unauthenticated... |
| CVE-2025-32731 | 2025-07-28 | A reflected cross-site scripting (xss) vulnerability exists in the radiationDoseReport.php functionality of meddream MedDream PACS Premium 7.3.5.860. A specially crafted malicious url can lead to arbitrary javascript code execution. An... |
| CVE-2025-27724 | 2025-07-28 | A privilege escalation vulnerability exists in the login.php functionality of meddream MedDream PACS Premium 7.3.3.840. A specially crafted .php file can lead to elevated capabilities. An attacker can upload a... |
| CVE-2025-26469 | 2025-07-28 | An incorrect default permissions vulnerability exists in the CServerSettings::SetRegistryValues functionality of MedDream PACS Premium 7.3.3.840. A specially crafted application can decrypt credentials stored in a configuration-related registry key. An attacker... |
| CVE-2025-8279 | 2025-07-28 | Missing Authentication for Critical Function in GitLab Language Server |
| CVE-2025-53695 | 2025-07-28 | OS Command Injection in iSTAR Ultra products web application allows an authenticated attacker to gain even more privileged access ('root' user) to the device firmware. |
| CVE-2025-53696 | 2025-07-28 | iSTAR Ultra performs a firmware verification on boot, however the verification does not inspect certain portions of the firmware. These firmware parts may contain malicious code. Tested up to firmware... |
| CVE-2025-54418 | 2025-07-28 | CodeIgniter4's ImageMagick Handler has Command Injection Vulnerability |
| CVE-2024-49342 | 2025-07-28 | IBM Informix Dynamic Server information disclosure |
| CVE-2024-49343 | 2025-07-28 | IBM Informix Dynamic Server HTML injection |
| CVE-2025-2297 | 2025-07-28 | Privilege Management for Windows - Elevation of Privilege |
| CVE-2025-6250 | 2025-07-28 | Privilege Management for Windows - Elevation of Privilege |
| CVE-2025-54527 | 2025-07-28 | In JetBrains YouTrack before 2025.2.86935, 2025.2.87167, 2025.3.87341, 2025.3.87344 improper iframe configuration in widget sandbox allows popups to bypass security restrictions |
| CVE-2025-54528 | 2025-07-28 | In JetBrains TeamCity before 2025.07 a CSRF was possible in GitHub App connection flow |
| CVE-2025-54529 | 2025-07-28 | In JetBrains TeamCity before 2025.07 a CSRF was possible in external OAuth login integration |
| CVE-2025-54530 | 2025-07-28 | In JetBrains TeamCity before 2025.07 privilege escalation was possible due to incorrect directory permissions |
| CVE-2025-54531 | 2025-07-28 | In JetBrains TeamCity before 2025.07 path traversal was possible via plugin unpacking on Windows |
| CVE-2025-54532 | 2025-07-28 | In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via snapshot dependencies |
| CVE-2025-54533 | 2025-07-28 | In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via VCS configuration |
| CVE-2025-54534 | 2025-07-28 | In JetBrains TeamCity before 2025.07 reflected XSS was possible on the agentpushPreset page |
| CVE-2025-54535 | 2025-07-28 | In JetBrains TeamCity before 2025.07 password reset and email verification tokens were using weak hashing algorithms |
| CVE-2025-54536 | 2025-07-28 | In JetBrains TeamCity before 2025.07 a CSRF was possible on GraphQL endpoint |
| CVE-2025-54537 | 2025-07-28 | In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots |
| CVE-2025-54538 | 2025-07-28 | In JetBrains TeamCity before 2025.07 password exposure was possible via command line in the "hg pull" command |
| CVE-2025-7676 | 2025-07-28 | DLL hijacking of all PE32 executables on Windows 11 for ARM CPUs |
| CVE-2025-54298 | 2025-07-28 | Extension - firecoders.com - Stored XSS vulnerability in CommentBox component 1.0.0-1.1.0 for Joomla |
| CVE-2025-54299 | 2025-07-28 | Extension - nobossextensions.com - Stored XSS vulnerability in No Boss Testimonials component 1.0.0-3.0.0 and 4.0.0-4.0.2 for Joomla |
| CVE-2025-43023 | 2025-07-28 | HP Linux Imaging and Printing Software - Use of DSA Key |
| CVE-2025-8283 | 2025-07-28 | Netavark: podman: netavark may resolve hostnames to unexpected hosts |
| CVE-2025-8194 | 2025-07-28 | Tarfile infinite loop during parsing with negative member offset |
| CVE-2025-54419 | 2025-07-28 | Node-SAML Contains SAML Signature Verification Vulnerability |
| CVE-2025-54423 | 2025-07-28 | copyparty has a DOM-Based XSS vulnerability when displaying multimedia metadata |
| CVE-2025-54426 | 2025-07-28 | Polkadot Frontier contains silent failure in Curve25519 arithmetic precompiles with malformed points |
| CVE-2025-54427 | 2025-07-28 | Polkadot Frontier contains missing `check_inherent` for `note_min_gas_price_target` inflates gas price |
| CVE-2025-54428 | 2025-07-28 | RevelaCode exposes Sensitive MongoDB Atlas URI in .env (potential credential leak) |
| CVE-2025-54429 | 2025-07-28 | Polkadot Frontier's constructing smart contract can bypass precompile address bounding |
| CVE-2025-54766 | 2025-07-28 | KL-001-2025-012: Xorux XorMon-NG Read Only User Export Device Configuration Exposing Sensitive Information |
| CVE-2025-54765 | 2025-07-28 | KL-001-2025-013: Xorux XorMon-NG Web Application Privilege Escalation to Administrator |