8.6

CVSS4.0

CVE-2025-66021 - OWASP Java HTML Sanitizer is vulnerable to XSS via noscript tag and improper style tag sanitization

OWASP Java HTML Sanitizer is a configureable HTML Sanitizer written in Java, allowing inclusion of HTML authored by third-parties in web applications while protecting against XSS. In version 20240325.1, OWASP java html sanitizer is vulnerable to XSS if HtmlPolicyBuilder allows noscript and style t…

πŸ“… Published: Nov. 26, 2025, 1:53 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 1:53 a.m.

7.5

CVSS3.1

CVE-2025-66020 - Valibot has a ReDoS vulnerability in `EMOJI_REGEX`

Valibot helps validate data using a schema. In versions from 0.31.0 to 1.1.0, the EMOJI_REGEX used in the emoji action is vulnerable to a Regular Expression Denial of Service (ReDoS) attack. A short, maliciously crafted string (e.g., <100 characters) can cause the regex engine to consume excessive …

πŸ“… Published: Nov. 26, 2025, 1:49 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 1:49 a.m.

7

CVSS4.0

CVE-2025-12848 - XSS vulnerability when rendering filename in Webform Multiform

Webform Multiple File Upload module for Drupal 7.x contains a cross-site scripting (XSS) vulnerability in the file name renderer. An unauthenticated attacker can exploit this vulnerability by uploading a file with a malicious filename containing JavaScript code (e.g., "<img src=1 onerror=alert(docu…

πŸ“… Published: Nov. 26, 2025, 1:28 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 1:28 a.m.

7.1

CVSS4.0

CVE-2025-66269 - Unquoted Service Path in UPSilon2000V6.0(RupsMon and USBMate) running as SYSTEM

The RupsMon and USBMate services in UPSilon 2000 run with SYSTEM privileges and contain unquoted service paths. This allows a local attacker to perform path interception and escalate privileges if they have write permissions to the directories proceeding that of which the real service executables l…

πŸ“… Published: Nov. 26, 2025, 1:19 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 1:26 a.m.

9.3

CVSS4.0

CVE-2025-66266 - Insecure SYSTEM Service Permissions in UPSilon2000V6.0 (RupsMon.exe) leading to trivial Local Privi…

The RupsMon.exe service executable in UPSilon 2000 has insecure permissions, allowing the 'Everyone' group Full Control. A local attacker can replace the executable with a malicious binary to execute code with SYSTEM privileges or simply change the config path of the service to a command; starting …

πŸ“… Published: Nov. 26, 2025, 1:16 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 1:20 a.m.

6.9

CVSS4.0

CVE-2025-66265 - Insecure permissions in configuration directory (C:\\usr)

CMService.exe creates the C:\\usr directory and subdirectories with insecure permissions, granting write access to all authenticated users. This allows attackers to replace configuration files (such as snmp.conf) or hijack DLLs to escalate privileges.

πŸ“… Published: Nov. 26, 2025, 1:12 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 1:12 a.m.

7.2

CVSS4.0

CVE-2025-66264 - Unquoted Service path in AutoStart SYSTEM privileged service

The CMService.exe service runs with SYSTEM privileges and contains an unquoted service path. This allows a local attacker with write privileges to the filesystem to insert a malicious executable in the path, leading to privilege escalation.

πŸ“… Published: Nov. 26, 2025, 1:09 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 1:09 a.m.

8.9

CVSS4.0

CVE-2025-66263 - Unauthenticated Arbitrary File Read via Null Byte Injection

Unauthenticated Arbitrary File Read via Null Byte Injection in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Null byte injection in download_setting.php allows reading arbitrary files. T…

πŸ“… Published: Nov. 26, 2025, 12:52 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 12:52 a.m.

9.3

CVSS4.0

CVE-2025-66262 - Arbitrary File Overwrite via Tar Extraction Path Traversal

Arbitrary File Overwrite via Tar Extraction Path Traversal in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Tar extraction with -C / allow arbitrary file overwrite via crafted archive. T…

πŸ“… Published: Nov. 26, 2025, 12:50 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 12:50 a.m.

9.9

CVSS4.0

CVE-2025-66261 - Unauthenticated OS Command Injection (restore_settings.php)

Unauthenticated OS Command Injection (restore_settings.php) in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform URL-decoded name parameter passed to exec() allows remote code execution. The…

πŸ“… Published: Nov. 26, 2025, 12:49 a.m. πŸ”„ Last Modified: Nov. 26, 2025, 12:49 a.m.
Total resulsts: 319443
Page 2 of 31,945
Β« previous page Β» next page
Filters