Publish Advisories

GHSA-29wh-g4c8-c35q
GHSA-4v76-jcg6-9p6m
GHSA-6g4h-3cjf-h9q9
GHSA-7mhf-6fhv-c83c
GHSA-ff49-f5c2-ggcq
GHSA-jh7j-fmhv-cv25
GHSA-vxpf-6v9m-jq3x
GHSA-vxr5-9gfx-r9w6

Author: advisory-database[bot]

advisories/unreviewed/2025/12/GHSA-29wh-g4c8-c35q/GHSA-29wh-g4c8-c35q.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-29wh-g4c8-c35q",
+  "modified": "2025-12-26T00:30:12Z",
+  "published": "2025-12-26T00:30:12Z",
+  "aliases": [
+    "CVE-2025-15089"
+  ],
+  "details": "A vulnerability has been found in UTT 进取 512W up to 1.7.7-171114. This affects the function strcpy of the file /goform/APSecurity. The manipulation of the argument wepkey1 leads to buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15089"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/cymiao1978/cve/blob/main/new/14.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/cymiao1978/cve/blob/main/new/14.md#poc"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.338418"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.338418"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.708348"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-25T23:15:41Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-4v76-jcg6-9p6m/GHSA-4v76-jcg6-9p6m.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-4v76-jcg6-9p6m",
+  "modified": "2025-12-26T00:30:12Z",
+  "published": "2025-12-26T00:30:12Z",
+  "aliases": [
+    "CVE-2025-15090"
+  ],
+  "details": "A vulnerability was found in UTT 进取 512W up to 1.7.7-171114. This vulnerability affects the function strcpy of the file /goform/formConfigNoticeConfig. The manipulation of the argument timestart results in buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15090"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/cymiao1978/cve/blob/main/new/15.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/cymiao1978/cve/blob/main/new/15.md#poc"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.338419"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.338419"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.708349"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-25T23:15:41Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-6g4h-3cjf-h9q9/GHSA-6g4h-3cjf-h9q9.json

@@ -0,0 +1,44 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-6g4h-3cjf-h9q9",
+  "modified": "2025-12-26T00:30:12Z",
+  "published": "2025-12-26T00:30:12Z",
+  "aliases": [
+    "CVE-2025-14913"
+  ],
+  "details": "The Frontend Post Submission Manager Lite – Frontend Posting WordPress Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to an incorrect authorization check on the 'media_delete_action' function in all versions up to, and including, 1.2.6. This makes it possible for unauthenticated attackers to delete arbitrary attachments.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14913"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/frontend-post-submission-manager-lite/tags/1.2.6/includes/classes/class-fpsml-ajax.php#L91"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3427082/frontend-post-submission-manager-lite"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/19a6b19c-244d-4b30-8db2-b4d06a5f5509?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-862"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T00:16:00Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-7mhf-6fhv-c83c/GHSA-7mhf-6fhv-c83c.json

@@ -0,0 +1,47 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7mhf-6fhv-c83c",
+  "modified": "2025-12-26T00:30:12Z",
+  "published": "2025-12-26T00:30:12Z",
+  "aliases": [
+    "CVE-2025-68937"
+  ],
+  "details": "Forgejo before 13.0.2 allows attackers to write to unintended files, and possibly obtain server shell access, because of mishandling of out-of-repository symlink destinations for template repositories. This is also fixed for 11 LTS in 11.0.7 and later.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68937"
+    },
+    {
+      "type": "WEB",
+      "url": "https://codeberg.org/forgejo/forgejo/milestone/27340"
+    },
+    {
+      "type": "WEB",
+      "url": "https://codeberg.org/forgejo/forgejo/milestone/29156"
+    },
+    {
+      "type": "WEB",
+      "url": "https://codeberg.org/forgejo/forgejo/src/branch/forgejo/release-notes-published/11.0.7.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://codeberg.org/forgejo/forgejo/src/branch/forgejo/release-notes-published/13.0.2.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://codeberg.org/forgejo/security-announcements/issues/43"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-61"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T00:16:01Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-ff49-f5c2-ggcq/GHSA-ff49-f5c2-ggcq.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-ff49-f5c2-ggcq",
+  "modified": "2025-12-26T00:30:12Z",
+  "published": "2025-12-26T00:30:12Z",
+  "aliases": [
+    "CVE-2025-15091"
+  ],
+  "details": "A vulnerability was determined in UTT 进取 512W up to 1.7.7-171114. This issue affects the function strcpy of the file /goform/formPictureUrl. This manipulation of the argument importpictureurl causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15091"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/cymiao1978/cve/blob/main/new/16.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/cymiao1978/cve/blob/main/new/16.md#poc"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.338420"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.338420"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.708350"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T00:16:00Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-jh7j-fmhv-cv25/GHSA-jh7j-fmhv-cv25.json

@@ -0,0 +1,25 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-jh7j-fmhv-cv25",
+  "modified": "2025-12-26T00:30:12Z",
+  "published": "2025-12-26T00:30:12Z",
+  "aliases": [
+    "CVE-2025-14715"
+  ],
+  "details": "Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14715"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-25T23:15:40Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-vxpf-6v9m-jq3x/GHSA-vxpf-6v9m-jq3x.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-vxpf-6v9m-jq3x",
+  "modified": "2025-12-26T00:30:12Z",
+  "published": "2025-12-26T00:30:12Z",
+  "aliases": [
+    "CVE-2025-15088"
+  ],
+  "details": "A vulnerability was detected in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is the function postilService.loadPostils of the file /je/postil/postil/loadPostil. Performing manipulation of the argument keyWord results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15088"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/ha1yu-Yiqiyin/warehouse/blob/main/jepaas-v7.2.8-sqlinject1.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/ha1yu-Yiqiyin/warehouse/blob/main/jepaas-v7.2.8-sqlinject1.md#2%E5%A4%8D%E7%8E%B0replicate"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.338416"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.338416"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.708321"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-74"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-25T22:15:42Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-vxr5-9gfx-r9w6/GHSA-vxr5-9gfx-r9w6.json

@@ -0,0 +1,25 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-vxr5-9gfx-r9w6",
+  "modified": "2025-12-26T00:30:12Z",
+  "published": "2025-12-26T00:30:12Z",
+  "aliases": [
+    "CVE-2025-14820"
+  ],
+  "details": "Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14820"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-25T23:15:41Z"
+  }
+}