Publish Advisories

GHSA-28vm-3vp8-h5jp
GHSA-2w93-qwpp-vgvj
GHSA-6qj9-2g9m-29x9
GHSA-jqfc-9q34-prhg
GHSA-p3p5-xrmv-4j6x
GHSA-xhgv-99mj-8m2x

Author: advisory-database[bot]

advisories/unreviewed/2025/11/GHSA-28vm-3vp8-h5jp/GHSA-28vm-3vp8-h5jp.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-28vm-3vp8-h5jp",
+  "modified": "2025-11-30T03:30:26Z",
+  "published": "2025-11-30T03:30:26Z",
+  "aliases": [
+    "CVE-2025-13615"
+  ],
+  "details": "The StreamTube Core plugin for WordPress is vulnerable to Arbitrary User Password Change in versions up to, and including, 4.78. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for unauthenticated attackers to change user passwords and potentially take over administrator accounts. Note: This can only be exploited if the 'registration password fields' enabled in theme options.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13615"
+    },
+    {
+      "type": "WEB",
+      "url": "https://themeforest.net/item/streamtube-responsive-video-wordpress-theme/33821786"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/b812a0d7-99a1-4f61-b78a-78cea6a2ada1?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-639"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-30T02:15:58Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-2w93-qwpp-vgvj/GHSA-2w93-qwpp-vgvj.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-2w93-qwpp-vgvj",
+  "modified": "2025-11-30T03:30:26Z",
+  "published": "2025-11-30T03:30:26Z",
+  "aliases": [
+    "CVE-2025-66424"
+  ],
+  "details": "Tryton trytond 6.0 before 7.6.11 does not enforce access rights for data export. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66424"
+    },
+    {
+      "type": "WEB",
+      "url": "https://discuss.tryton.org/t/security-release-for-issue-14366/8953"
+    },
+    {
+      "type": "WEB",
+      "url": "https://foss.heptapod.net/tryton/tryton/-/issues/14366"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-863"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-30T03:15:48Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-6qj9-2g9m-29x9/GHSA-6qj9-2g9m-29x9.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-6qj9-2g9m-29x9",
+  "modified": "2025-11-30T03:30:26Z",
+  "published": "2025-11-30T03:30:26Z",
+  "aliases": [
+    "CVE-2025-66421"
+  ],
+  "details": "Tryton sao (aka tryton-sao) before 7.6.11 allows XSS because it does not escape completion values. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.69.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66421"
+    },
+    {
+      "type": "WEB",
+      "url": "https://discuss.tryton.org/t/security-release-for-issue-14363/8951"
+    },
+    {
+      "type": "WEB",
+      "url": "https://foss.heptapod.net/tryton/tryton/-/issues/14363"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-30T03:15:47Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-jqfc-9q34-prhg/GHSA-jqfc-9q34-prhg.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-jqfc-9q34-prhg",
+  "modified": "2025-11-30T03:30:26Z",
+  "published": "2025-11-30T03:30:26Z",
+  "aliases": [
+    "CVE-2025-66422"
+  ],
+  "details": "Tryton trytond before 7.6.11 allows remote attackers to obtain sensitive trace-back (server setup) information. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66422"
+    },
+    {
+      "type": "WEB",
+      "url": "https://discuss.tryton.org/t/security-release-for-issue-14354/8950"
+    },
+    {
+      "type": "WEB",
+      "url": "https://foss.heptapod.net/tryton/tryton/-/issues/14354"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-402"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-30T03:15:47Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-p3p5-xrmv-4j6x/GHSA-p3p5-xrmv-4j6x.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-p3p5-xrmv-4j6x",
+  "modified": "2025-11-30T03:30:26Z",
+  "published": "2025-11-30T03:30:26Z",
+  "aliases": [
+    "CVE-2025-66423"
+  ],
+  "details": "Tryton trytond 6.0 before 7.6.11 does not enforce access rights for the route of the HTML editor. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66423"
+    },
+    {
+      "type": "WEB",
+      "url": "https://discuss.tryton.org/t/security-release-for-issue-14364/8952"
+    },
+    {
+      "type": "WEB",
+      "url": "https://foss.heptapod.net/tryton/tryton/-/issues/14364"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-863"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-30T03:15:48Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-xhgv-99mj-8m2x/GHSA-xhgv-99mj-8m2x.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-xhgv-99mj-8m2x",
+  "modified": "2025-11-30T03:30:26Z",
+  "published": "2025-11-30T03:30:26Z",
+  "aliases": [
+    "CVE-2025-66420"
+  ],
+  "details": "Tryton sao (aka tryton-sao) before 7.6.9 allows XSS via an HTML attachment. This is fixed in 7.6.9, 7.4.19, 7.0.38, and 6.0.67.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66420"
+    },
+    {
+      "type": "WEB",
+      "url": "https://discuss.tryton.org/t/security-release-for-issue-14290/8895"
+    },
+    {
+      "type": "WEB",
+      "url": "https://foss.heptapod.net/tryton/tryton/-/issues/14290"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-30T03:15:46Z"
+  }
+}