CyberAlerts

CVE-2025-1870

Description: SQL injection vulnerability have been found in 101news affecting version 1.0 through the "pagedescription" parameter in admin/aboutus.php.

CVSS: CRITICAL (9.3)

EPSS Score: 0.04%

Source: CVE

March 3rd, 2025 (about 2 months ago)

CVE-2025-1869

SQL injection vulnerability in 101news

Description: SQL injection vulnerability have been found in 101news affecting version 1.0 through the "username" parameter in admin/check_avalability.php.

CVSS: CRITICAL (9.3)

EPSS Score: 0.04%

Source: CVE

March 3rd, 2025 (about 2 months ago)

CVE-2025-1867

HTTP Response Smuggling Vulnerability in libhv

Description: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in ithewei libhv allows HTTP Response Smuggling.This issue affects libhv: through 1.3.3.

CVSS: CRITICAL (10.0)

EPSS Score: 0.05%

Source: CVE

March 3rd, 2025 (about 2 months ago)

CVE-2025-1866

Undefined Behavior Due to Out-of-Bounds Pointer Arithmetic in libwebsockets

Description: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32 platform. By default, the affected code is not executed unless one of the following conditions is met: LWS_WITHOUT_EXTENSIONS (default ON) is manually set to OFF in CMake. LWS_WITH_HTTP_STREAM_COMPRESSION (default OFF) is manually set to ON in CMake. Despite these conditions, when triggered in affected configurations, this vulnerability may allow attackers to manipulate pointers, potentially leading to memory corruption or unexpected behavior.

CVSS: CRITICAL (10.0)

EPSS Score: 0.05%

Source: CVE

March 3rd, 2025 (about 2 months ago)

CVE-2025-1864

Buffer Overflow and Potential Code Execution in Radare2

Description: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in radareorg radare2 allows Overflow Buffers.This issue affects radare2: before <5.9.9.

CVSS: CRITICAL (10.0)

EPSS Score: 0.05%

Source: CVE

March 3rd, 2025 (about 2 months ago)

CVE-2025-27590

In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID migration page allows an unauthenticated user to gain control over the Linux user...

Description: In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID migration page allows an unauthenticated user to gain control over the Linux user account that is running oxidized-web.

CVSS: CRITICAL (9.0)

EPSS Score: 0.13%

Source: CVE

March 3rd, 2025 (about 2 months ago)

CVE-2025-1671

Academist Membership <= 1.1.6 - Authentication Bypass via Account Takeover

Description: The Academist Membership plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.6. This is due to the academist_membership_check_facebook_user() function not properly verifying a user's identity prior to authenticating them. This makes it possible for unauthenticated attackers to log in as any user, including site administrators.

CVSS: CRITICAL (9.8)

EPSS Score: 0.06%

Source: CVE

March 1st, 2025 (about 2 months ago)

CVE-2025-1638

Alloggio Membership <= 1.1 - Authentication Bypass via Social Login Account Takeover

Description: The Alloggio Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.2. This is due to the plugin not properly validating a user's identity through the alloggio_membership_init_rest_api_facebook_login and alloggio_membership_init_rest_api_google_login functions. This makes it possible for unauthenticated attackers to log in as any user, including administrators, without knowing a password.

CVSS: CRITICAL (9.8)

EPSS Score: 0.15%

Source: CVE

March 1st, 2025 (about 2 months ago)

CVE-2025-1564

SetSail Membership <= 1.0.3 - Authentication Bypass via Account Takeover

Description: The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account.

CVSS: CRITICAL (9.8)

EPSS Score: 0.06%

Source: CVE

March 1st, 2025 (about 2 months ago)

CVE-2024-12824

Nokri – Job Board WordPress Theme <= 1.6.2 - Unauthenticated Arbitrary Password Change

Description: The Nokri – Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.6.2. This is due to the plugin not properly checking for an empty token value prior updating their details like password. This makes it possible for unauthenticated attackers to change arbitrary user's password, including administrators, and leverage that to gain access to their account.

CVSS: CRITICAL (9.8)

EPSS Score: 42.85%

Source: CVE

March 1st, 2025 (about 2 months ago)

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-1870	SQL injection vulnerability in 101news Description: SQL injection vulnerability have been found in 101news affecting version 1.0 through the "pagedescription" parameter in admin/aboutus.php. CVSS: CRITICAL (9.3) EPSS Score: 0.04% Source: CVE March 3rd, 2025 (about 2 months ago)
CVE-2025-1869	SQL injection vulnerability in 101news Description: SQL injection vulnerability have been found in 101news affecting version 1.0 through the "username" parameter in admin/check_avalability.php. CVSS: CRITICAL (9.3) EPSS Score: 0.04% Source: CVE March 3rd, 2025 (about 2 months ago)
CVE-2025-1867	HTTP Response Smuggling Vulnerability in libhv Description: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in ithewei libhv allows HTTP Response Smuggling.This issue affects libhv: through 1.3.3. CVSS: CRITICAL (10.0) EPSS Score: 0.05% Source: CVE March 3rd, 2025 (about 2 months ago)
CVE-2025-1866	Undefined Behavior Due to Out-of-Bounds Pointer Arithmetic in libwebsockets Description: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32 platform. By default, the affected code is not executed unless one of the following conditions is met: LWS_WITHOUT_EXTENSIONS (default ON) is manually set to OFF in CMake. LWS_WITH_HTTP_STREAM_COMPRESSION (default OFF) is manually set to ON in CMake. Despite these conditions, when triggered in affected configurations, this vulnerability may allow attackers to manipulate pointers, potentially leading to memory corruption or unexpected behavior. CVSS: CRITICAL (10.0) EPSS Score: 0.05% Source: CVE March 3rd, 2025 (about 2 months ago)
CVE-2025-1864	Buffer Overflow and Potential Code Execution in Radare2 Description: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in radareorg radare2 allows Overflow Buffers.This issue affects radare2: before <5.9.9. CVSS: CRITICAL (10.0) EPSS Score: 0.05% Source: CVE March 3rd, 2025 (about 2 months ago)
CVE-2025-27590	In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID migration page allows an unauthenticated user to gain control over the Linux user... Description: In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID migration page allows an unauthenticated user to gain control over the Linux user account that is running oxidized-web. CVSS: CRITICAL (9.0) EPSS Score: 0.13% Source: CVE March 3rd, 2025 (about 2 months ago)
CVE-2025-1671	Academist Membership <= 1.1.6 - Authentication Bypass via Account Takeover Description: The Academist Membership plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.6. This is due to the academist_membership_check_facebook_user() function not properly verifying a user's identity prior to authenticating them. This makes it possible for unauthenticated attackers to log in as any user, including site administrators. CVSS: CRITICAL (9.8) EPSS Score: 0.06% Source: CVE March 1st, 2025 (about 2 months ago)
CVE-2025-1638	Alloggio Membership <= 1.1 - Authentication Bypass via Social Login Account Takeover Description: The Alloggio Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.2. This is due to the plugin not properly validating a user's identity through the alloggio_membership_init_rest_api_facebook_login and alloggio_membership_init_rest_api_google_login functions. This makes it possible for unauthenticated attackers to log in as any user, including administrators, without knowing a password. CVSS: CRITICAL (9.8) EPSS Score: 0.15% Source: CVE March 1st, 2025 (about 2 months ago)
CVE-2025-1564	SetSail Membership <= 1.0.3 - Authentication Bypass via Account Takeover Description: The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account. CVSS: CRITICAL (9.8) EPSS Score: 0.06% Source: CVE March 1st, 2025 (about 2 months ago)
CVE-2024-12824	Nokri – Job Board WordPress Theme <= 1.6.2 - Unauthenticated Arbitrary Password Change Description: The Nokri – Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.6.2. This is due to the plugin not properly checking for an empty token value prior updating their details like password. This makes it possible for unauthenticated attackers to change arbitrary user's password, including administrators, and leverage that to gain access to their account. CVSS: CRITICAL (9.8) EPSS Score: 42.85% Source: CVE March 1st, 2025 (about 2 months ago)