Publish Advisories

GHSA-pffp-qx9q-h7v4
GHSA-4jf5-rmwc-7vww
GHSA-6vj3-p34w-xxjp
GHSA-8cpr-48rw-5rrc
GHSA-8mv8-wmgc-7crw
GHSA-8qx7-g43x-4mhm
GHSA-98p6-cqhp-8c8x
GHSA-chq3-v87j-fwq5
GHSA-fmqj-pm68-cqq4
GHSA-g5p6-3j82-xfm4
GHSA-h78q-4j5r-86xx
GHSA-jv72-59wq-8rxm
GHSA-qxv4-g9hq-r87f
GHSA-v82x-ghcg-c238
GHSA-x2hf-qg23-rjpx
GHSA-xq7p-3jhh-cr76

Author: advisory-database[bot]

advisories/unreviewed/2025/11/GHSA-pffp-qx9q-h7v4/GHSA-pffp-qx9q-h7v4.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-pffp-qx9q-h7v4",
-  "modified": "2025-11-15T00:30:26Z",
+  "modified": "2025-12-26T18:30:24Z",
   "published": "2025-11-15T00:30:26Z",
   "aliases": [
     "CVE-2023-7328"
   ],
   "details": "Screen SFT DAB 600/C firmware versions up to and including 1.9.3 contain an improper access control on the user management API allows unauthenticated requests to retrieve structured user data, including account names and connection metadata such as client IP and timeout values.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/12/GHSA-4jf5-rmwc-7vww/GHSA-4jf5-rmwc-7vww.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-4jf5-rmwc-7vww",
+  "modified": "2025-12-26T18:30:27Z",
+  "published": "2025-12-26T18:30:26Z",
+  "aliases": [
+    "CVE-2025-67013"
+  ],
+  "details": "The web management interface in ETL Systems Ltd DEXTRA Series ' Digital L-Band Distribution System v1.8 does not implement Cross-Site Request Forgery (CSRF) protection mechanisms (no tokens, no Origin/Referer validation) on critical configuration endpoints.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-67013"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-67013%20_%20ETL%20Systems%20Ltd%20DEXTRA%20Series%20_%20CSRF"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.etlsystems.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-352"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T16:15:44Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-6vj3-p34w-xxjp/GHSA-6vj3-p34w-xxjp.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-6vj3-p34w-xxjp",
+  "modified": "2025-12-26T18:30:26Z",
+  "published": "2025-12-26T18:30:26Z",
+  "aliases": [
+    "CVE-2025-13158"
+  ],
+  "details": "Prototype pollution vulnerability in apidoc-core versions 0.2.0 and all subsequent versions allows remote attackers to modify JavaScript object prototypes via malformed data structures, including the “define” property processed by the application, potentially leading to denial of service or unintended behavior in applications relying on the integrity of prototype chains. This affects the preProcess() function in api_group.js, api_param_title.js, api_use.js, and api_permission.js worker modules.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13158"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.sonatype.com/security-advisories/cve-2025-13158"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-1321"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T16:15:43Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-8cpr-48rw-5rrc/GHSA-8cpr-48rw-5rrc.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-8cpr-48rw-5rrc",
+  "modified": "2025-12-26T18:30:27Z",
+  "published": "2025-12-26T18:30:27Z",
+  "aliases": [
+    "CVE-2025-66737"
+  ],
+  "details": "Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66737"
+    },
+    {
+      "type": "WEB",
+      "url": "https://drive.google.com/file/d/1MpxnCL4koKupqWWDmY3ljlybjIPD8ieD/view?usp=sharing"
+    },
+    {
+      "type": "WEB",
+      "url": "http://yealink.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-23"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T17:15:44Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-8mv8-wmgc-7crw/GHSA-8mv8-wmgc-7crw.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-8mv8-wmgc-7crw",
+  "modified": "2025-12-26T18:30:27Z",
+  "published": "2025-12-26T18:30:27Z",
+  "aliases": [
+    "CVE-2025-67015"
+  ],
+  "details": "Incorrect access control in Comtech EF Data CDM-625 / CDM-625A Advanced Satellite Modem with firmware v2.5.1 allows attackers to change the Administrator password and escalate privileges via sending a crafted POST request to /Forms/admin_access_1.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-67015"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-67015%20_%20Comtech%20EF%20Data%20CDM-625%20_%20CDM-625A%20Advanced%20_%20Broken%20Access%20Control"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.comtechefdata.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-284"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T16:15:44Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-8qx7-g43x-4mhm/GHSA-8qx7-g43x-4mhm.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-8qx7-g43x-4mhm",
+  "modified": "2025-12-26T18:30:26Z",
+  "published": "2025-12-26T18:30:26Z",
+  "aliases": [
+    "CVE-2024-29720"
+  ],
+  "details": "An issue in Terra Informatica Software, Inc Sciter v.4.4.7.0 allows a local attacker to obtain sensitive information via the adopt component of the Sciter video rendering function.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29720"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/sciter-sdk/rust-sciter/issues/143"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-200"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T16:15:42Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-98p6-cqhp-8c8x/GHSA-98p6-cqhp-8c8x.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-98p6-cqhp-8c8x",
+  "modified": "2025-12-26T18:30:27Z",
+  "published": "2025-12-26T18:30:26Z",
+  "aliases": [
+    "CVE-2025-57403"
+  ],
+  "details": "Cola Dnslog v1.3.2 is vulnerable to Directory Traversal. When a DNS query for a TXT record is processed, the application concatenates the requested URL (or a portion of it) directly with a base path using os.path.join. This bypass allows directory traversal or absolute path injection, leading to the potential exposure of sensitive information.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-57403"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/AbelChe/cola_dnslog/issues/29"
+    },
+    {
+      "type": "WEB",
+      "url": "https://gist.github.com/Captaince/99b728c792c72b2666c2400625702df0"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-23"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T16:15:43Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-chq3-v87j-fwq5/GHSA-chq3-v87j-fwq5.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-chq3-v87j-fwq5",
-  "modified": "2025-12-26T15:30:17Z",
+  "modified": "2025-12-26T18:30:26Z",
   "published": "2025-12-26T15:30:17Z",
   "aliases": [
     "CVE-2025-65885"
   ],
   "details": "An issue was discovered in the Delight Custom Firmware (CFW) for Nokia Symbian Belle devices on Nokia 808 (Delight v1.8), Nokia N8 (Delight v6.7), Nokia E7 (Delight v1.3), Nokia C7 (Delight v6.7), Nokia 700 (Delight v1.2), Nokia 701 (Delight v1.1), Nokia 603 (Delight v1.0), Nokia 500 (Delight v1.2), Nokia E6 (Delight v1.0), Nokia Oro (Delight v1.0), and Vertu Constellation T (Delight v1.0) allowing local attackers to inject startup scripts via crafted .txt files in the :\\Data directory.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-77"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-12-26T15:15:47Z"

advisories/unreviewed/2025/12/GHSA-fmqj-pm68-cqq4/GHSA-fmqj-pm68-cqq4.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-fmqj-pm68-cqq4",
-  "modified": "2025-12-26T15:30:17Z",
+  "modified": "2025-12-26T18:30:26Z",
   "published": "2025-12-26T15:30:17Z",
   "aliases": [
     "CVE-2025-66947"
   ],
   "details": "SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-detail.php via the editid GET parameter. An attacker can trigger controlled delays using SQL SLEEP() to infer database contents. Successful exploitation may lead to full database compromise, especially within an administrative module.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -20,8 +25,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-89"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-12-26T15:15:47Z"

advisories/unreviewed/2025/12/GHSA-g5p6-3j82-xfm4/GHSA-g5p6-3j82-xfm4.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-g5p6-3j82-xfm4",
+  "modified": "2025-12-26T18:30:27Z",
+  "published": "2025-12-26T18:30:27Z",
+  "aliases": [
+    "CVE-2024-42718"
+  ],
+  "details": "A path traversal vulnerability in Croogo CMS 4.0.7 allows remote attackers to read arbitrary files via a specially crafted path in the 'edit-file' parameter.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-42718"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/croogo/croogo"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/jacopo1223/jacopo.github/tree/main/CVE-2024-42718"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-22"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-26T17:15:42Z"
+  }
+}