Publish Advisories

GHSA-5p3h-545h-3hhq
GHSA-5vpg-xw87-4738
GHSA-7hhv-h469-wc4q
GHSA-9mv9-gw4x-7xw4
GHSA-cf8f-2f35-r5wx
GHSA-f4hm-5v9c-8vx2
GHSA-fj3w-7rxg-jxhm
GHSA-fppm-ghp9-2597
GHSA-gc9m-cqr9-5r48
GHSA-h7gg-9jgm-wfcf
GHSA-jfj9-v399-rhh9
GHSA-mfcp-rjv7-385m
GHSA-pv96-f897-xcch
GHSA-r22j-98fp-4fw9
GHSA-rm4r-vwvw-vj67
GHSA-x9r6-jv66-hp3g

Author: advisory-database[bot]

advisories/unreviewed/2025/11/GHSA-5p3h-545h-3hhq/GHSA-5p3h-545h-3hhq.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-5p3h-545h-3hhq",
-  "modified": "2025-11-13T15:30:31Z",
+  "modified": "2025-11-15T09:30:25Z",
   "published": "2025-11-13T15:30:31Z",
   "aliases": [
     "CVE-2025-13115"
@@ -23,6 +23,10 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13115"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/Hwwg/cve/issues/11"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/Hwwg/cve/issues/6"
@@ -38,6 +42,10 @@
     {
       "type": "WEB",
       "url": "https://vuldb.com/?submit.683222"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.686528"
     }
   ],
   "database_specific": {

advisories/unreviewed/2025/11/GHSA-5vpg-xw87-4738/GHSA-5vpg-xw87-4738.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-5vpg-xw87-4738",
+  "modified": "2025-11-15T09:30:25Z",
+  "published": "2025-11-15T09:30:25Z",
+  "aliases": [
+    "CVE-2025-11865"
+  ],
+  "details": "An issue has been discovered in GitLab EE affecting all versions from 18.1 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5.2 that, under certain circumstances, could have allowed an attacker to remove Duo flows of another user.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-11865"
+    },
+    {
+      "type": "WEB",
+      "url": "https://about.gitlab.com/releases/2025/11/12/patch-release-gitlab-18-5-2-released"
+    },
+    {
+      "type": "WEB",
+      "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/561399"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-863"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-15T08:15:43Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-7hhv-h469-wc4q/GHSA-7hhv-h469-wc4q.json

@@ -0,0 +1,44 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7hhv-h469-wc4q",
+  "modified": "2025-11-15T09:30:25Z",
+  "published": "2025-11-15T09:30:25Z",
+  "aliases": [
+    "CVE-2025-7736"
+  ],
+  "details": "GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.9 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5.2 that could have allowed an authenticated attacker to bypass access control restrictions and view GitLab Pages content intended only for project members by authenticating through OAuth providers.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7736"
+    },
+    {
+      "type": "WEB",
+      "url": "https://hackerone.com/reports/3250156"
+    },
+    {
+      "type": "WEB",
+      "url": "https://about.gitlab.com/releases/2025/11/12/patch-release-gitlab-18-5-2-released"
+    },
+    {
+      "type": "WEB",
+      "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/556098"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-863"
+    ],
+    "severity": "LOW",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-15T08:15:48Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-9mv9-gw4x-7xw4/GHSA-9mv9-gw4x-7xw4.json

@@ -0,0 +1,44 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-9mv9-gw4x-7xw4",
+  "modified": "2025-11-15T09:30:25Z",
+  "published": "2025-11-15T09:30:25Z",
+  "aliases": [
+    "CVE-2025-12983"
+  ],
+  "details": "GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.9 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5.2 that could have allowed an authenticated attacker to cause a denial of service condition by submitting specially crafted markdown content with nested formatting patterns.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12983"
+    },
+    {
+      "type": "WEB",
+      "url": "https://hackerone.com/reports/3419588"
+    },
+    {
+      "type": "WEB",
+      "url": "https://about.gitlab.com/releases/2025/11/12/patch-release-gitlab-18-5-2-released"
+    },
+    {
+      "type": "WEB",
+      "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/296257"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-789"
+    ],
+    "severity": "LOW",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-15T09:15:41Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-cf8f-2f35-r5wx/GHSA-cf8f-2f35-r5wx.json

@@ -0,0 +1,44 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-cf8f-2f35-r5wx",
+  "modified": "2025-11-15T09:30:25Z",
+  "published": "2025-11-15T09:30:25Z",
+  "aliases": [
+    "CVE-2025-11990"
+  ],
+  "details": "GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.4.4, and 18.5 before 18.5.2 that could have allowed an authenticated user to gain CSRF tokens by exploiting improper input validation in repository references combined with redirect handling weaknesses.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-11990"
+    },
+    {
+      "type": "WEB",
+      "url": "https://hackerone.com/reports/3257843"
+    },
+    {
+      "type": "WEB",
+      "url": "https://about.gitlab.com/releases/2025/11/12/patch-release-gitlab-18-5-2-released"
+    },
+    {
+      "type": "WEB",
+      "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/577850"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-177"
+    ],
+    "severity": "LOW",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-15T08:15:45Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-f4hm-5v9c-8vx2/GHSA-f4hm-5v9c-8vx2.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-f4hm-5v9c-8vx2",
+  "modified": "2025-11-15T09:30:25Z",
+  "published": "2025-11-15T09:30:25Z",
+  "aliases": [
+    "CVE-2025-13190"
+  ],
+  "details": "A vulnerability was found in D-Link DIR-816L 2_06_b09_beta. This vulnerability affects the function scandir_main of the file /portal/__ajax_exporer.sgi. The manipulation of the argument en results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13190"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/scanleale/IOT_sec/blob/main/DIR-816L%20stack%20overflow(scandir.sgi).pdf"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.332479"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.332479"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.685541"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.dlink.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-15T07:15:46Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-fj3w-7rxg-jxhm/GHSA-fj3w-7rxg-jxhm.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-fj3w-7rxg-jxhm",
+  "modified": "2025-11-15T09:30:25Z",
+  "published": "2025-11-15T09:30:25Z",
+  "aliases": [
+    "CVE-2025-13191"
+  ],
+  "details": "A vulnerability was determined in D-Link DIR-816L 2_06_b09_beta. This issue affects the function soapcgi_main of the file /soap.cgi. This manipulation causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. This vulnerability only affects products that are no longer supported by the maintainer.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13191"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/scanleale/IOT_sec/blob/main/DIR-816L%20stack%20overflow(soap.cgi).pdf"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.332480"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.332480"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.685543"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.dlink.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-15T07:15:46Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-fppm-ghp9-2597/GHSA-fppm-ghp9-2597.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-fppm-ghp9-2597",
-  "modified": "2025-11-13T15:30:31Z",
+  "modified": "2025-11-15T09:30:25Z",
   "published": "2025-11-13T15:30:30Z",
   "aliases": [
     "CVE-2025-13117"
@@ -23,6 +23,10 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13117"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/Hwwg/cve/issues/12"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/Hwwg/cve/issues/7"
@@ -38,6 +42,10 @@
     {
       "type": "WEB",
       "url": "https://vuldb.com/?submit.683340"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.686529"
     }
   ],
   "database_specific": {

advisories/unreviewed/2025/11/GHSA-gc9m-cqr9-5r48/GHSA-gc9m-cqr9-5r48.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-gc9m-cqr9-5r48",
-  "modified": "2025-11-13T15:30:31Z",
+  "modified": "2025-11-15T09:30:25Z",
   "published": "2025-11-13T15:30:30Z",
   "aliases": [
     "CVE-2025-13116"
@@ -23,6 +23,10 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13116"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/Hwwg/cve/issues/13"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/Hwwg/cve/issues/8"
@@ -38,6 +42,10 @@
     {
       "type": "WEB",
       "url": "https://vuldb.com/?submit.683339"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.686530"
     }
   ],
   "database_specific": {