CVE List - 2025 / August
Showing 2601 - 2700 of 3631 CVEs for August 2025 (Page 27 of 37)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-56179 | 2025-08-22 | In MindManager Windows versions prior to 24.1.150, attackers could potentially write to unexpected directories in victims' machines via directory traversal if victims opened file attachments located in malicious mmap files. |
| CVE-2025-29365 | 2025-08-22 | spimsimulator spim v9.1.24 and before is vulnerable to Buffer Overflow in READ_STRING_SYSCALL. |
| CVE-2025-29366 | 2025-08-22 | In mupen64plus v2.6.0 there is an array overflow vulnerability in the write_rdram_regs and write_rdram_regs functions, which enables executing arbitrary commands on the host machine. |
| CVE-2025-50674 | 2025-08-22 | An issue was discovered in the changePassword method in file /usr/share/php/openmediavault/system/user.inc in OpenMediaVault 7.4.17 allowing local authenticated attackers to escalate privileges to root. |
| CVE-2025-50691 | 2025-08-22 | MCSManager 10.5.3 daemon process runs as a root account by default, and its sensitive data (including tokens and terminal content) is stored in the data directory, readable by all users.... |
| CVE-2025-50733 | 2025-08-22 | NextChat contains a cross-site scripting (XSS) vulnerability in the HTMLPreview component of artifacts.tsx that allows attackers to execute arbitrary JavaScript code when HTML content is rendered in the AI chat... |
| CVE-2025-50858 | 2025-08-22 | Reflected Cross-Site Scripting in the List MySQL Databases function in Easy Hosting Control Panel (EHCP) 20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via the action parameter. |
| CVE-2025-50859 | 2025-08-22 | Reflected Cross-Site Scripting in the Change Template function in Easy Hosting Control Panel (EHCP) 20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via the template parameter. |
| CVE-2025-51092 | 2025-08-22 | The LogIn-SignUp project by VishnuSivadasVS is vulnerable to SQL Injection due to unsafe construction of SQL queries in DataBase.php. The functions logIn() and signUp() build queries by directly concatenating user... |
| CVE-2025-51605 | 2025-08-22 | An issue was discovered in Shopizer 3.2.7. The server's CORS implementation reflects the client-supplied Origin header verbatim into Access-Control-Allow-Origin without any whitelist validation, while also enabling Access-Control-Allow-Credentials: true. This allows... |
| CVE-2025-51825 | 2025-08-22 | JeecgBoot versions from 3.4.3 up to 3.8.0 were found to contain a SQL injection vulnerability in the /jeecg-boot/online/cgreport/head/parseSql endpoint, which allows bypassing SQL blacklist restrictions. |
| CVE-2025-52085 | 2025-08-22 | An SQL injection vulnerability in Yoosee application v6.32.4 allows authenticated users to inject arbitrary SQL queries via a request to a backend API endpoint. Successful exploitation enables extraction of sensitive... |
| CVE-2025-52094 | 2025-08-22 | Insecure Permissions vulnerability in PDQ Smart Deploy V.3.0.2040 allows a local attacker to execute arbtirary code via the \HKLM\SYSTEM\Setup\SmartDeploy component |
| CVE-2025-52095 | 2025-08-22 | An issue in PDQ Smart Deploy V.3.0.2040 allows an attacker to escalate privileges via the Credential encryption routines in SDCommon.dll |
| CVE-2025-52287 | 2025-08-22 | OperaMasks SDK ELite Script Engine v0.5.0 was discovered to contain a deserialization vulnerability. |
| CVE-2025-55398 | 2025-08-22 | An issue was discovered in mouse07410 asn1c thru 0.9.29 (2025-03-20) - a fork of vlm asn1c. In UPER (Unaligned Packed Encoding Rules), asn1c-generated decoders fail to enforce INTEGER constraints when... |
| CVE-2025-55454 | 2025-08-22 | An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file. |
| CVE-2025-55455 | 2025-08-22 | DooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext. |
| CVE-2025-55573 | 2025-08-22 | QuantumNous new-api v.0.8.5.2 is vulnerable to Cross Site Scripting (XSS). |
| CVE-2025-55581 | 2025-08-22 | D-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure implementation in the mydlink-watch-dog.sh script. The script monitors and respawns the `dcp` and `signalc` binaries without validating their... |
| CVE-2025-55599 | 2025-08-22 | D-Link DIR-619L 2.06B01 is vulnerable to Buffer Overflow in the formWlanSetup function via the parameter f_wds_wepKey. |
| CVE-2025-55602 | 2025-08-22 | D-Link DIR-619L 2.06B01 is vulnerable to Buffer Overflow in the formSysCmd function via the submit-url parameter. |
| CVE-2025-55603 | 2025-08-22 | Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the fromSetSysTime function via the ntpServer parameter. |
| CVE-2025-55605 | 2025-08-22 | Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the saveParentControlInfo function via the deviceName parameter. |
| CVE-2025-55606 | 2025-08-22 | Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the fromAdvSetMacMtuWan function via the serverName parameter. |
| CVE-2025-55611 | 2025-08-22 | D-Link DIR-619L 2.06B01 is vulnerable to Buffer Overflow in the formLanguageChange function via the nextPage parameter. |
| CVE-2025-55613 | 2025-08-22 | Tenda O3V2 1.0.0.12(3880) is vulnerable to Buffer Overflow in the fromSafeSetMacFilter function via the mac parameter. |
| CVE-2025-55619 | 2025-08-22 | Reolink v4.54.0.4.20250526 was discovered to contain a hardcoded encryption key and initialization vector. An attacker can leverage this vulnerability to decrypt access tokens and web session tokens stored inside the... |
| CVE-2025-55620 | 2025-08-22 | A cross-site scripting (XSS) vulnerability in the valuateJavascript() function of Reolink v4.54.0.4.20250526 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. |
| CVE-2025-55621 | 2025-08-22 | An Insecure Direct Object Reference (IDOR) vulnerability in Reolink v4.54.0.4.20250526 allows unauthorized attackers to access and download other users' profile photos via a crafted URL. NOTE: this is disputed by... |
| CVE-2025-55622 | 2025-08-22 | Reolink v4.54.0.4.20250526 was discovered to contain a task hijacking vulnerability due to inappropriate taskAffinity settings. NOTE: this is disputed by the Supplier because it is intentional behavior to ensure a... |
| CVE-2025-55623 | 2025-08-22 | An issue in the lock screen component of Reolink v4.54.0.4.20250526 allows attackers to bypass authentication via using an ADB (Android Debug Bridge). |
| CVE-2025-55624 | 2025-08-22 | An intent redirection vulnerability in Reolink v4.54.0.4.20250526 allows unauthorized attackers to access internal functions or access non-public components. |
| CVE-2025-55625 | 2025-08-22 | An open redirect vulnerability in Reolink v4.54.0.4.20250526 allows attackers to redirect users to a malicious site via a crafted URL. NOTE: this is disputed by the Supplier because it is... |
| CVE-2025-55626 | 2025-08-22 | An Insecure Direct Object Reference (IDOR) vulnerability in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allows unauthorized attackers to access the Admin-only settings and edit... |
| CVE-2025-55627 | 2025-08-22 | Insufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allows authenticated attackers to create accounts with elevated privileges. |
| CVE-2025-55629 | 2025-08-22 | Insecure permissions in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allow attackers to arbitrarily change other users' passwords via manipulation of the userName value. |
| CVE-2025-55630 | 2025-08-22 | A discrepancy in the error message returned by the login function of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 when entering the wrong username and... |
| CVE-2025-55631 | 2025-08-22 | Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was discovered to manage users' sessions system wide instead of an account-by-account basis, potentially leading to a Denial... |
| CVE-2025-55634 | 2025-08-22 | Incorrect access control in the RTMP server settings of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allows unauthorized attackers to cause a Denial of Service... |
| CVE-2025-55637 | 2025-08-22 | Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was discovered to contain a command injection vulnerability via the setddns_pip_system() function. |
| CVE-2025-57105 | 2025-08-22 | The DI-7400G+ router has a command injection vulnerability, which allows attackers to execute arbitrary commands on the device. The sub_478D28 function in in mng_platform.asp, and sub_4A12DC function in wayos_ac_server.asp of... |
| CVE-2025-43752 | 2025-08-22 | Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.4, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15 and 7.4 GA through update 92 allow... |
| CVE-2025-41451 | 2025-08-22 | Post-Authentication OS Command Injection RCE in Danfoss AK-SM8xxA Series |
| CVE-2025-41452 | 2025-08-22 | Post auth nginx configuration injection in Danfoss AK-SM8xxA Series |
| CVE-2025-8281 | 2025-08-22 | WP Talroo <= 2.4 - Reflected XSS |
| CVE-2025-57699 | 2025-08-22 | Western Digital Kitfox for Windows provided by Western Digital Corporation registers a Windows service with an unquoted file path. A user with the write permission on the root directory of... |
| CVE-2025-8678 | 2025-08-22 | WP Crontrol - 1.17.0 - 1.19.1 - Authenticated (Administrator+) Blind Server-Side Request Forgery |
| CVE-2025-9341 | 2025-08-22 | Garbage collection can delay for AES CBC Native support, resulting in heap exhaustion |
| CVE-2025-9340 | 2025-08-22 | native encrypt/decrypt operations in JCE may corrupt data if same byte array used for input and output. |
| CVE-2025-9331 | 2025-08-22 | Spacious <= 1.9.11 - Missing Authorization to Autheticated (Subscriber+) Demo Data Import |
| CVE-2025-9254 | 2025-08-22 | Uniong|WebITR - Missing Authentication |
| CVE-2025-9255 | 2025-08-22 | Uniong|WebITR - SQL Injection |
| CVE-2025-9256 | 2025-08-22 | Uniong|WebITR - Arbitrary File Reading through Path Traversal |
| CVE-2025-9257 | 2025-08-22 | Uniong|WebITR - Arbitrary File Reading through Path Traversal |
| CVE-2025-9258 | 2025-08-22 | Uniong|WebITR - Arbitrary File Reading through Path Traversal |
| CVE-2025-9259 | 2025-08-22 | Uniong|WebITR - Arbitrary File Reading through Path Traversal |
| CVE-2025-57884 | 2025-08-22 | WordPress Greenshift Plugin <= 12.1.1 - Broken Access Control Vulnerability |
| CVE-2025-57885 | 2025-08-22 | WordPress Fluent Support Plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57886 | 2025-08-22 | WordPress Accessibility Checker by Equalize Digital Plugin <= 1.30.0 - Insecure Direct Object References (IDOR) Vulnerability |
| CVE-2025-57887 | 2025-08-22 | WordPress Jobmonster Theme <= 4.8.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57888 | 2025-08-22 | WordPress Jobmonster Theme <= 4.8.0 - Sensitive Data Exposure Vulnerability |
| CVE-2025-57890 | 2025-08-22 | WordPress Sessions Plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57891 | 2025-08-22 | WordPress Recurring PayPal Donations Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57892 | 2025-08-22 | WordPress Simple Statistics for Feeds Plugin <= 20250322 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57893 | 2025-08-22 | WordPress WP Fast Total Search Plugin <= 1.79.270 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57894 | 2025-08-22 | WordPress WPPizza Plugin <= 3.19.8 - Broken Access Control Vulnerability |
| CVE-2025-57895 | 2025-08-22 | WordPress JobWP Plugin <= 2.4.3 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57896 | 2025-08-22 | WordPress Church Admin Plugin <= 5.0.26 - Broken Access Control Vulnerability |
| CVE-2024-58239 | 2025-08-22 | tls: stop recv() if initial process_rx_list gave us non-DATA |
| CVE-2025-38616 | 2025-08-22 | tls: handle data disappearing from under the TLS ULP |
| CVE-2025-38617 | 2025-08-22 | net/packet: fix a race in packet_set_ring() and packet_notifier() |
| CVE-2025-38618 | 2025-08-22 | vsock: Do not allow binding to VMADDR_PORT_ANY |
| CVE-2009-10006 | 2025-08-22 | UFO: Alien Invasion <= 2.2.1 IRC Client Buffer Overflow |
| CVE-2025-33120 | 2025-08-22 | IBM QRadar SIEM privilege escalation |
| CVE-2025-36042 | 2025-08-22 | IBM QRadar SIEM cross-site scripting |
| CVE-2025-53363 | 2025-08-22 | Dpanel has an arbitrary file read vulnerability |
| CVE-2025-43751 | 2025-08-22 | User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10... |
| CVE-2025-38619 | 2025-08-22 | media: ti: j721e-csi2rx: fix list_del corruption |
| CVE-2025-38620 | 2025-08-22 | zloop: fix KASAN use-after-free of tag set |
| CVE-2025-38621 | 2025-08-22 | md: make rdev_addable usable for rcu mode |
| CVE-2025-38622 | 2025-08-22 | net: drop UFO packets in udp_rcv_segment() |
| CVE-2025-38623 | 2025-08-22 | PCI: pnv_php: Fix surprise plug detection and recovery |
| CVE-2025-38624 | 2025-08-22 | PCI: pnv_php: Clean up allocated IRQs on unplug |
| CVE-2025-38625 | 2025-08-22 | vfio/pds: Fix missing detach_ioas op |
| CVE-2025-38626 | 2025-08-22 | f2fs: fix to trigger foreground gc during f2fs_map_blocks() in lfs mode |
| CVE-2025-38627 | 2025-08-22 | f2fs: compress: fix UAF of f2fs_inode_info in f2fs_free_dic |
| CVE-2025-38628 | 2025-08-22 | vdpa/mlx5: Fix release of uninitialized resources on error path |
| CVE-2025-38629 | 2025-08-22 | ALSA: usb: scarlett2: Fix missing NULL check |
| CVE-2025-38630 | 2025-08-22 | fbdev: imxfb: Check fb_add_videomode to prevent null-ptr-deref |
| CVE-2025-38631 | 2025-08-22 | clk: imx95-blk-ctl: Fix synchronous abort |
| CVE-2025-38632 | 2025-08-22 | pinmux: fix race causing mux_owner NULL with active mux_usecount |
| CVE-2025-38633 | 2025-08-22 | clk: spacemit: mark K1 pll1_d8 as critical |
| CVE-2025-38634 | 2025-08-22 | power: supply: cpcap-charger: Fix null check for power_supply_get_by_name |
| CVE-2025-38635 | 2025-08-22 | clk: davinci: Add NULL check in davinci_lpsc_clk_register() |
| CVE-2025-38636 | 2025-08-22 | rv: Use strings in da monitors tracepoints |
| CVE-2025-38638 | 2025-08-22 | ipv6: add a retry logic in net6_rt_notify() |
| CVE-2025-38639 | 2025-08-22 | netfilter: xt_nfacct: don't assume acct name is null-terminated |
| CVE-2025-38640 | 2025-08-22 | bpf: Disable migration in nf_hook_run_bpf(). |
| CVE-2025-38641 | 2025-08-22 | Bluetooth: btusb: Fix potential NULL dereference on kmalloc failure |