{"vulnerability": "cve-2025-2714", "sightings": [{"uuid": "1a12de64-185f-42fd-a419-882d0f636b9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27148", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3ljaf3eo5ps2p", "content": "", "creation_timestamp": "2025-02-28T12:15:23.514266Z"}, {"uuid": "cad68c00-6a1f-4fe0-8940-3a134d60b55a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27143", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lixujria462f", "content": "", "creation_timestamp": "2025-02-25T02:57:54.895405Z"}, {"uuid": "3cefe28f-e827-4600-9a82-6a67a4b00dec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27142", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114082300050791145", "content": "", "creation_timestamp": "2025-02-28T15:49:14.723131Z"}, {"uuid": "9421b9b8-262c-4d3f-8a7a-c2cdc4ea5889", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27149", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-09-10T07:47:56.000000Z"}, {"uuid": "7d655d1e-1401-4deb-93cf-5b39c4da5897", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27147", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ll7q2zohr426", "content": "", "creation_timestamp": "2025-03-25T16:49:45.293705Z"}, {"uuid": "7508941d-93a8-4b34-b84d-1e059c2381ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27148", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lizusxyrb72l", "content": "", "creation_timestamp": "2025-02-25T22:08:21.812806Z"}, {"uuid": "df69a074-09e4-4d7f-a4ed-33f9ebb431d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27148", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114067199010407804", "content": "", "creation_timestamp": "2025-02-25T23:48:50.575766Z"}, {"uuid": "c1b2dcea-351d-4c24-9a08-644996738d2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27148", "type": "seen", "source": "MISP/af1fbe07-e10c-40c4-844e-d4419bdf6f80", "content": "", "creation_timestamp": "2025-08-22T13:26:18.000000Z"}, {"uuid": "dd041733-813b-4dda-8a63-7d04eeeeacf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27149", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-08-10T18:27:44.000000Z"}, {"uuid": "ce03de4b-a78a-42df-8cf0-196e82be8c96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27142", "type": "seen", "source": "MISP/24306fae-b16b-4478-9297-d2973cdb583c", "content": "", "creation_timestamp": "2025-08-22T14:52:23.000000Z"}, {"uuid": "bdcd3313-785c-403b-92a8-ac02b279ea26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27140", "type": "seen", "source": "MISP/24306fae-b16b-4478-9297-d2973cdb583c", "content": "", "creation_timestamp": "2025-08-22T14:52:23.000000Z"}, {"uuid": "ee6b056c-d766-4ec6-84eb-604927bc3add", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27143", "type": "seen", "source": "Telegram/Ju4ikepgZXIrBR48ybMuwvZYHxZpoWOINOTmshCuddu4Jw3q", "content": "", "creation_timestamp": "2025-03-02T11:45:37.000000Z"}, {"uuid": "30955134-eecd-4675-b2e1-c0c13d5317bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27140", "type": "seen", "source": "Telegram/AIl_KcdXcI4iU77P42me5qozY-Iqzsv6oHtnBXCNMET09Owe", "content": "", "creation_timestamp": "2025-03-02T11:45:37.000000Z"}, {"uuid": "1a4ad044-24e4-4fdb-b575-c0c69ffc2542", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27141", "type": "seen", "source": "Telegram/tEVz3iKe6Q4BOdDA0KUiMoHmAZLffmp5yNY42hgU3f3m2tcj", "content": "", "creation_timestamp": "2025-03-02T11:45:37.000000Z"}, {"uuid": "2dd52aee-022d-48d1-9ed7-8c6875f3646b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27144", "type": "seen", "source": "https://t.me/cvedetector/18842", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27144 - Go JOSE JSON Web Token Denial of Service\", \n  \"Content\": \"CVE ID : CVE-2025-27144 \nPublished : Feb. 24, 2025, 11:15 p.m. | 1\u00a0hour, 54\u00a0minutes ago \nDescription : Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. In versions on the 4.x branch prior to version 4.0.5, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code used strings.Split(token, \".\") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters.  An attacker could exploit this by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service. Version 4.0.5 fixes this issue. As a workaround, applications could pre-validate that payloads passed to Go JOSE do not contain an excessive number of `.` characters. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T02:19:27.000000Z"}, {"uuid": "9b0e760f-945b-4c03-9a09-9e9be0bd701f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27146", "type": "seen", "source": "https://t.me/cvedetector/18922", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27146 - Matrix Appservice IRC Arbitrary IRC Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27146 \nPublished : Feb. 25, 2025, 8:15 p.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. The vulnerability has been patched in matrix-appservice-irc version 3.0.4. \nSeverity: 2.7 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T23:14:24.000000Z"}, {"uuid": "333b77d4-462b-4ac5-92c1-fe5615e6c4c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27142", "type": "seen", "source": "https://t.me/cvedetector/18925", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27142 - LocalSend Path Traversal Remote Command Execution\", \n  \"Content\": \"CVE ID : CVE-2025-27142 \nPublished : Feb. 25, 2025, 8:15 p.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : LocalSend is a free, open-source app that allows users to securely share files and messages with nearby devices over their local network without needing an internet connection. Prior to version 1.17.0, due to the missing sanitization of the path in the `POST /api/localsend/v2/prepare-upload` and the `POST /api/localsend/v2/upload` endpoint, a malicious file transfer request can write files to the arbitrary location on the system, resulting in the remote command execution. A malicious file transfer request sent by nearby devices can write files into an arbitrary directory. This usually allows command execution via the startup folder on Windows or Bash-related files on Linux. If the user enables the `Quick Save` feature, it will silently write files without explicit user interaction. Version 1.17.0 fixes this issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T23:14:27.000000Z"}, {"uuid": "a73937f1-bb75-4d47-874c-7394331f653e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27148", "type": "seen", "source": "https://t.me/cvedetector/18907", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27148 - Gradle Native-Platform Local Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27148 \nPublished : Feb. 25, 2025, 9:15 p.m. | 55\u00a0minutes ago \nDescription : Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. On Unix-like systems, the system temporary directory can be created with open permissions that allow multiple users to create and delete files within it. This library initialization could be vulnerable to a local privilege escalation from an attacker quickly deleting and recreating files in the system temporary directory. Gradle builds that rely on versions of net.rubygrapefruit:native-platform prior to 0.22-milestone-28 could be vulnerable to a local privilege escalation from an attacker quickly deleting and recreating files in the system temporary directory.  \n  \nIn net.rubygrapefruit:native-platform prior to version 0.22-milestone-28, if the `Native.get(Class)` method was called, without calling `Native.init(File)` first, with a non-`null` argument used as working file path, then the library would initialize itself using the system temporary directory and NativeLibraryLocator.java lines 68 through 78. Version 0.22-milestone-28 has been released with changes that fix the problem. Initialization is now mandatory and no longer uses the system temporary directory, unless such a path is passed for initialization. The only workaround for affected versions is to make sure to do a proper initialization, using a location that is safe.  \n  \nGradle 8.12, only that exact version, had codepaths where the initialization of the underlying native integration library took a default path, relying on copying the binaries to the system temporary directory. Any execution of Gradle exposed this exploit. Users of Windows or modern versions of macOS are not vulnerable, nor are users of a Unix-like operating system with the \"sticky\" bit set or `noexec` on their system temporary directory vulnerable. This problem was fixed in Gradle 8.12.1. Gradle 8.13 release also upgrades to a version of the native library that no longer has that bug. Some workarounds are available. On Unix-like operating systems, ensure that the \"sticky\" bit is set. This only allows the original user (or root) to delete a file. Mounting `/tmp` as `noexec` will prevent Gradle 8.12 from starting. Those who are are unable to change the permissions of the system temporary directory can move the Java temporary directory by setting the System Property java.io.tmpdir. The new path needs to limit permissions to the build user only. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T23:14:04.000000Z"}, {"uuid": "88194517-ce29-492a-b4ae-c75c8c961e99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27140", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5231", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27140\n\ud83d\udd25 CVSS Score: 10 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H)\n\ud83d\udd39 Description: WeGIA is a Web manager for charitable institutions. An OS Command Injection vulnerability was discovered in versions prior to 3.2.15 of the WeGIA application, `importar_dump.php` endpoint. This vulnerability could allow an attacker to execute arbitrary code remotely. The command is basically a command to move a temporary file, so a webshell upload is also possible. Version 3.2.15 contains a patch for the issue.\n\ud83d\udccf Published: 2025-02-24T21:21:24.013Z\n\ud83d\udccf Modified: 2025-02-24T21:21:24.013Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-xw6w-x28r-2p5c\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/7d0df8c9a0b8b7d6862bbc23dc729d73e39672a1", "creation_timestamp": "2025-02-24T22:22:23.000000Z"}, {"uuid": "2ba116d9-e7d8-4b2e-b099-5adb3913866e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27140", "type": "seen", "source": "https://t.me/cvedetector/18833", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27140 - WeGIA OS Command Injection\", \n  \"Content\": \"CVE ID : CVE-2025-27140 \nPublished : Feb. 24, 2025, 10:15 p.m. | 54\u00a0minutes ago \nDescription : WeGIA is a Web manager for charitable institutions. An OS Command Injection vulnerability was discovered in versions prior to 3.2.15 of the WeGIA application, `importar_dump.php` endpoint. This vulnerability could allow an attacker to execute arbitrary code remotely. The command is basically a command to move a temporary file, so a webshell upload is also possible. Version 3.2.15 contains a patch for the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T00:39:07.000000Z"}, {"uuid": "beb832b1-c673-4aa0-8ae5-02ff162b2a55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27141", "type": "seen", "source": "https://t.me/cvedetector/18832", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27141 - Metabase Enterprise Edition Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27141 \nPublished : Feb. 24, 2025, 10:15 p.m. | 54\u00a0minutes ago \nDescription : Metabase Enterprise Edition is the enterprise version of Metabase business intelligence and data analytics software. Starting in version 1.47.0 and prior to versions 1.50.36, 1.51.14, 1.52.11, and 1.53.2 of Metabase Enterprise Edition, users with impersonation permissions may be able to see results of cached questions, even if their permissions don\u2019t allow them to see the data. If some user runs a question which gets cached, and then an impersonated user runs that question, then the impersonated user sees the same results as the previous user. These cached results may include data the impersonated user should not have access to. This vulnerability only impacts the Enterprise Edition of Metabase and not the Open Source Edition. Versions 1.53.2, 1.52.11, 1.51.14, and 1.50.36 contains a patch. Versions on the 1.49.X, 1.48.X, and 1.47.X branches are vulnerable but do not have a patch available, so users should upgrade to a major version with an available fix. Disabling question caching is a workaround for this issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T00:39:07.000000Z"}, {"uuid": "1b930817-d7f6-4a1f-9d9c-71d8acd5c9a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27146", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5373", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27146\n\ud83d\udd25 CVSS Score: 2.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. The vulnerability has been patched in matrix-appservice-irc version 3.0.4.\n\ud83d\udccf Published: 2025-02-25T20:04:40.400Z\n\ud83d\udccf Modified: 2025-02-25T20:04:40.400Z\n\ud83d\udd17 References:\n1. https://github.com/matrix-org/matrix-appservice-irc/security/advisories/GHSA-5mvm-89c9-9gm5\n2. https://github.com/matrix-org/matrix-appservice-irc/commit/74f02c8e11f16ed1b355700092c1aa9c036a11bd", "creation_timestamp": "2025-02-25T20:22:59.000000Z"}, {"uuid": "1da003bb-c763-4fee-a253-eb72dde9a2cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27145", "type": "seen", "source": "https://t.me/cvedetector/18848", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27145 - \"copyparty DOM-Based Cross-Site Scripting Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-27145 \nPublished : Feb. 25, 2025, 2:15 a.m. | 1\u00a0hour, 2\u00a0minutes ago \nDescription : copyparty, a portable file server, has a DOM-based cross-site scripting vulnerability in versions prior to 1.16.15. The vulnerability is considered low-risk. By handing someone a maliciously-named file, and then tricking them into dragging the file into copyparty's Web-UI, an attacker could execute arbitrary javascript with the same privileges as that user. For example, this could give unintended read-access to files owned by that user. The bug is triggered by the drag-drop action itself; it is not necessary to actually initiate the upload. The file must be empty (zero bytes). Note that, as a general-purpose webserver, it is intentionally possible to upload HTML-files with arbitrary javascript in `\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T04:49:57.000000Z"}, {"uuid": "a1d7f2b7-bca4-4d58-96a3-ba879b50f2b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27143", "type": "seen", "source": "https://t.me/cvedetector/18841", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27143 - Better Auth Open Redirect Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27143 \nPublished : Feb. 24, 2025, 11:15 p.m. | 1\u00a0hour, 54\u00a0minutes ago \nDescription : Better Auth is an authentication and authorization library for TypeScript. Prior to version 1.1.21, the application is vulnerable to an open redirect due to improper validation of the callbackURL parameter in the email verification endpoint and any other endpoint that accepts callback url. While the server blocks fully qualified URLs, it incorrectly allows scheme-less URLs. This results in the browser interpreting the URL as a fully qualified URL, leading to unintended redirection. An attacker can exploit this flaw by crafting a malicious verification link and tricking users into clicking it. Upon successful email verification, the user will be automatically redirected to the attacker's website, which can be used for phishing, malware distribution, or stealing sensitive authentication tokens. This CVE is a bypass of the fix for GHSA-8jhw-6pjj-8723/CVE-2024-56734. Version 1.1.21 contains an updated patch. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T02:19:27.000000Z"}, {"uuid": "a7c3f3ef-41d6-4fe2-ba52-23109bb076e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27141", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5230", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27141\n\ud83d\udd25 CVSS Score: 4.8 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N)\n\ud83d\udd39 Description: Metabase Enterprise Edition is the enterprise version of Metabase business intelligence and data analytics software. Starting in version 1.47.0 and prior to versions 1.50.36, 1.51.14, 1.52.11, and 1.53.2 of Metabase Enterprise Edition, users with impersonation permissions may be able to see results of cached questions, even if their permissions don\u2019t allow them to see the data. If some user runs a question which gets cached, and then an impersonated user runs that question, then the impersonated user sees the same results as the previous user. These cached results may include data the impersonated user should not have access to. This vulnerability only impacts the Enterprise Edition of Metabase and not the Open Source Edition. Versions 1.53.2, 1.52.11, 1.51.14, and 1.50.36 contains a patch. Versions on the 1.49.X, 1.48.X, and 1.47.X branches are vulnerable but do not have a patch available, so users should upgrade to a major version with an available fix. Disabling question caching is a workaround for this issue.\n\ud83d\udccf Published: 2025-02-24T22:05:14.188Z\n\ud83d\udccf Modified: 2025-02-24T22:05:14.188Z\n\ud83d\udd17 References:\n1. https://github.com/metabase/metabase/security/advisories/GHSA-6cc4-h534-xh5p\n2. https://www.metabase.com/docs/latest/configuring-metabase/caching\n3. https://www.metabase.com/docs/latest/permissions/impersonation", "creation_timestamp": "2025-02-24T22:22:23.000000Z"}, {"uuid": "c1559f5d-2f76-4325-80d3-d82a62faeff8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27142", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5375", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27142\n\ud83d\udd25 CVSS Score: 6.3 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: LocalSend is a free, open-source app that allows users to securely share files and messages with nearby devices over their local network without needing an internet connection. Prior to version 1.17.0, due to the missing sanitization of the path in the `POST /api/localsend/v2/prepare-upload` and the `POST /api/localsend/v2/upload` endpoint, a malicious file transfer request can write files to the arbitrary location on the system, resulting in the remote command execution. A malicious file transfer request sent by nearby devices can write files into an arbitrary directory. This usually allows command execution via the startup folder on Windows or Bash-related files on Linux. If the user enables the `Quick Save` feature, it will silently write files without explicit user interaction. Version 1.17.0 fixes this issue.\n\ud83d\udccf Published: 2025-02-25T20:03:23.204Z\n\ud83d\udccf Modified: 2025-02-25T20:03:23.204Z\n\ud83d\udd17 References:\n1. https://github.com/localsend/localsend/security/advisories/GHSA-f7jp-p6j4-3522\n2. https://github.com/localsend/localsend/commit/e8635204ec782ded45bc7d698deb60f3c4105687", "creation_timestamp": "2025-02-25T20:23:04.000000Z"}, {"uuid": "455d1090-6816-4825-8aae-d3b5844e9570", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27147", "type": "seen", "source": "https://t.me/cvedetector/21106", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27147 - GLPI Inventory Plugin Unauthenticated Remote Code Execution\", \n  \"Content\": \"CVE ID : CVE-2025-27147 \nPublished : March 25, 2025, 3:15 p.m. | 46\u00a0minutes ago \nDescription : The GLPI Inventory Plugin handles various types of tasks for GLPI agents, including network discovery and inventory (SNMP), software deployment, VMWare ESX host remote inventory, and data collection (files, Windows registry, WMI). Versions prior to 1.5.0 have an improper access control vulnerability. Version 1.5.0 fixes the vulnerability. \nSeverity: 8.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-25T17:49:14.000000Z"}, {"uuid": "bcb6b76c-76db-45f9-8d20-5b9bef5f52fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2714", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8564", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2714\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /extensions/realestate/index.php/agents/agent-register/addagent. The manipulation of the argument plan_id leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-03-24T22:00:07.642Z\n\ud83d\udccf Modified: 2025-03-24T22:00:07.642Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.300734\n2. https://vuldb.com/?ctiid.300734\n3. https://vuldb.com/?submit.517638", "creation_timestamp": "2025-03-24T22:23:44.000000Z"}, {"uuid": "73c76e32-9f85-451f-b284-ff7a37bc3a4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27149", "type": "seen", "source": "https://t.me/cvedetector/21624", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27149 - Zulip Server Private Data Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-27149 \nPublished : March 31, 2025, 4:15 p.m. | 48\u00a0minutes ago \nDescription : Zulip server provides an open-source team chat that helps teams stay productive and focused. Prior to 10.0, the data export to organization administrators feature in Zulip leaks private data. The collection of user-agent types identifying specific integrations or HTTP libraries (E.g., ZulipGitlabWebhook, okhttp, or PycURL) that have been used to access any organization on the server was incorrectly included in all three export types, regardless of if they were used to access the exported organization or not. The \"public data\" and \"with consent\" exports metadata including the titles of some topics in private channels which the administrator otherwise did not have access to, and none of the users consented to exporting and metadata for which users were in a group DM together. This vulnerability is fixed in 10.0. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-31T19:12:33.000000Z"}, {"uuid": "33415f64-2afc-4704-a222-ff649613613d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27149", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9757", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27149\n\ud83d\udd25 CVSS Score: 4.6 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Zulip server provides an open-source team chat that helps teams stay productive and focused. Prior to 10.0, the data export to organization administrators feature in Zulip leaks private data. The collection of user-agent types identifying specific integrations or HTTP libraries (E.g., ZulipGitlabWebhook, okhttp, or PycURL) that have been used to access any organization on the server was incorrectly included in all three export types, regardless of if they were used to access the exported organization or not. The \"public data\" and \"with consent\" exports metadata including the titles of some topics in private channels which the administrator otherwise did not have access to, and none of the users consented to exporting and metadata for which users were in a group DM together. This vulnerability is fixed in 10.0.\n\ud83d\udccf Published: 2025-03-31T15:33:38.543Z\n\ud83d\udccf Modified: 2025-03-31T18:36:58.695Z\n\ud83d\udd17 References:\n1. https://github.com/zulip/zulip/security/advisories/GHSA-358p-x39m-99mm", "creation_timestamp": "2025-03-31T19:31:24.000000Z"}, {"uuid": "59569dd4-656f-40af-96f9-ed5f57d77b38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2714", "type": "seen", "source": "https://t.me/cvedetector/21002", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2714 - JoomlaUX JUX Real Estate Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-2714 \nPublished : March 24, 2025, 10:15 p.m. | 1\u00a0hour, 7\u00a0minutes ago \nDescription : A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /extensions/realestate/index.php/agents/agent-register/addagent. The manipulation of the argument plan_id leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-25T01:05:36.000000Z"}, {"uuid": "6d4f70a5-7b82-4d61-a21a-6580e8de7669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27147", "type": "seen", "source": "Telegram/UPegbdrUObQcnilNjDwpJsece7fi6CrosD2C8DpjNeOtPKM", "content": "", "creation_timestamp": "2025-03-25T16:30:59.000000Z"}, {"uuid": "67c2a833-1f72-4de1-80fc-ab0639c8a5f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-27145", "type": "published-proof-of-concept", "source": "https://github.com/9001/copyparty/security/advisories/GHSA-m2jw-cj8v-937r", "content": "", "creation_timestamp": "2025-02-25T01:31:40.000000Z"}]}