CVE-2025-43712

JHipster before v.8.9.0 allows privilege escalation via a modified authorities parameter. Upon registering in the JHipster portal and logging in as a standard user, the authorities parameter in the re ...

Continue Reading

July 25, 2025

CVE-2025-8133 yanyutao0402 ChanCMS gather.js getArticle server-side request forgery

A vulnerability classified as critical has been found in yanyutao0402 ChanCMS up to 3.1.2. This affects the function getArticle of the file app/modules/api/service/gather.js. The manipulation of the a ...

Continue Reading

July 25, 2025

CVE-2025-52914

creation_timestamp| type| source ---|---|--- 2025-07-25 10:48:49+00:00| seen|...Read More ...

Continue Reading

July 25, 2025

CVE-2025-2281

creation_timestamp| type| source ---|---|--- 2025-07-25 09:19:56+00:00| seen|...Read More ...

Continue Reading

July 25, 2025

CVE-2025-7745

creation_timestamp| type| source ---|---|--- 2025-07-25 06:30:55+00:00| seen|...Read More ...

Continue Reading

July 25, 2025

CVE-2025-8022

Versions of the package bun after 0.0.12 are vulnerable to Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the $ shell API due to improper neutr ...

Continue Reading

July 25, 2025

CVE-2025-8133 yanyutao0402 ChanCMS gather.js getArticle server-side request forgery

A vulnerability classified as critical has been found in yanyutao0402 ChanCMS up to 3.1.2. This affects the function getArticle of the file app/modules/api/service/gather.js. The manipulation of the a ...

Continue Reading

July 25, 2025

CVE-2025-8133 yanyutao0402 ChanCMS gather.js getArticle server-side request forgery

A vulnerability classified as critical has been found in yanyutao0402 ChanCMS up to 3.1.2. This affects the function getArticle of the file app/modules/api/service/gather.js. The manipulation of the a ...

Continue Reading

July 25, 2025

1 541 542 543 544 545 9,321

Back to Main
Subscribe for the latest news: