Lista CVE - 2025 / Novembre
Visualizzazione 1501 - 1600 di 1779 CVE per Novembre 2025 (Pagina 16 di 18)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2025-40197 | 2025-11-12 | media: mc: Clear minor number before put device |
| CVE-2025-40198 | 2025-11-12 | ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() |
| CVE-2025-40199 | 2025-11-12 | page_pool: Fix PP_MAGIC_MASK to avoid crashing on some 32-bit arches |
| CVE-2025-40200 | 2025-11-12 | Squashfs: reject negative file sizes in squashfs_read_inode() |
| CVE-2025-40201 | 2025-11-12 | kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths |
| CVE-2025-40202 | 2025-11-12 | ipmi: Rework user message limit handling |
| CVE-2025-40203 | 2025-11-12 | listmount: don't call path_put() under namespace semaphore |
| CVE-2025-40204 | 2025-11-12 | sctp: Fix MAC comparison to be constant-time |
| CVE-2025-40205 | 2025-11-12 | btrfs: avoid potential out-of-bounds in btrfs_encode_fh() |
| CVE-2025-40206 | 2025-11-12 | netfilter: nft_objref: validate objref and objrefmap expressions |
| CVE-2025-40207 | 2025-11-12 | media: v4l2-subdev: Fix alloc failure check in v4l2_subdev_call_state_try() |
| CVE-2025-40208 | 2025-11-12 | media: iris: fix module removal if firmware download failed |
| CVE-2025-64503 | 2025-11-12 | [BIGSLEEP-434615384] cups-filters 1.x: out of bounds write in pdftoraster |
| CVE-2017-20211 | 2025-11-12 | UCanCode E-XD++ Visualization Enterprise Suite Untrusted Pointer Dereference RCE |
| CVE-2023-7329 | 2025-11-12 | Tinycontrol LAN Controller v3 (LK3) Remote DoS |
| CVE-2022-4983 | 2025-11-12 | TEC-IT TBarCode SDK 11.15 Remote File Create |
| CVE-2023-7327 | 2025-11-12 | Ozeki SMS Gateway <= 10.3.208 Unauthenticated Arbitrary File Read |
| CVE-2021-4463 | 2025-11-12 | Longjing Technology BEMS API <= 1.21 Remote Arbitrary File Download |
| CVE-2025-64517 | 2025-11-12 | sudo-rs doesn't record authenticating user properly in timestamp |
| CVE-2016-15055 | 2025-11-12 | JVC VN-T IP-Camera Directory Traversal via check.cgi |
| CVE-2011-10034 | 2025-11-12 | IRAI AUTOMGEN <= 8.0.0.7 Use-After-Free Remote DoS |
| CVE-2021-4464 | 2025-11-12 | FIberHome AN5506-04-FA / HG6245D Routers Remote Stack Overflow |
| CVE-2023-7326 | 2025-11-12 | Epson Stylus SX510W Printer Remote Power Off DoS |
| CVE-2022-4982 | 2025-11-12 | DBLTek GoIP-1 vGHSFVT-1.1-67-5 Unauthenticated LFI |
| CVE-2025-64523 | 2025-11-12 | FileBrowser has Insecure Direct Object Reference (IDOR) in Share Deletion Function |
| CVE-2025-64705 | 2025-11-12 | Frappe user was able to access the submission of other students |
| CVE-2025-64707 | 2025-11-12 | Frappe LMS revoking access did not show immediate effect as roles were cached |
| CVE-2025-13075 | 2025-11-12 | code-projects Responsive Hotel Site usersettingdel.php sql injection |
| CVE-2025-13076 | 2025-11-12 | code-projects Responsive Hotel Site usersetting.php sql injection |
| CVE-2025-47220 | 2025-11-13 | Keyfactor SignServer before 7.3.1 has Incorrect Access Control, issue 1 of 3. |
| CVE-2025-47221 | 2025-11-13 | Keyfactor SignServer before 7.3.1 has Incorrect Access Control, issue 2 of 3. |
| CVE-2025-47222 | 2025-11-13 | Keyfactor SignServer before 7.3.1 has Incorrect Access Control, issue 3 of 3. |
| CVE-2025-52186 | 2025-11-13 | Lichess lila before commit 11b4c0fb00f0ffd823246f839627005459c8f05c (2025-06-02) contains a Server-Side Request Forgery (SSRF) vulnerability in the game export API. The players parameter is passed directly to an internal HTTP client without... |
| CVE-2025-55810 | 2025-11-13 | A vulnerability was found in Alaga Home Security WiFi Camera 3K (model S-CW2503C-H) with hardware version V03 and firmware version 1.4.2, which allows physical attackers to execute commands as root... |
| CVE-2025-60671 | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20181207.bin in the timelycheck and sysconf binaries, which process the /var/system/linux_vlan_reinit file. The vulnerability occurs because content read from... |
| CVE-2025-60672 | 2025-11-13 | An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored... |
| CVE-2025-60673 | 2025-11-13 | An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDMZSettings' functionality, where the 'IPAddress' parameter in prog.cgi is stored in NVRAM... |
| CVE-2025-60674 | 2025-11-13 | A stack buffer overflow vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin in the rc binary's USB storage handling module. The vulnerability occurs when the "Serial Number" field from... |
| CVE-2025-60675 | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20181207.bin in the timelycheck and sysconf binaries, which process the /tmp/new_qos.rule configuration file. The vulnerability occurs because parsed fields... |
| CVE-2025-60676 | 2025-11-13 | An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetNetworkSettings' functionality of prog.cgi, where the 'IPAddress' and 'SubnetMask' parameters are directly... |
| CVE-2025-60679 | 2025-11-13 | A stack buffer overflow vulnerability exists in the D-Link DIR-816A2 router firmware DIR-816A2_FWv1.10CNB05_R1B011D88210.img in the upload.cgi module, which handles firmware version information. The vulnerability occurs because /proc/version is read into... |
| CVE-2025-60682 | 2025-11-13 | A command injection vulnerability exists in the ToToLink A720R Router firmware V4.1.5cu.614_B20230630 within the cloudupdate_check binary, specifically in the sub_402414 function that handles cloud update parameters. User-supplied 'magicid' and 'url'... |
| CVE-2025-60683 | 2025-11-13 | A command injection vulnerability exists in the ToToLink A720R Router firmware V4.1.5cu.614_B20230630 within the sysconf binary, specifically in the sub_40BFA4 function that handles network interface reinitialization from '/var/system/linux_vlan_reinit'. Input is... |
| CVE-2025-60684 | 2025-11-13 | A stack buffer overflow vulnerability exists in the ToToLink LR1200GB (V9.1.0u.6619_B20230130) and NR1800X (V9.1.0u.6681_B20230703) Router firmware within the cstecgi.cgi binary (sub_42F32C function). The web interface reads the "lang" parameter and... |
| CVE-2025-60685 | 2025-11-13 | A stack buffer overflow exists in the ToToLink A720R Router firmware V4.1.5cu.614_B20230630 within the sysconf binary (sub_401EE0 function). The binary reads the /proc/stat file using fgets() into a local buffer... |
| CVE-2025-60686 | 2025-11-13 | A local stack-based buffer overflow vulnerability exists in the infostat.cgi and cstecgi.cgi binaries of ToToLink routers (A720R V4.1.5cu.614_B20230630, LR1200GB V9.1.0u.6619_B20230130, and NR1800X V9.1.0u.6681_B20230703). Both programs parse the contents of /proc/net/arp... |
| CVE-2025-60687 | 2025-11-13 | An unauthenticated command injection vulnerability exists in the ToToLink LR1200GB Router firmware V9.1.0u.6619_B20230130 within the cstecgi.cgi binary (sub_41EC68 function). The binary reads the "imei" parameter from a web request and... |
| CVE-2025-60688 | 2025-11-13 | A stack buffer overflow vulnerability exists in the ToToLink LR1200GB (V9.1.0u.6619_B20230130) and NR1800X (V9.1.0u.6681_B20230703) Router firmware within the cstecgi.cgi binary (setDefResponse function). The binary reads the "IpAddress" parameter from a... |
| CVE-2025-60689 | 2025-11-13 | An unauthenticated command injection vulnerability exists in the Start_EPI function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The vulnerability occurs because user-supplied CGI parameters (wl_ant, wl_ssid,... |
| CVE-2025-60690 | 2025-11-13 | A stack-based buffer overflow exists in the get_merge_ipaddr function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The function concatenates up to four user-supplied CGI parameters matching... |
| CVE-2025-60691 | 2025-11-13 | A stack-based buffer overflow exists in the httpd binary of Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The apply_cgi and block_cgi functions copy user-supplied input from the "url" CGI parameter into... |
| CVE-2025-60692 | 2025-11-13 | A stack-based buffer overflow vulnerability exists in the libshared.so library of Cisco Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The functions get_mac_from_ip and get_ip_from_mac use sscanf with overly permissive "%100s" format... |
| CVE-2025-60693 | 2025-11-13 | A stack-based buffer overflow exists in the get_merge_mac function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The function concatenates up to six user-supplied CGI parameters matching... |
| CVE-2025-60694 | 2025-11-13 | A stack-based buffer overflow exists in the validate_static_route function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The function improperly concatenates user-supplied CGI parameters (route_ipaddr_0~3, route_netmask_0~3, route_gateway_0~3)... |
| CVE-2025-60695 | 2025-11-13 | A stack-based buffer overflow vulnerability exists in the mtk_dut binary of Linksys E7350 routers (Firmware 1.1.00.032). The function sub_4045A8 reads up to 256 bytes from /sys/class/net/%s/address into a local buffer... |
| CVE-2025-60696 | 2025-11-13 | A stack-based buffer overflow vulnerability exists in the makeRequest.cgi binary of Linksys RE7000 routers (Firmware FW_v2.0.15_211230_1012). The arplookup function parses lines from /proc/net/arp using sscanf("%16s ... %18s ..."), storing results... |
| CVE-2025-60697 | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_4438A4` function in `prog.cgi` stores user-supplied DDNS parameters (`ServerAddress` and `Hostname`)... |
| CVE-2025-60698 | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_432F60` function in `prog.cgi` stores user-supplied `SetSysLogSettings/IPAddress` values in NVRAM via... |
| CVE-2025-60699 | 2025-11-13 | A buffer overflow vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592_B20191022_ALL within the `global.so` binary. The `getSaveConfig` function retrieves the `http_host` parameter from user input via `websGetVar` and copies... |
| CVE-2025-60700 | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `librcm.so` binaries. The `sub_4455BC` function in `prog.cgi` stores user-supplied `SetDMZSettings/IPAddress` values in NVRAM via... |
| CVE-2025-60701 | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_433188` function in `prog.cgi` stores user-supplied email configuration parameters (`EmailFrom`, `EmailTo`,... |
| CVE-2025-60702 | 2025-11-13 | A command injection vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592_B20191022_ALL within the `system.so` binary. The `setDiagnosisCfg` function retrieves the `ipDoamin` parameter from user input via `websGetVar` and concatenates... |
| CVE-2025-63406 | 2025-11-13 | An issue in Intermesh BV GroupOffice vulnerable before v.25.0.47 and 6.8.136 allows a remote attacker to execute arbitrary code via the dbToApi() and eval() in the FunctionField.php |
| CVE-2025-64710 | 2025-11-13 | Bitplatform Boilerplate has cross-site scripting vulnerability |
| CVE-2025-64716 | 2025-11-13 | Anubis vulnerable to possible XSS via redir parameter when using subrequest auth mode |
| CVE-2025-64711 | 2025-11-13 | PrivateBin vulnerable to malicious filename use for self-XSS / HTML injection locally for users |
| CVE-2025-59367 | 2025-11-13 | An authentication bypass vulnerability has been identified in certain DSL series routers, may allow remote attackers to gain unauthorized access into the affected system. Refer to the 'Security Update for... |
| CVE-2025-12089 | 2025-11-13 | Data Tables Generator by Supsystic <= 1.10.45 - Authenticated (Admin+) Arbitrary File Deletion |
| CVE-2025-12366 | 2025-11-13 | Page Builder: Pagelayer – Drag and Drop website builder <= 2.0.5 - Authenticated (Author+) Insecure Direct Object Reference |
| CVE-2025-12979 | 2025-11-13 | Welcart e-Commerce <= 2.11.24 - Missing Authorization to Unauthenticated Information Exposure |
| CVE-2025-12892 | 2025-11-13 | Survey Maker <= 5.1.9.4 - Missing Authorization Unauthenticated Limited Option Update |
| CVE-2025-12733 | 2025-11-13 | Import any XML, CSV or Excel File to WordPress (WP All Import) <= 3.9.6 - Authenticated (Administrator+) Remote Code Execution via Conditional Logic |
| CVE-2025-12536 | 2025-11-13 | SureForms <= 1.13.1 - Missing Authorization to Unauthenticated Sensitive Information Exposure |
| CVE-2025-11923 | 2025-11-13 | LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes - Various Versions - Authenticated (Student+) Privilege Escalation |
| CVE-2025-12891 | 2025-11-13 | Survey Maker <= 5.1.9.4 - Missing Authorization to Unauthenticated Information Exposure |
| CVE-2025-12620 | 2025-11-13 | Poll Maker – Versus Polls, Anonymous Polls, Image Polls <= 6.0.7 - Authenticated (Administrator+) SQL Injection via `filterbyauthor` Parameter |
| CVE-2025-12681 | 2025-11-13 | Comment Edit Core – Simple Comment Editing <= 3.1.0 - Unauthenticated Sensitive Information Exposure |
| CVE-2025-12844 | 2025-11-13 | AI Engine <= 3.1.8 - Authenticated (Subscriber+) PHP Object Injection via PHAR Deserialization |
| CVE-2025-12015 | 2025-11-13 | Convert WebP & AVIF | Quicq | Best image optimizer and compression plugin | Improve your Google Pagespeed <= 2.0.0 - Missing Authorization to Authenticated (Subscriber+) Afosto Disconnect |
| CVE-2025-8397 | 2025-11-13 | Save as PDF Button <= 1.9.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via restpackpdfbutton Shortcode |
| CVE-2025-10295 | 2025-11-13 | Angel – Fashion Model Agency WordPress CMS Theme <= 3.2.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting |
| CVE-2025-11260 | 2025-11-13 | WP Headless CMS Framework <= 1.15 - Unauthenticated Protection Mechanism Bypass |
| CVE-2025-11769 | 2025-11-13 | WordPress Content Flipper <= 0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2025-7704 | 2025-11-13 | Supermicro BMC SMASH services has a Stack-based buffer overflow vulnerability |
| CVE-2025-64259 | 2025-11-13 | WordPress Theater for WordPress plugin <= 0.18.8 - Broken Access Control vulnerability |
| CVE-2025-64261 | 2025-11-13 | WordPress Appointment Booking Calendar plugin <= 1.3.95 - Broken Access Control vulnerability |
| CVE-2025-64262 | 2025-11-13 | WordPress Auto Prune Posts plugin <= 3.0.0 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-64263 | 2025-11-13 | WordPress WP Content Pilot plugin <= 2.1.7 - Broken Access Control vulnerability |
| CVE-2025-64264 | 2025-11-13 | WordPress Popup addon for Ninja Forms plugin <= 3.5.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-64265 | 2025-11-13 | WordPress Frontend File Manager plugin <= 23.2 - Broken Access Control vulnerability |
| CVE-2025-64267 | 2025-11-13 | WordPress WooCommerce Ultimate Points And Rewards plugin <= 2.10.2 - Sensitive Data Exposure vulnerability |
| CVE-2025-64269 | 2025-11-13 | WordPress WooCommerce PDF Invoice Builder plugin <= 1.2.150 - Broken Access Control vulnerability |
| CVE-2025-64271 | 2025-11-13 | WordPress WP Plugin Manager plugin <= 1.4.7 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-64274 | 2025-11-13 | WordPress WPKoi Templates for Elementor plugin <= 3.4.4 - Broken Access Control vulnerability |
| CVE-2025-64275 | 2025-11-13 | WordPress Booking Manager plugin <= 2.1.17 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-64276 | 2025-11-13 | WordPress Survey Maker plugin <= 5.1.9.4 - Broken Access Control vulnerability |
| CVE-2025-64277 | 2025-11-13 | WordPress ChatBot plugin <= 7.3.9 - Broken Access Control vulnerability |
| CVE-2025-64292 | 2025-11-13 | WordPress Analytics Germanized for Google Analytics plugin <= 1.6.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-64369 | 2025-11-13 | WordPress Contact Form Email plugin <= 1.3.58 - Broken Access Control vulnerability |
| CVE-2025-64370 | 2025-11-13 | WordPress YOP Poll plugin <= 6.5.38 - Broken Access Control vulnerability |