CyberAlerts

CVE-2025-4635

Description: A malicious user with administrative privileges in the web portal would be able to manipulate the Diagnostics module to obtain remote code execution on the local device as a low privileged user.

CVSS: MEDIUM (6.6)

EPSS Score: 0.18%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-4634

Local File Inclusion

Description: The web portal on airpointer 2.4.107-2 was vulnerable local file inclusion. A malicious user with administrative privileges in the web portal would be able to manipulate requests to view files on the filesystem

CVSS: MEDIUM (4.1)

EPSS Score: 0.03%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-4633

Default Credentials

Description: Default credentials were present in the web portal for Airpointer 2.4.107-2, allowing an unauthenticated malicious actor to log in via the web portal

CVSS: MEDIUM (6.5)

EPSS Score: 0.03%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-5236

NinjaTeam Chat for Telegram <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via username Parameter

Description: The NinjaTeam Chat for Telegram plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘username’ parameter in all versions up to, and including, 1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

CVSS: MEDIUM (6.4)

EPSS Score: 0.03%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-4431

Featured Image Plus <= 1.6.3 - Missing Authorization to Authenticated (Subscriber+) Featured Image Update

Description: The Featured Image Plus – Quick & Bulk Edit with Unsplash plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fip_save_attach_featured function in all versions up to, and including, 1.6.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update featured image of any post.

CVSS: MEDIUM (4.3)

EPSS Score: 0.03%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-4943

LA-Studio Element Kit for Elementor <= 1.5.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via data-lakit-element-link Param...

Description: The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-lakit-element-link’ parameter in all versions up to, and including, 1.5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

CVSS: MEDIUM (6.4)

EPSS Score: 0.03%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-48889

Gradio Allows Unauthorized File Copy via Path Manipulation

Description: Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Prior to version 5.31.0, an arbitrary file copy vulnerability in Gradio's flagging feature allows unauthenticated attackers to copy any readable file from the server's filesystem. While attackers can't read these copied files, they can cause DoS by copying large files (like /dev/urandom) to fill disk space. This issue has been patched in version 5.31.0.

CVSS: MEDIUM (5.3)

EPSS Score: 0.07%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-48880

FreeScout has Race Condition When Deleting Users

Description: FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.181, when an administrative account is a deleting a user, there is the the possibility of a race condition occurring. This issue has been patched in version 1.8.181.

CVSS: MEDIUM (6.6)

EPSS Score: 0.05%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-48875

FreeScout Vulnerable to Stored XSS

Description: FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.181, the system's incorrect validation of last_name and first_name during profile data updates allows for the injection of arbitrary JavaScript code, which will be executed in a flesh-message when the data is deleted, potentially leading to a Cross-Site Scripting (XSS) vulnerability. This issue has been patched in version 1.8.181.

CVSS: MEDIUM (5.4)

EPSS Score: 0.03%

Source: CVE

May 30th, 2025 (18 days ago)

CVE-2025-48489

FreeScout Vulnerable to Stored XSS

Description: FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to insufficient data validation and sanitization during data reception. This issue has been patched in version 1.8.180.

CVSS: MEDIUM (4.8)

EPSS Score: 0.03%

Source: CVE

May 30th, 2025 (18 days ago)

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-4635	Remote Code Execution Description: A malicious user with administrative privileges in the web portal would be able to manipulate the Diagnostics module to obtain remote code execution on the local device as a low privileged user. CVSS: MEDIUM (6.6) EPSS Score: 0.18% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-4634	Local File Inclusion Description: The web portal on airpointer 2.4.107-2 was vulnerable local file inclusion. A malicious user with administrative privileges in the web portal would be able to manipulate requests to view files on the filesystem CVSS: MEDIUM (4.1) EPSS Score: 0.03% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-4633	Default Credentials Description: Default credentials were present in the web portal for Airpointer 2.4.107-2, allowing an unauthenticated malicious actor to log in via the web portal CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-5236	NinjaTeam Chat for Telegram <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via username Parameter Description: The NinjaTeam Chat for Telegram plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘username’ parameter in all versions up to, and including, 1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. CVSS: MEDIUM (6.4) EPSS Score: 0.03% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-4431	Featured Image Plus <= 1.6.3 - Missing Authorization to Authenticated (Subscriber+) Featured Image Update Description: The Featured Image Plus – Quick & Bulk Edit with Unsplash plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fip_save_attach_featured function in all versions up to, and including, 1.6.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update featured image of any post. CVSS: MEDIUM (4.3) EPSS Score: 0.03% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-4943	LA-Studio Element Kit for Elementor <= 1.5.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via data-lakit-element-link Param... Description: The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-lakit-element-link’ parameter in all versions up to, and including, 1.5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. CVSS: MEDIUM (6.4) EPSS Score: 0.03% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-48889	Gradio Allows Unauthorized File Copy via Path Manipulation Description: Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Prior to version 5.31.0, an arbitrary file copy vulnerability in Gradio's flagging feature allows unauthenticated attackers to copy any readable file from the server's filesystem. While attackers can't read these copied files, they can cause DoS by copying large files (like /dev/urandom) to fill disk space. This issue has been patched in version 5.31.0. CVSS: MEDIUM (5.3) EPSS Score: 0.07% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-48880	FreeScout has Race Condition When Deleting Users Description: FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.181, when an administrative account is a deleting a user, there is the the possibility of a race condition occurring. This issue has been patched in version 1.8.181. CVSS: MEDIUM (6.6) EPSS Score: 0.05% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-48875	FreeScout Vulnerable to Stored XSS Description: FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.181, the system's incorrect validation of last_name and first_name during profile data updates allows for the injection of arbitrary JavaScript code, which will be executed in a flesh-message when the data is deleted, potentially leading to a Cross-Site Scripting (XSS) vulnerability. This issue has been patched in version 1.8.181. CVSS: MEDIUM (5.4) EPSS Score: 0.03% Source: CVE May 30th, 2025 (18 days ago)
CVE-2025-48489	FreeScout Vulnerable to Stored XSS Description: FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to insufficient data validation and sanitization during data reception. This issue has been patched in version 1.8.180. CVSS: MEDIUM (4.8) EPSS Score: 0.03% Source: CVE May 30th, 2025 (18 days ago)