{"vulnerability": "cve-2025-2713", "sightings": [{"uuid": "4653522a-93ef-4f9a-b01a-86d506d07280", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27133", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lixhf3q4ah2s", "content": "", "creation_timestamp": "2025-02-24T23:02:38.109398Z"}, {"uuid": "ab001b13-49ce-4a42-b48d-40cde94a8333", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27130", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lm4e5dljgc2x", "content": "", "creation_timestamp": "2025-04-06T02:03:30.346012Z"}, {"uuid": "1f3da2ea-b252-4c36-a052-dedde139f1c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27131", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lr45dha7lb2r", "content": "", "creation_timestamp": "2025-06-08T15:07:36.994323Z"}, {"uuid": "d644d45f-16db-4a62-aee8-acf1dc7bdc5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2713", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-09-10T07:47:58.000000Z"}, {"uuid": "75c3146a-64e3-4dcc-8cb4-984ff57c13ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27134", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114427698562006042", "content": "", "creation_timestamp": "2025-04-30T15:48:36.297442Z"}, {"uuid": "f9d0c541-85ec-4c2d-bbd8-0eb424a82890", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27134", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo27rtocch2h", "content": "", "creation_timestamp": "2025-04-30T16:30:32.984749Z"}, {"uuid": "ae4e3f58-ff7b-4242-83b0-fdcdb22a1392", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27131", "type": "seen", "source": "https://bsky.app/profile/lbtoday1.bsky.social/post/3lo2r3z2qqo23", "content": "", "creation_timestamp": "2025-04-30T21:40:27.902747Z"}, {"uuid": "c34cb4a1-e796-4dba-a3b3-77158c884de7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27132", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3loinx6vi5n2t", "content": "", "creation_timestamp": "2025-05-06T10:21:28.977824Z"}, {"uuid": "f09b9300-91c8-4abd-a422-0a2737e9d34e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27134", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lroeg4jhrg2u", "content": "", "creation_timestamp": "2025-06-15T21:02:21.826209Z"}, {"uuid": "88ab566c-4f8d-4eb1-a5e7-8a6d90140f27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27139", "type": "seen", "source": "https://t.me/cvedetector/18924", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27139 - Combodo iTop Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27139 \nPublished : Feb. 25, 2025, 8:15 p.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : Combodo iTop is a web based IT service management tool. Versions prior to 2.7.12, 3.1.2, and 3.2.0 are vulnerable to cross-site scripting when the preferences page is opened. Versions 2.7.12, 3.1.2, and 3.2.0 fix the issue. \nSeverity: 6.8 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T23:14:26.000000Z"}, {"uuid": "97d85e64-0e76-4892-bfa8-a7a3c318d57a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27139", "type": "seen", "source": "MISP/24306fae-b16b-4478-9297-d2973cdb583c", "content": "", "creation_timestamp": "2025-08-22T14:52:23.000000Z"}, {"uuid": "64fd2ab0-7aa6-489b-b248-943306bf419e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27132", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15077", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27132\n\ud83d\udd25 CVSS Score: 3.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L)\n\ud83d\udd39 Description: in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.\n\ud83d\udccf Published: 2025-05-06T09:03:12.027Z\n\ud83d\udccf Modified: 2025-05-06T09:03:12.027Z\n\ud83d\udd17 References:\n1. https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-05.md", "creation_timestamp": "2025-05-06T09:21:21.000000Z"}, {"uuid": "92cb43e2-8994-4e2e-84be-6b7c69a40840", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2713", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-08-10T18:27:44.000000Z"}, {"uuid": "d1378d23-597d-4e01-9256-963eb54f2344", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27138", "type": "seen", "source": "https://t.me/cvedetector/20238", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27138 - DataEase Unauthenticated Access Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27138 \nPublished : March 13, 2025, 5:15 p.m. | 43\u00a0minutes ago \nDescription : DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.6, there is a flaw in the authentication in the io.dataease.auth.filter.TokenFilter class, which may cause the risk of unauthorized access. The vulnerability has been fixed in v2.10.6. No known workarounds are available. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-13T19:48:14.000000Z"}, {"uuid": "809928fb-4b54-4e73-a805-69b2f82018a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27136", "type": "seen", "source": "https://t.me/cvedetector/19995", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27136 - Amazon LocalS3 XXE Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27136 \nPublished : March 10, 2025, 7:15 p.m. | 2\u00a0hours, 17\u00a0minutes ago \nDescription : LocalS3 is an Amazon S3 mock service for testing and local development. Prior to version 1.21, the LocalS3 service's bucket creation endpoint is vulnerable to XML External Entity (XXE) injection. When processing the CreateBucketConfiguration XML document during bucket creation, the service's XML parser is configured to resolve external entities. This allows an attacker to declare an external entity that references an internal URL, which the server will then attempt to fetch when parsing the XML. The vulnerability specifically occurs in the location constraint processing, where the XML parser resolves external entities without proper validation or restrictions. When the external entity is resolved, the server makes an HTTP request to the specified URL and includes the response content in the parsed XML document. This vulnerability can be exploited to perform server-side request forgery (SSRF) attacks, allowing an attacker to make requests to internal services or resources that should not be accessible from external networks. The server will include the responses from these internal requests in the resulting bucket configuration, effectively leaking sensitive information. The attacker only needs to be able to send HTTP requests to the LocalS3 service to exploit this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-10T23:13:53.000000Z"}, {"uuid": "6ed22eaa-7cee-4fdd-a589-16a613a9dffd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27137", "type": "seen", "source": "https://t.me/cvedetector/18837", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27137 - \"Dependency-Track Local File Inclusion Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-27137 \nPublished : Feb. 24, 2025, 9:15 p.m. | 1\u00a0hour, 54\u00a0minutes ago \nDescription : Dependency-Track is a component analysis platform that allows organizations to identify and reduce risk in the software supply chain. Dependency-Track allows users with the `SYSTEM_CONFIGURATION` permission to customize notification templates. Templates are evaluated using the Pebble template engine. Pebble supports an `include` tag, which allows template authors to include the content of arbitrary files upon evaluation. Prior to version 4.12.6, users of Dependency-Track with the `SYSTEM_CONFIGURATION` permission can abuse the `include` tag by crafting notification templates that `include` sensitive local files, such as `/etc/passwd` or `/proc/1/environ`. By configuring such a template for a notification rule (aka \"Alert\"), and having it send notifications to a destination controlled by the actor, sensitive information may be leaked. The issue has been fixed in Dependency-Track 4.12.6. In fixed versions, the `include` tag can no longer be used. Usage of the tag will cause template evaluation to fail. As a workaround, avoid assigning the `SYSTEM_CONFIGURATION` permission to untrusted users. The `SYSTEM_CONFIGURATION` permission per default is only granted to members of the `Administrators` team. Assigning this permission to non-administrative users or teams is a security risk in itself, and highly discouraged. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T00:39:13.000000Z"}, {"uuid": "8b37fdc5-8746-42e1-b422-d7f863440ba1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27135", "type": "seen", "source": "https://t.me/cvedetector/18902", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27135 - RAGFlow SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27135 \nPublished : Feb. 25, 2025, 7:15 p.m. | 46\u00a0minutes ago \nDescription : RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. Versions 0.15.1 and prior are vulnerable to SQL injection. The ExeSQL component extracts the SQL statement from the input and sends it directly to the database query. As of time of publication, no patched version is available. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T21:33:56.000000Z"}, {"uuid": "c62bc6a4-ea1b-4c8b-9511-d0bc737f022f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2713", "type": "seen", "source": "https://t.me/cvedetector/21433", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2713 - Google gVisor's runsc Local Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2713 \nPublished : March 28, 2025, 4:15 p.m. | 17\u00a0minutes ago \nDescription : Google gVisor's runsc component exhibited a local privilege escalation vulnerability due to incorrect handling of file access permissions, which allowed unprivileged users to access restricted files. This occurred because the process initially ran with root-like permissions until the first fork. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-28T17:45:10.000000Z"}, {"uuid": "b47211dd-33a1-4b81-b54d-0c608e9fdb95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27133", "type": "seen", "source": "https://t.me/cvedetector/18830", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27133 - WeGIA SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2025-27133 \nPublished : Feb. 24, 2025, 7:15 p.m. | 1\u00a0hour, 53\u00a0minutes ago \nDescription : WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was discovered in the WeGIA application prior to version 3.2.15 at the `adicionar_tipo_exame.php` endpoint. This vulnerability allows an authorized attacker to execute arbitrary SQL queries, allowing access to sensitive information. Version 3.2.15 contains a patch for the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-24T22:08:38.000000Z"}, {"uuid": "0079d907-0f26-4e17-9528-f0ab84cccf49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27139", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5370", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27139\n\ud83d\udd25 CVSS Score: 6.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: Combodo iTop is a web based IT service management tool. Versions prior to 2.7.12, 3.1.2, and 3.2.0 are vulnerable to cross-site scripting when the preferences page is opened. Versions 2.7.12, 3.1.2, and 3.2.0 fix the issue.\n\ud83d\udccf Published: 2025-02-25T19:52:15.589Z\n\ud83d\udccf Modified: 2025-02-25T20:07:39.635Z\n\ud83d\udd17 References:\n1. https://github.com/Combodo/iTop/security/advisories/GHSA-c6mg-9537-c8cf", "creation_timestamp": "2025-02-25T20:22:57.000000Z"}, {"uuid": "024f9fcd-4915-4fda-86ff-90d8854f59a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27136", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7039", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27136\n\ud83d\udd25 CVSS Score: 5.5 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P)\n\ud83d\udd39 Description: LocalS3 is an Amazon S3 mock service for testing and local development. Prior to version 1.21, the LocalS3 service's bucket creation endpoint is vulnerable to XML External Entity (XXE) injection. When processing the CreateBucketConfiguration XML document during bucket creation, the service's XML parser is configured to resolve external entities. This allows an attacker to declare an external entity that references an internal URL, which the server will then attempt to fetch when parsing the XML. The vulnerability specifically occurs in the location constraint processing, where the XML parser resolves external entities without proper validation or restrictions. When the external entity is resolved, the server makes an HTTP request to the specified URL and includes the response content in the parsed XML document. This vulnerability can be exploited to perform server-side request forgery (SSRF) attacks, allowing an attacker to make requests to internal services or resources that should not be accessible from external networks. The server will include the responses from these internal requests in the resulting bucket configuration, effectively leaking sensitive information. The attacker only needs to be able to send HTTP requests to the LocalS3 service to exploit this vulnerability.\n\ud83d\udccf Published: 2025-03-10T18:24:38.743Z\n\ud83d\udccf Modified: 2025-03-10T19:09:21.238Z\n\ud83d\udd17 References:\n1. https://github.com/Robothy/local-s3/security/advisories/GHSA-g6wm-2v64-wq36\n2. https://github.com/Robothy/local-s3/commit/d6ed756ceb30c1eb9d4263321ac683d734f8836f", "creation_timestamp": "2025-03-10T19:38:32.000000Z"}, {"uuid": "5960e607-ffef-4b37-ae5c-64e90e749dde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27135", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5362", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27135\n\ud83d\udd25 CVSS Score: 8.9 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P)\n\ud83d\udd39 Description: RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. Versions 0.15.1 and prior are vulnerable to SQL injection. The ExeSQL component extracts the SQL statement from the input and sends it directly to the database query. As of time of publication, no patched version is available.\n\ud83d\udccf Published: 2025-02-25T18:16:58.667Z\n\ud83d\udccf Modified: 2025-02-25T18:57:33.672Z\n\ud83d\udd17 References:\n1. https://github.com/infiniflow/ragflow/security/advisories/GHSA-3gqj-66qm-25jq\n2. https://github.com/infiniflow/ragflow/blob/v0.15.1/agent/component/exesql.py\n3. https://swizzky.notion.site/ragflow-exesql-150ca6df7c03806989cefde915cf8e42?pvs=4", "creation_timestamp": "2025-02-25T19:23:55.000000Z"}, {"uuid": "5ddfbc2e-edff-439c-a7be-b05b0ea0fd35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27133", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5208", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27133\n\ud83d\udd25 CVSS Score: 9.4 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H)\n\ud83d\udd39 Description: WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was discovered in the WeGIA application prior to version 3.2.15 at the `adicionar_tipo_exame.php` endpoint. This vulnerability allows an authorized attacker to execute arbitrary SQL queries, allowing access to sensitive information. Version 3.2.15 contains a patch for the issue.\n\ud83d\udccf Published: 2025-02-24T18:43:16.403Z\n\ud83d\udccf Modified: 2025-02-24T18:58:30.181Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-xj79-w799-qjcp\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/619ead748e18e685459c6dc3c226e621b9ff5403", "creation_timestamp": "2025-02-24T19:22:25.000000Z"}, {"uuid": "7877a838-d56f-461f-9489-a2e51732354f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27137", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5227", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27137\n\ud83d\udd25 CVSS Score: 4.4 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: Dependency-Track is a component analysis platform that allows organizations to identify and reduce risk in the software supply chain. Dependency-Track allows users with the `SYSTEM_CONFIGURATION` permission to customize notification templates. Templates are evaluated using the Pebble template engine. Pebble supports an `include` tag, which allows template authors to include the content of arbitrary files upon evaluation. Prior to version 4.12.6, users of Dependency-Track with the `SYSTEM_CONFIGURATION` permission can abuse the `include` tag by crafting notification templates that `include` sensitive local files, such as `/etc/passwd` or `/proc/1/environ`. By configuring such a template for a notification rule (aka \"Alert\"), and having it send notifications to a destination controlled by the actor, sensitive information may be leaked. The issue has been fixed in Dependency-Track 4.12.6. In fixed versions, the `include` tag can no longer be used. Usage of the tag will cause template evaluation to fail. As a workaround, avoid assigning the `SYSTEM_CONFIGURATION` permission to untrusted users. The `SYSTEM_CONFIGURATION` permission per default is only granted to members of the `Administrators` team. Assigning this permission to non-administrative users or teams is a security risk in itself, and highly discouraged.\n\ud83d\udccf Published: 2025-02-24T20:59:50.974Z\n\ud83d\udccf Modified: 2025-02-24T20:59:50.974Z\n\ud83d\udd17 References:\n1. https://github.com/DependencyTrack/dependency-track/security/advisories/GHSA-9582-88hr-54w3\n2. https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-p75g-cxfj-7wrx\n3. https://github.com/PebbleTemplates/pebble/issues/680\n4. https://github.com/DependencyTrack/dependency-track/pull/4684\n5. https://github.com/DependencyTrack/dependency-track/pull/4685\n6. https://pebbletemplates.io/wiki/tag/include", "creation_timestamp": "2025-02-24T21:25:44.000000Z"}, {"uuid": "4b23e433-f5b2-4eec-ac08-5edc35a28423", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2713", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9390", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2713\n\ud83d\udd25 CVSS Score: 6.8 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N)\n\ud83d\udd39 Description: Google gVisor's runsc component exhibited a local privilege escalation vulnerability due to incorrect handling of file access permissions, which allowed unprivileged users to access restricted files. This occurred because the process initially ran with root-like permissions until the first fork.\n\ud83d\udccf Published: 2025-03-28T15:27:43.231Z\n\ud83d\udccf Modified: 2025-03-28T16:14:47.370Z\n\ud83d\udd17 References:\n1. https://github.com/google/gvisor/commit/586c38d70081b13b2ed494cef48e99b93956843e", "creation_timestamp": "2025-03-28T16:27:58.000000Z"}, {"uuid": "88e317e7-c42f-4617-a160-d43a97e15f24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27130", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9869", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27130\n\ud83d\udd25 CVSS Score: 6.3 (cvssV3_0, Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)\n\ud83d\udd39 Description: Welcart e-Commerce 2.11.6 and earlier versions contains an untrusted data deserialization vulnerability. If this vulnerability is exploited, arbitrary code may be executed by a remote unauthenticated attacker who can access websites created using the product.\n\ud83d\udccf Published: 2025-04-01T08:57:25.711Z\n\ud83d\udccf Modified: 2025-04-01T08:57:25.711Z\n\ud83d\udd17 References:\n1. https://www.welcart.com/archives/23868.html\n2. https://jvn.jp/en/jp/JVN87266215/", "creation_timestamp": "2025-04-01T09:32:43.000000Z"}, {"uuid": "c27035ef-bce9-42b7-abd7-f3ba6db39472", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27136", "type": "published-proof-of-concept", "source": "https://t.me/information_security_channel/53894", "content": "CVE-2025-27136 \u2013 LocalS3 CreateBucketConfiguration Endpoint XXE Injection\nhttps://www.offsec.com/blog/cve-2025-27136/\n\nDiscover how CVE-2025-27136, a critical XXE vulnerability in LocalS3\u2019s CreateBucketConfiguration endpoint, can be exploited to access sensitive files. Learn how the flaw works and how to mitigate it.\nThe post CVE-2025-27136 \u2013 LocalS3 CreateBucketConfiguration Endpoint XXE Injection (https://www.offsec.com/blog/cve-2025-27136/) appeared first on OffSec (https://www.offsec.com/).", "creation_timestamp": "2025-07-24T15:47:44.000000Z"}, {"uuid": "c0ebde8b-7088-4800-98bc-a82283e999dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27134", "type": "seen", "source": "https://t.me/cvedetector/24117", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27134 - Joplin Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27134 \nPublished : April 30, 2025, 3:16 p.m. | 28\u00a0minutes ago \nDescription : Joplin is a free, open source note taking and to-do application, which can handle a large number of notes organised into notebooks. Prior to version 3.3.3, a privilege escalation vulnerability exists in the Joplin server, allowing non-admin users to exploit the API endpoint `PATCH /api/users/:id` to set the `is_admin` field to 1. The vulnerability allows malicious low-privileged users to perform administrative actions without proper authorization. This issue has been patched in version 3.3.3. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-30T17:55:17.000000Z"}, {"uuid": "90fa668d-3988-4a13-870d-ac814a8e1d67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27130", "type": "seen", "source": "https://t.me/cvedetector/21745", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27130 - Welcart e-Commerce Deserialization Remote Code Execution\", \n  \"Content\": \"CVE ID : CVE-2025-27130 \nPublished : April 1, 2025, 9:15 a.m. | 2\u00a0hours, 12\u00a0minutes ago \nDescription : Welcart e-Commerce 2.11.6 and earlier versions contains an untrusted data deserialization vulnerability. If this vulnerability is exploited, arbitrary code may be executed by a remote unauthenticated attacker who can access websites created using the product. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T13:37:51.000000Z"}, {"uuid": "5a8d58fb-f2cb-4cf2-b2f3-a964d30b1c04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27136", "type": "seen", "source": "https://t.me/GithubRedTeam/83916", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #XXE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2025-27136-XXE-LocalS3\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a ZaidMkh32\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 1  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-12 09:47:31\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nProof of Concept for CVE-2025-27136 (XXE in Local-S3)\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-12T10:02:47.000000Z"}, {"uuid": "c95f3a97-b506-4975-a971-5b7b137e1ce1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27134", "type": "seen", "source": "Telegram/Gwvh-n-ygZ7AZvt4Z14lI64V1AihU4WxZxoYYl7z1l7jTPI", "content": "", "creation_timestamp": "2025-04-30T17:32:01.000000Z"}, {"uuid": "ddc0fb41-c0bc-4837-aee7-6b1d621f95a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27132", "type": "seen", "source": "https://t.me/cvedetector/24570", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27132 - OpenHarmony Out-of-Bounds Write Arbitrary Code Execution\", \n  \"Content\": \"CVE ID : CVE-2025-27132 \nPublished : May 6, 2025, 9:15 a.m. | 44\u00a0minutes ago \nDescription : in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios. \nSeverity: 3.8 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-06T12:48:18.000000Z"}]}