Latest Security Vulnerabilities

Saturday November 8, 2025

 

Unclassified

CVE-2025-12112 Stored XSS in Insert Headers & Footers Code HT Script WP Plugin v1.1.6
CVE-2025-11748 WordPress Groups Plugin 6.7.0 IDOR via group_id parameter
CVE-2025-12177 WordPress Download Manager <=3.3.30 hardcoded Cron key grant unauth cron jobs
CVE-2025-12583 Simple Downloads List WP <=1.4.3 Missing Cap Check Enables Auth Mod
CVE-2025-12125 Simple WordPress Forms 1.5.5 Stored XSS via Admin Settings
CVE-2025-12161 Arbitrary File Upload in Smart Auto Upload Images plugin v<=1.2.0
CVE-2025-64495 Open WebUI DOM XSS via Rich Text Prompt (<=0.6.34) Fixed in 0.6.35
CVE-2025-12042 Unauth Access via csv-export.php in Course Booking System <=6.1.5
CVE-2025-12167 wp_ajax_aweber_logreset allows log reset in CF7 AWeber Ext <=0.1.42
And others...

F1logic

CVE-2025-12064 WP2Social Auto Publish: Reflected XSS via PostMessage up to 2.4.7

Getwpfunnels

CVE-2025-12353 Unauthorized User Registration in WPFunnels <=3.6.2 via optin_allow_registration
CVE-2025-12000 WPFunnels WP <=3.6.2 Arbitrary File Deletion (wpfnl_delete_log)

Suitecrm

CVE-2025-64491 SuiteCRM 7.14.7 Reflected XSS Full Account Takeover
CVE-2025-64493 SuiteCRM 8.6.0-8.9.0 Auth SQLi in GraphQL appMetadata (blind)
CVE-2025-64489 SuiteCRM PrivEsc: Sessions Persist After Deactivation (V7.14.7/8.9.0)
CVE-2025-64490 SuiteCRM <=8.9.1 RBAC bypass via Resource Calendar & Project screens
CVE-2025-64492 SuiteCRM <=8.9.0: Time-based Blind SQLi in Queries (Fixed in 8.9.1)
CVE-2025-64488 SuiteCRM SQLi via call_id (7.14.7/8.x) CVE-2025-64488

Asgaros Forum

CVE-2025-11452 SQL Injection in Asgaros Forum 3.1.0 Plugin via Cookie

Metagauss Eventprime

CVE-2025-12498 EventPrime Events Calendar Plugin 4.2.0 Backdoor Booking Note Creation

Codesolz

CVE-2025-9334 WP Plugin 1.7.7: Limited Code Inject via rtafar_ajax (Better Find & Replace AI)

Friday November 7, 2025

Google Chrome

CVE-2025-12911 UI Spoofing via Permissions in Google Chrome <140.0.7339.80
CVE-2025-12909 Chrome DevTools (<140.0.7339.80) leaks cross-origin data via insufficient policy
CVE-2025-12908 Chrome Android 140.0.7339.80 Downloads: Untrusted Input Validation Flaw
CVE-2025-12907 Chrome DevTools RCE (pre-140.0.7339.80)
CVE-2025-12906 Google Chrome <140.0.7339.80 UI Spoofing via Permissions
CVE-2025-12905 Google Chrome Downloads Remote MOZ Bypass (<140.0.7339.80)
CVE-2025-12910 Chrome Passkeys DBG Log Leak v<140.0.7339.80
CVE-2025-11460 UAF in Chrome Storage before 141.0.7390.65
CVE-2025-11215 V8 OBO Mem Read via HTML in Chrome <141.0.7390.54
And others...

Canonical Ubuntu Linux

CVE-2025-7700 FFmpeg ALS Audio Decoder DoS via Improper Memory Allocation
CVE-2025-10230 Samba WINS Hook RCE via Unvalidated NetBIOS Names

IBM Db2

CVE-2024-47118 IBM Db2 DoS via crafted query (10.512.1.3)
CVE-2025-2534 IBM Db2 DoS via crafted query on server before 11.1.5/11.5.10/12.1.4
CVE-2025-33012 IBM Db2 10.5-12.1.3 (Linux) Auth regain after lockout via password reuse
CVE-2025-36185 IBM Db2 12.1.0-12.1.2 Local User DDOS via Improper Query Logic
CVE-2025-36006 IBM Db2 Auth Denial via Resource Leak (10.5-12.1)
CVE-2025-36008 IBM Db2 11.5.x-11.5.9 / 12.1.x-12.1.3 DoS via Improper Resource Allocation
CVE-2025-36131 IBM Db2 clpplus Exposes Credentials on Linux/UNIX/Windows (11.1-12.1)
CVE-2025-36136 IBM Db2 11.5.0-11.5.9 & 12.1.0-12.1.3 Local DoS via Monitor Script
CVE-2025-36186 CVE-2025-36186: IBM Db2 12.1.0-12.1.3 Local Priv Esc via Unnecessary Privilege Use

Gravity Forms

CVE-2025-12352 Gravity Forms 2.9.20: Arbitrary File Upload via copy_post_image()

QNAP File Station

CVE-2025-52865 Synology File Station 5 NULL Pointer DoS Vulnerability (v5.5.6.5018+ Fix)
CVE-2025-53413 File Station 5 RCE: Unlimited Resource Allocation (fixed 5.5.6.5018)
CVE-2025-53408 File Station 5 Null DP DoS fixed in 5.5.6.5018
CVE-2025-53409 File Station 5 Resource Allocation DoS Fixed in 5.5.6.5018
CVE-2025-53412 NULL Pointer DoS in Synology File Station before 5.5.6.5018
CVE-2025-53411 Resource Exhaustion Vulnerability in File Station 5 (fixed 5.5.6.5018)
CVE-2025-53410 File Station 5 Resource Exhaustion (CVE-2025-53410) pre5.5.6.5018
CVE-2025-57706 File Station 5 XSS via User Account, Fixed in 5.5.6.5018
CVE-2025-47207 File Station NULL ptr deref DoS before 5.5.6.5018

Haxx Curl

CVE-2025-10966 cURL SSH SFTP Backend Missing Host Verification, MITM Risk

Apollographql

CVE-2025-64347 Apollo Router Core 1.61.11 / 2.8.0 Bypass ACL via @link Renamed Directives
 

Unclassified

CVE-2025-12112 Stored XSS in Insert Headers & Footers Code HT Script WP Plugin v1.1.6
CVE-2025-11748 WordPress Groups Plugin 6.7.0 IDOR via group_id parameter
CVE-2025-12177 WordPress Download Manager <=3.3.30 hardcoded Cron key grant unauth cron jobs
CVE-2025-12583 Simple Downloads List WP <=1.4.3 Missing Cap Check Enables Auth Mod
CVE-2025-12125 Simple WordPress Forms 1.5.5 Stored XSS via Admin Settings
CVE-2025-12161 Arbitrary File Upload in Smart Auto Upload Images plugin v<=1.2.0
CVE-2025-64495 Open WebUI DOM XSS via Rich Text Prompt (<=0.6.34) Fixed in 0.6.35
CVE-2025-12042 Unauth Access via csv-export.php in Course Booking System <=6.1.5
CVE-2025-12167 wp_ajax_aweber_logreset allows log reset in CF7 AWeber Ext <=0.1.42
And others...

AutoDesk Shared Components

CVE-2025-9458 Autodesk Memory Corruption via Malicious PRT File Parser RCE

IBM Sterling B2b Integrator

CVE-2025-36135 IBM Sterling B2B & File Gateway 6.0-6.2.1.x Auth XSS in Web UI Credential Leak

Elastic Cloud Enterprise

CVE-2025-37736 Elastic CE improper auth allows privilege escalation via readonly APIs

Revenera Installshield

CVE-2025-12418 Revenera InstallShield DoS via Symlink on Uninstall

Red Hat Enterprise Linux (RHEL)

CVE-2025-12863 libxml2 xmlSetTreeDoc UAF via stale ns pointer

Buffalo Wsr 1800ax4

CVE-2025-46413 BUFFALO WSR-1800AX4 Wi-Fi Password Exposure via Weak Hash on WPS

Vercel Ai Sdk

CVE-2025-48985 Vercel AI SDK Input Validation Bypass v5.0.52/5.1.0-beta.9/6.0.0-beta

QNAP Qsync Central

CVE-2025-57712 Path Traversal in Qsync Central 5.0.0.3 (pre-5.0.0.3)

QNAP Download Station

CVE-2025-58463 Path Traversal in Synology Download Station 5.10.0.304+
CVE-2025-58465 XSS in Download Station v<5.10.0.304> - remote account bypass

Ckeditor

CVE-2025-61261 CKeditor 46.1.0 Angular 18.0.0 Reflected XSS

Langchain Ai

CVE-2025-64439 LangGraph RCE via JsonPlusSerializer in SQLite Checkpoint (v2.1.2)

Kubevirt

CVE-2025-64434 KubeVirt virt-handler Peer Cert Flaw: Impersonation via 1.5.3/1.6.1 Gap
CVE-2025-64433 KubeVirt <1.5.3 / <1.6.1: VM reads files via symlink & ownership change
CVE-2025-64432 KubeVirt RBAC bypass via mTLS CN validation flaw in virt-api (1.5.3/1.6.0)
CVE-2025-64435 KubeVirt 1.7.0-beta.0 - DoS via Fake Pod Labeling (CVE-2025-64435)
CVE-2025-64436 Permission Abuse in KubeVirt 1.5.0 Allow VMI Migration to Attacker Node
CVE-2025-64437 KubeVirt v<1.5.3/1.6.1 Symlink Exploit in virt-handler Enables Host Tampering

Zitadel

CVE-2025-64431 V2Beta IDOR in Zitadel 4.0.0-rc.1 to 4.6.2

Freepbx

CVE-2025-64328 FreePBX EPManager 17.0.2.3617.0.3 Filestore Cmd-Inject in check_ssh_connect

Octoprint

CVE-2025-64187 OctoPrint 1.11.3 & prior: XSS in Action Command notifications

Vercel Nuxt Devtools

CVE-2025-52662 Nuxt DevTools XSS: Auth Token Leak (pre2.6.4)

Kovidgoyal

CVE-2025-64486 Calibre <8.14 Arbitrary File Write via FB2 Binary Asset Arbitrary Code Exec

Conda Constructor

CVE-2025-64343 Constructor Insecure Install Dir Permissions (conda) <=3.12.2

Webcomics Dosage

CVE-2025-64184 Dosage 3.1- File Write via Content-Type Header

Crushftp

CVE-2025-63420 Stored XSS in CrushFTP 11.3.7_50 Admin Panel (Reports/Who Created Folder)

Nec Expresscluster X

CVE-2025-11546 NEC Univerge IX XSS v9.5-v10.7 Vulnerability (CVE-2025-11546)

Manager Io Manager

CVE-2025-64180 Manager 25.11.1.3085- old TOCTOU DNS bypass enables internal access

QNAP Qumagie

CVE-2025-58464 QuMagie <2.7.3 Path Traversal CVE-2025-58464
CVE-2025-52425 SQLi in QuMagie <2.7.0 Unauthenticated Remote Code Exec

QNAP Qulog Center

CVE-2025-54168 QuLog Center XSS via admin bypass, fixed in 1.8.2.923
CVE-2025-58469 CSRF in QuLog Center before 1.8.2.927

Zephyrproject Rtos Zephyr

CVE-2025-12890 BLE Peripheral Crash on Malformed Connection Request

Mruby

CVE-2025-12875 mruby 3.4.0 OOB Write in ary_fill_exec (array.c)

Dedebiz

CVE-2025-12859 DedeBIZ <=6.3.2 SQLi in admin/templets_one_edit.php

Code Projects Responsive Hotel Site

CVE-2025-12857 SQLi in Responsive Hotel Site 1.0 admin/roombook.php (CVE-2025-12857)

Suitecrm

CVE-2025-64491 SuiteCRM 7.14.7 Reflected XSS Full Account Takeover
CVE-2025-64493 SuiteCRM 8.6.0-8.9.0 Auth SQLi in GraphQL appMetadata (blind)
CVE-2025-64489 SuiteCRM PrivEsc: Sessions Persist After Deactivation (V7.14.7/8.9.0)
CVE-2025-64490 SuiteCRM <=8.9.1 RBAC bypass via Resource Calendar & Project screens
CVE-2025-64492 SuiteCRM <=8.9.0: Time-based Blind SQLi in Queries (Fixed in 8.9.1)
CVE-2025-64488 SuiteCRM SQLi via call_id (7.14.7/8.x) CVE-2025-64488

Humhub

CVE-2025-64442 HumHub Meta-Search XSS <=1.17.4 (Fixed 1.17.4)

Macwarrior Clipbucket

CVE-2025-64339 ClipBucket <=5.5.2-#146: Stored XSS in Playlist Name (Manage Playlists)
CVE-2025-64336 ClipBucket 5.x XSS in Manage Photos (Fixed in 5.5.2-#147)

Kgateway Dev Kgateway

CVE-2025-64323 kGateway xDS Auth Bypass 2.0.4 & 2.1.0-rc.2 (Prior to 2.0.5 & 2.1.0)

Themeatelier Idonate

CVE-2025-4522 IDonate WP Plugin 2.0.0-2.1.9 IDOR: delete users via subscriber
CVE-2025-4519 Privilege Escalation in IDonate WP Plugin v2.1.5-2.1.9 via Missing Capability

Projectworlds

CVE-2025-12862 Unrestricted Upload via image in /dashboard/userprofile.php of projectworlds Notes Platform 1.0

Code Projects

CVE-2025-12856 SQLi in code-projects Responsive Hotel Site 1.0 /admin/reservation.php
CVE-2025-12855 Responsive Hotel Site 1.0: Remote SQLi via /admin/newsletterdel.php eid (CVE-2025-12855)

Sourcecodester Best House Rental Management System

CVE-2025-12853 SQLi via delete_house in Best House Rental Management System 1.0

Amazon Aws

CVE-2025-12829 Amazon Ion-C Uninit Stack Read <1.1.4 (CVE-2025-12829)
CVE-2025-12815 AWS RES Virtual Desktop Preview Ownership Verification Flaw (2025.08)
CVE-2025-52565 runc <1.2.8/1.3.3/1.4.0-rc.3: /dev/console Bind-Mount LFI/Container Breakout
CVE-2025-31133 runc CLI BindMount Verification Flaw Exposes Host Escape (1.4.0rc.2)

QNAP Notification Center

CVE-2025-54167 Notification Center XSS via Admin Patch in 2.1.0.3443, 1.9.2.3163, 3.0.0.3466+

Dial Centrosnet

CVE-2025-10870 SQLi in DIAL CentrosNet v2.64 via ultralogin.php

Jaredallard Archives

CVE-2025-64346 archives 1.0.0 RCE via crafted archive extraction (fixed in 1.0.1)

Campcodes

CVE-2025-12873 Remote SQLi in Campcodes School File Management 1.0 /admin/update_user

Thursday November 6, 2025

Google Chrome

CVE-2025-12911 UI Spoofing via Permissions in Google Chrome <140.0.7339.80
CVE-2025-12909 Chrome DevTools (<140.0.7339.80) leaks cross-origin data via insufficient policy
CVE-2025-12908 Chrome Android 140.0.7339.80 Downloads: Untrusted Input Validation Flaw
CVE-2025-12907 Chrome DevTools RCE (pre-140.0.7339.80)
CVE-2025-12906 Google Chrome <140.0.7339.80 UI Spoofing via Permissions
CVE-2025-12905 Google Chrome Downloads Remote MOZ Bypass (<140.0.7339.80)
CVE-2025-12910 Chrome Passkeys DBG Log Leak v<140.0.7339.80
CVE-2025-11460 UAF in Chrome Storage before 141.0.7390.65
CVE-2025-11215 V8 OBO Mem Read via HTML in Chrome <141.0.7390.54
And others...

Amazon Aws

CVE-2025-12829 Amazon Ion-C Uninit Stack Read <1.1.4 (CVE-2025-12829)
CVE-2025-12815 AWS RES Virtual Desktop Preview Ownership Verification Flaw (2025.08)
CVE-2025-52565 runc <1.2.8/1.3.3/1.4.0-rc.3: /dev/console Bind-Mount LFI/Container Breakout
CVE-2025-31133 runc CLI BindMount Verification Flaw Exposes Host Escape (1.4.0rc.2)

AutoDesk Installer

CVE-2025-10885 Privilege Escalation via Unvalidated Binary Load in Windows

Mitsubishielectric Melsec

CVE-2025-10259 Mitsubishi MELSEC iQ-F CPU Mod. IoT DoS via TCP Qty Validation

Tagdiv Td Cloud Library

CVE-2025-62032 tagDiv Cloud Library <3.9.2 DOM-Based XSS in td-cloud-library

Ex Themes Woo Tour

CVE-2025-54722 WooTour <=3.6.3 Reflected XSS via Reflected Input

Anydesk

CVE-2025-27917 AnyDesk <=9.0.4: Remote DoS via deserialization NULL ptr
CVE-2025-27918 AnyDesk <9.0.0 Heap Overflow via UDP in Discovery Feature
CVE-2025-27919 AnyDesk RC flaw: auto-create Full Access pwd w/o confirm (9.0.4)

IBM Openpages With Watson

CVE-2025-33110 IBM OpenPages 9.1/9.0 Watson Remote HTML Injection Vulnerability

Codexthemes Thegem Elements

CVE-2025-62044 XSS in CodexThemes TheGem Elements (WPBakery) <=5.10.5.1

Hogash Kallyas

CVE-2025-62016 Kallyas Theme Unrestricted File Upload <= 4.22.0

Pluggabl Woocommerce Jetpack

CVE-2025-64196 Booster for WooCommerce <=7.2.5 Reflected XSS via woocommerce-jetpack

Openmage Magento Lts

CVE-2025-64174 Magento-lts Stored XSS via Admin Notification Grid (20.15.0)

Josh Kohlbach Woocommerce Store Toolkit

CVE-2025-60204 WooCommerce Store Toolkit <=2.4.3 LFI Improper Include Control

Containerd

CVE-2024-25621 containerd Default Perms Leak (v <1.7.29 or <2.0.7) CVE-2024-25621

Wpmu Dev Your All One Wordpress Platform Wp Smushit

CVE-2025-22288 Path Traversal in wp-smushit <=3.17.0 (Smush Image Compression and Optimization)

Josh Kohlbach Woocommerce Exporter

CVE-2025-60203 Store Exporter <=2.7.6 LFI via Include Filename Control (PHP RFI)

Jthemes Imevent

CVE-2025-58243 ImEvent <=3.4.0: Missing Auth (ACL Bypass) Jthemes

Saad Iqbal Change Wp Admin Login

CVE-2025-58595 All In One Login <=2.0.8 Authbypass via Spoofing (change-wp-admin-login)

Nootheme Noo Jobmonster

CVE-2025-54737 NooTheme Jobmonster <=4.7.8 Reflected XSS (CWE-79)

Nootheme Noo Yogi

CVE-2025-54718 NooTheme Yogi <=2.9.2 Reflected XSS (CVE-2025-54718)

Processby Lazy Load Optimizer

CVE-2025-60074 Lazy Load Optimizer <=1.4.7 LFI via Include/Require

Premmerce Woocommerce Wholesale Pricing

CVE-2025-60192 Premmerce Wholesale Pricing for WooCommerce: LFI via Include (<=1.1.10)

Owenr88 Simple Contact Forms

CVE-2025-60197 Simple Contact Forms 1.6.4 RFI via include/require (PHP Local File Inclusion)

Thimpress Learnpress

CVE-2025-60200 LearnPress Export Import <=4.0.9 LFI via PHP Include/Require

Addify User Registration Plugin Woocommerce

CVE-2025-60207 Unrestricted File Upload in Addify WooCommerce Plugin <=2.1.2

Shahjahan Jewel Wp Gdpr Cookie Consent

CVE-2025-53316 WP GDPR Cookie Consent <=1.0.0 CSRF & Stored XSS Vulnerability

Laborator Kalium

CVE-2025-53349 Kalium <=3.18.3 Reflected XSS Vulnerability

Wp User Manager

CVE-2025-60245 WP User Manager <=2.9.12 Deserialization Untrusted Obj Inje

Case Themes Case Addons

CVE-2025-62047 Case Addons <1.3.0 Unrestricted Upload of Dangerous File Types

Codexthemes Thegem Elementor

CVE-2025-62041 XSS in CodexThemes TheGem Elementor <=5.10.5.1
CVE-2025-62012 XSS in CodexThemes TheGem (Elementor) <=5.10.5

Yop Poll

CVE-2025-62040 CVE-2025-62040 XSS in YOP Poll <= 6.5.37

Brainstorm Force Surerank

CVE-2025-62059 Cross-Site Scripting in Brainstorm Force SureRank <=1.3.2

Favethemes Houzez Theme Functionality

CVE-2025-62057 XSS in Favethemes Houzez Theme-Functionality <4.2.0

Ays Pro Ays Chatgpt Assistant

CVE-2025-62039 Data Exposure in AYS AI ChatBot <=2.6.6

Themenectar Salient

CVE-2025-62028 Missing Auth in ThemeNectar Salient WordPress Theme <17.4.0

Codexthemes Thegem

CVE-2025-62011 TheGem (5.10.5) XSS via Input Neutralization in TheGem WP Theme