CVE List - 2025 / September
Showing 1401 - 1500 of 4322 CVEs for September 2025 (Page 15 of 44)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-10169 | 2025-09-09 | UTT 1200GW ConfigWirelessBase buffer overflow |
| CVE-2025-7746 | 2025-09-09 | CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause an unvalidated data injected by a malicious user potentially leading to modify or read... |
| CVE-2025-10170 | 2025-09-09 | UTT 1200GW formApLbConfig sub_4B48F8 buffer overflow |
| CVE-2025-23342 | 2025-09-09 | The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to gain access to a privileged account . A successful exploit of this vulnerability may lead to code... |
| CVE-2025-23343 | 2025-09-09 | The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to write files to restricted components. A successful exploit of this vulnerability may lead to information disclosure, denial... |
| CVE-2025-23344 | 2025-09-09 | The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to run code on the platform host as a non-privileged user. A successful exploit of this vulnerability may... |
| CVE-2025-58462 | 2025-09-09 | OPEXUS FOIAXpress PAL SQL injection |
| CVE-2025-54245 | 2025-09-09 | Substance3D - Viewer | Out-of-bounds Write (CWE-787) |
| CVE-2025-54243 | 2025-09-09 | Substance3D - Viewer | Out-of-bounds Write (CWE-787) |
| CVE-2025-54244 | 2025-09-09 | Substance3D - Viewer | Heap-based Buffer Overflow (CWE-122) |
| CVE-2025-9996 | 2025-09-09 | CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause the execution of any shell command when executing a netstat command... |
| CVE-2025-9997 | 2025-09-09 | CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause command injection in BLMon that is executed in the operating system... |
| CVE-2025-49458 | 2025-09-09 | Zoom Workplace Clients - Buffer Overflow |
| CVE-2025-49459 | 2025-09-09 | Zoom Workplace for Windows on ARM - Missing Authorization |
| CVE-2025-10171 | 2025-09-09 | UTT 1250GW formConfigApConfTemp sub_453DC buffer overflow |
| CVE-2025-49460 | 2025-09-09 | Zoom Workplace Clients - Argument Injection |
| CVE-2025-54260 | 2025-09-09 | Substance3D - Modeler | Out-of-bounds Read (CWE-125) |
| CVE-2025-54259 | 2025-09-09 | Substance3D - Modeler | Integer Overflow or Wraparound (CWE-190) |
| CVE-2025-54258 | 2025-09-09 | Substance3D - Modeler | Use After Free (CWE-416) |
| CVE-2025-49461 | 2025-09-09 | Zoom Workplace Clients - Cross-site Scripting |
| CVE-2025-58134 | 2025-09-09 | Zoom Workplace Clients for Windows - Incorrect Authorization |
| CVE-2025-58135 | 2025-09-09 | Zoom Workplace Clients for Windows - Improper Action Enforcement |
| CVE-2025-58131 | 2025-09-09 | Zoom Workplace VDI Plugin macOS Universal installer for VMware Horizon - Race Condition |
| CVE-2025-59036 | 2025-09-09 | Infrahub allows authentication with deleted and expired API tokens |
| CVE-2025-58447 | 2025-09-09 | rAthena has heap-based buffer overflow in login server |
| CVE-2025-58448 | 2025-09-09 | rAthena has SQL Injection in PartyBooking component via `WorldName` parameter. |
| CVE-2025-58750 | 2025-09-09 | rAthena missing bound check in chclif_parse_moveCharSlot |
| CVE-2025-59038 | 2025-09-09 | Prebid.js NPM package briefly compromised |
| CVE-2025-59039 | 2025-09-09 | Prebid Universal Creative on npm briefly compromised |
| CVE-2025-59042 | 2025-09-09 | PyInstaller has local privilege escalation vulnerability |
| CVE-2025-59044 | 2025-09-09 | Himmelblau vulnerable to GID collision via group name-derived mapping (privilege escalation) |
| CVE-2025-59046 | 2025-09-09 | interactive-git-checkout has Command Injection vulnerability |
| CVE-2025-10172 | 2025-09-09 | UTT 750W formPictureUrl buffer overflow |
| CVE-2025-29592 | 2025-09-10 | oasys v1.1 is vulnerable to Directory Traversal in ProcedureController. |
| CVE-2025-50892 | 2025-09-10 | The eudskacs.sys driver version 20250328 shipped with EaseUs Todo Backup 1.2.0.1 fails to properly validate privileges for I/O requests (IRP_MJ_READ/IRP_MJ_WRITE) sent to its device object. This allows a local, low-privileged... |
| CVE-2025-55976 | 2025-09-10 | Intelbras IWR 3000N 1.9.8 exposes the Wi-Fi password in plaintext via the /api/wireless endpoint. Any unauthenticated user on the local network can directly obtain the Wi-Fi network password by querying... |
| CVE-2025-56404 | 2025-09-10 | An issue was discovered in MariaDB MCP 0.1.0 allowing attackers to gain sensitive information via the SSE service as the SSE service lacks user validation. |
| CVE-2025-56405 | 2025-09-10 | An issue was discovered in litmusautomation litmus-mcp-server thru 0.0.1 allowing unauthorized attackers to control the target's MCP service through the SSE protocol. |
| CVE-2025-56406 | 2025-09-10 | An issue was discovered in mcp-neo4j 0.3.0 allowing attackers to obtain sensitive information or execute arbitrary commands via the SSE service. NOTE: the Supplier's position is that authentication is not... |
| CVE-2025-56407 | 2025-09-10 | A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/mysql.php. The manipulation of the argument sql leads... |
| CVE-2025-56413 | 2025-09-10 | OS Command injection vulnerability in function OperateSSH in 1panel 2.0.8 allowing attackers to execute arbitrary commands via the operation parameter to the /api/v2/hosts/ssh/operate endpoint. |
| CVE-2025-56466 | 2025-09-10 | Hardcoded credentials in Dietly v1.25.0 for android allows attackers to gain sensitive information. |
| CVE-2025-56578 | 2025-09-10 | An issue in RTSPtoWeb v.2.4.3 allows a remote attacker to obtain sensitive information and executearbitrary code via the lack of authentication mechanisms |
| CVE-2025-57392 | 2025-09-10 | BenimPOS Masaustu 3.0.x is affected by insecure file permissions. The application installation directory grants Everyone and BUILTIN\Users groups FILE_ALL_ACCESS, allowing local users to replace or modify .exe and .dll files.... |
| CVE-2025-57520 | 2025-09-10 | A Cross Site Scripting (XSS) vulnerability exists in Decap CMS thru 3.8.3. Input fields such as body, tags, title, and description are not properly sanitized before being rendered in the... |
| CVE-2025-57569 | 2025-09-10 | Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the portList parameter in /goform/setNAT. |
| CVE-2025-57570 | 2025-09-10 | Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the QosList parameter in goform/setQoS. |
| CVE-2025-57571 | 2025-09-10 | Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow. via the macFilterList parameter in goform/setNAT. |
| CVE-2025-57572 | 2025-09-10 | Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the onlineList parameter in goform/setParentControl. |
| CVE-2025-57573 | 2025-09-10 | Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the wifiTimeClose parameter in goform/setWifi. |
| CVE-2025-57642 | 2025-09-10 | A Shell Upload vulnerability in Tourism Management System 2.0 allows an attacker to upload and execute arbitrary PHP shell scripts on the server, leading to remote code execution and unauthorized... |
| CVE-2025-10195 | 2025-09-10 | Seismic App com.seismic.doccenter AndroidManifest.xml improper export of android application components |
| CVE-2025-10197 | 2025-09-10 | HJSoft HCM Human Resources Management System downlawbase sql injection |
| CVE-2025-8388 | 2025-09-10 | PowerPack Lite for Elementor <= 2.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting Via 'cursor_url' |
| CVE-2025-10049 | 2025-09-10 | Responsive Filterable Portfolio <= 1.0.24 - Authenticated (Admin+) Arbitrary File Upload |
| CVE-2025-7049 | 2025-09-10 | WPGYM - Wordpress Gym Management System <= 67.7.0 - Authenticated (Subscriber+) Privilege Escalation via Account Takeover |
| CVE-2025-6189 | 2025-09-10 | Duplicate Page and Post <= 2.9.5 - Authenticated (Contributor+) SQL Injection via meta_key Parameter |
| CVE-2025-9463 | 2025-09-10 | Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net <= 1.117.5 - Authenticated (Contributor+) SQL Injection via order_by Parameter |
| CVE-2025-8778 | 2025-09-10 | NitroPack <= 1.18.4 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update via nitropack_set_compression_ajax Function |
| CVE-2025-9979 | 2025-09-10 | Maspik <= 2.5.6 - Authenticated (Subscriber+) Missing Authorization to Spam Log Export |
| CVE-2025-9367 | 2025-09-10 | Welcart e-Commerce <= 2.11.20 - Authenticated (Editor+) Stored Cross-Site Scripting |
| CVE-2025-7826 | 2025-09-10 | Testimonial <= 2.3 - Authenticated (Contributor+) SQL Injection |
| CVE-2025-7843 | 2025-09-10 | Auto Save Remote Images (Drafts) <= 1.0.9 - Authenticated (Contributor+) Server-Side Request Forgery |
| CVE-2025-10040 | 2025-09-10 | WP Import – Ultimate CSV XML Importer for WordPress <= 7.27 - Missing Authorization to Authenticated (Subscriber+) FTP/SFTP Credential Exposure |
| CVE-2025-9622 | 2025-09-10 | WP Blast | SEO & Performance Booster <= 1.8.6 - Cross-Site Request Forgery to Cache Clearing |
| CVE-2025-9888 | 2025-09-10 | Maspik <= 2.5.6 - Cross-Site Request Forgery |
| CVE-2025-10001 | 2025-09-10 | Import any XML, CSV or Excel File to WordPress <= 3.9.3 - Authenticated (Admin+) Limited Unsafe File Upload |
| CVE-2025-10126 | 2025-09-10 | MyBrain Utilities <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2025-9857 | 2025-09-10 | Heateor Login – Social Login Plugin <= 1.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2025-10142 | 2025-09-10 | PagBank / PagSeguro Connect para WooCommerce <= 4.44.3 - Authenticated (Shop Manager+) SQL Injection |
| CVE-2025-9943 | 2025-09-10 | Unauthenticated SQL Injection Vulnerability in Shibboleth Service Provider |
| CVE-2025-41714 | 2025-09-10 | Path Traversal via 'Upload-Key' in SmartEMS Upload Handling |
| CVE-2025-36756 | 2025-09-10 | Device Takeover vulnerability in SolaX Cloud |
| CVE-2025-36758 | 2025-09-10 | Bypass of bruteforce protection in SolaX Cloud |
| CVE-2025-36757 | 2025-09-10 | Bypass of administrator login screen in SolaX Cloud |
| CVE-2025-36759 | 2025-09-10 | Sensitive Information Disclosure in SolaX Cloud |
| CVE-2025-40979 | 2025-09-10 | DLL search order hijack in Wave by Grandstream Networks |
| CVE-2025-10213 | 2025-09-10 | DLL search path hijacking vulnerability |
| CVE-2025-10214 | 2025-09-10 | DLL search path hijacking vulnerability |
| CVE-2025-10215 | 2025-09-10 | DLL search path hijacking vulnerability |
| CVE-2025-40725 | 2025-09-10 | Reflected Cross-Site Scripting (XSS) in Azon Dominator |
| CVE-2025-7718 | 2025-09-10 | Resideo Plugin for Resideo - Real Estate WordPress Theme <= 2.5.4 - Authenticated (Subscriber+) Insecure Direct Object Reference to Privilege Escalation via Account Takeover |
| CVE-2025-10220 | 2025-09-10 | Outdated Third-Party NuGet Packages in AxxonSoft Axxon One VMS 2.0.0 through 2.0.4 |
| CVE-2025-10221 | 2025-09-10 | Hardcoded Password Exposure in AxxonNet (C-WerkNet) ARP Agent Logs |
| CVE-2025-10222 | 2025-09-10 | Sensitive Information Disclosure in Diagnostic Dumps in AxxonSoft Axxon One VMS |
| CVE-2025-10223 | 2025-09-10 | Improper Session Cleanup on Role Removal in Web Admin Panel in AxxonSoft Axxon One (C-Werk) |
| CVE-2025-10224 | 2025-09-10 | Incorrect Evaluation of LDAP Nested Groups during Login in AxxonSoft Axxon One (C-Werk) |
| CVE-2025-10225 | 2025-09-10 | Incorrect Memory Allocation in OpenSSL-Based Session Module in AxxonSoft Axxon One (C-Werk) |
| CVE-2025-10226 | 2025-09-10 | PostgreSQL Upgrade from v10 to v17.4 in AxxonSoft Axxon One (C-Werk) 2.0.8 and earlier to Address Multiple Vulnerabilities |
| CVE-2025-10227 | 2025-09-10 | Lack of Encryption in Object Archive in AxxonSoft Axxon One (C-Werk) before 2.0.8 |
| CVE-2025-10231 | 2025-09-10 | N-central Incorrect Default Permissions could lead to Privilege Escalation |
| CVE-2025-58764 | 2025-09-10 | Claude Code rg command had Command Injection that allowed bypass of user approval prompt for command execution |
| CVE-2025-59041 | 2025-09-10 | Claude Code vulnerable to arbitrary code execution caused by maliciously configured git email |
| CVE-2025-43888 | 2025-09-10 | Dell PowerProtect Data Manager, Hyper-V, version(s) 19.19 and 19.20, contain(s) an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this... |
| CVE-2025-43884 | 2025-09-10 | Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker with... |
| CVE-2025-43885 | 2025-09-10 | Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with... |
| CVE-2025-43725 | 2025-09-10 | Dell PowerProtect Data Manager, Generic Application Agent, version(s) 19.19 and 19.20, contain(s) an Incorrect Default Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading... |
| CVE-2025-43887 | 2025-09-10 | Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) an Incorrect Default Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation... |
| CVE-2025-8681 | 2025-09-10 | Pega Platform versions 7.1.0 to Infinity 24.2.2 are affected by a Stored XSS issue in a user interface component |
| CVE-2025-59034 | 2025-09-10 | Indico may disclose unauthorized user details access via legacy API |