Publish Advisories

GHSA-448f-ppw8-j6q6
GHSA-68cj-mfm5-r6h3
GHSA-7q6v-6fw9-8mqv
GHSA-pr7v-r594-4j59
GHSA-vghg-7p7f-gg63
GHSA-xx56-4vc7-m4xq

Author: advisory-database[bot]

advisories/unreviewed/2025/12/GHSA-448f-ppw8-j6q6/GHSA-448f-ppw8-j6q6.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-448f-ppw8-j6q6",
+  "modified": "2025-12-06T12:31:17Z",
+  "published": "2025-12-06T12:31:17Z",
+  "aliases": [
+    "CVE-2025-13065"
+  ],
+  "details": "The Starter Templates plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 4.4.41. This is due to insufficient file type validation detecting WXR files, allowing double extension files to bypass sanitization while being accepted as a valid WXR file. This makes it possible for authenticated attackers, with author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13065"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3395498/astra-sites/tags/4.4.42/inc/lib/starter-templates-importer/importer/wxr-importer/st-wxr-importer.php"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/439e4c99-8f34-4e66-9d86-c0cbb8cf6da0?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-434"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-06T10:16:05Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-68cj-mfm5-r6h3/GHSA-68cj-mfm5-r6h3.json

@@ -0,0 +1,60 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-68cj-mfm5-r6h3",
+  "modified": "2025-12-06T12:31:17Z",
+  "published": "2025-12-06T12:31:17Z",
+  "aliases": [
+    "CVE-2025-14133"
+  ],
+  "details": "A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this vulnerability is the function AP_get_wireless_clientlist_setClientsName of the file mod_form.so. Performing manipulation of the argument clientsname_0 results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14133"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_62/62.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_62/62.md#poc"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.334522"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.334522"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.697980"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.linksys.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-06T11:15:46Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-7q6v-6fw9-8mqv/GHSA-7q6v-6fw9-8mqv.json

@@ -0,0 +1,52 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7q6v-6fw9-8mqv",
+  "modified": "2025-12-06T12:31:17Z",
+  "published": "2025-12-06T12:31:17Z",
+  "aliases": [
+    "CVE-2025-14126"
+  ],
+  "details": "A vulnerability has been found in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. Affected is an unknown function of the component Web Interface. Such manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14126"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.334521"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.334521"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.697498"
+    },
+    {
+      "type": "WEB",
+      "url": "https://youtu.be/o8rfjSlpRxY"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-259"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-06T10:16:05Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-pr7v-r594-4j59/GHSA-pr7v-r594-4j59.json

@@ -0,0 +1,60 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-pr7v-r594-4j59",
+  "modified": "2025-12-06T12:31:17Z",
+  "published": "2025-12-06T12:31:17Z",
+  "aliases": [
+    "CVE-2025-14134"
+  ],
+  "details": "A vulnerability was determined in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this issue is the function RE2000v2Repeater_get_wireless_clientlist_setClientsName of the file mod_form.so. Executing manipulation of the argument clientsname_0 can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14134"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_63/63.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_63/63.md#poc"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.334523"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.334523"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.697981"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.linksys.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-06T11:15:48Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-vghg-7p7f-gg63/GHSA-vghg-7p7f-gg63.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-vghg-7p7f-gg63",
+  "modified": "2025-12-06T12:31:17Z",
+  "published": "2025-12-06T12:31:17Z",
+  "aliases": [
+    "CVE-2025-12966"
+  ],
+  "details": "The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the resolve_import_directory() function in versions 4.5.4 to 4.5.7. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12966"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3405593/all-in-one-video-gallery/trunk/admin/import-export.php"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/0b03bca1-84e3-4220-b39b-69044c42e9f9?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-434"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-06T10:16:03Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-xx56-4vc7-m4xq/GHSA-xx56-4vc7-m4xq.json

@@ -0,0 +1,60 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-xx56-4vc7-m4xq",
+  "modified": "2025-12-06T12:31:17Z",
+  "published": "2025-12-06T12:31:17Z",
+  "aliases": [
+    "CVE-2025-14135"
+  ],
+  "details": "A vulnerability was identified in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function AP_get_wired_clientlist_setClientsName of the file mod_form.so. The manipulation of the argument clientsname_0 leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14135"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_64/64.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_64/64.md#poc"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.334524"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.334524"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.697982"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.linksys.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-06T12:15:46Z"
+  }
+}