Overview CVE-2025-13872 describes a Blind Server-Side Request Forgery (SSRF) vulnerability found in the survey-import feature of ObjectPlanet Opinio 7.26 rev12562. This vulnerability allows a remote attacker to force the Opinio server to make arbitrary HTTP GET requests to internal or external destinations by crafting malicious import requests. This can lead to sensitive information disclosure, internal network scanning, or even exploitation of other internal services. Technical Details The vulnerability resides within the survey import functionality of Opinio. By crafting a specially designed import request, an attacker can inject a URL that the Opinio server will then attempt to access via an…
-
-
Overview CVE-2025-13871 describes a Cross-Site Request Forgery (CSRF) vulnerability found in the resource-management feature of ObjectPlanet Opinio 7.26 rev12562. This vulnerability allows an attacker to trick a logged-in user into unintentionally uploading files on their behalf. Subsequently, the attacker can access these uploaded files without requiring authentication, potentially leading to sensitive data exposure or system compromise. Technical Details The vulnerability lies in the lack of proper CSRF protection within the file upload functionality of Opinio’s resource management feature. An attacker can craft a malicious HTML page containing a form that, when submitted by an authenticated Opinio user, triggers the file…
-
Overview CVE-2025-13870 describes a low-severity vulnerability affecting Mattermost Boards. Specifically, versions 10.11.x up to and including 10.11.4, and versions 10.5.x up to and including 10.5.12, are impacted. The vulnerability stems from a failure to properly validate user permissions when accessing files and subscribing to blocks within the Boards feature. This allows an authenticated user to potentially access board files belonging to other users and subscribe to blocks from boards to which they should not have access. Technical Details The root cause lies in insufficient authorization checks within the Boards functionality. When a user attempts to access a file or subscribe…
-
Overview A high-severity vulnerability, identified as CVE-2025-13724, has been discovered in the VikRentCar Car Rental Management System plugin for WordPress. This flaw allows authenticated attackers with Administrator-level access or higher to perform time-based blind SQL Injection. The vulnerability exists in all versions of the plugin up to and including 1.4.4. Exploitation of this vulnerability can lead to the extraction of sensitive information from the WordPress database. Technical Details The vulnerability stems from insufficient escaping of the user-supplied ‘month’ parameter and a lack of proper sanitization within the existing SQL query. Attackers can inject malicious SQL code into the query through…
-
Overview CVE-2025-13534 is a medium severity privilege escalation vulnerability found in the ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress. This vulnerability affects all versions up to and including 3.3.2. It allows authenticated attackers with Contributor-level access (or higher) to escalate their privileges to full helpdesk administrator capabilities, potentially leading to unauthorized access to sensitive customer data and the ability to modify critical plugin settings. Technical Details The vulnerability exists due to missing authorization checks on the eh_crm_edit_agent AJAX action. A user with Contributor or higher roles, who normally have limited “Reply Tickets” permissions within the helpdesk system,…
-
Overview A critical security vulnerability, identified as CVE-2025-13516, has been discovered in the SureMail – SMTP and Email Logs plugin for WordPress. This vulnerability allows unauthenticated attackers to achieve Remote Code Execution (RCE) on vulnerable systems. The flaw stems from unrestricted file uploads of dangerous file types within the plugin. Specifically, versions up to and including 1.9.0 are affected. It is highly recommended that all users of this plugin take immediate action to mitigate this risk. Technical Details The vulnerability resides in the save_file() function within the inc/emails/handler/uploads.php file of the SureMail plugin. This function duplicates all email attachments to…
-
Overview CVE-2025-10543 is a vulnerability found in the Eclipse Paho Go MQTT v3.1 library (paho.mqtt.golang), specifically affecting versions 1.5.0 and earlier. This flaw arises from improper handling of UTF-8 encoded strings exceeding 65535 bytes in length. When such large strings are passed into the library, they may be incorrectly encoded due to an integer overflow. This can lead to sensitive data leaking into unexpected parts of MQTT packets, potentially exposing information such as MQTT topics within the message body of a PUBLISH packet. Technical Details The root cause of CVE-2025-10543 lies in the way the Paho Go MQTT library handles…
-
Overview CVE-2025-13696 is a security vulnerability affecting the Zigaform plugin for WordPress. This vulnerability allows unauthenticated attackers to potentially access sensitive information submitted through forms created with the plugin. Specifically, the flaw stems from a lack of authorization checks on an AJAX endpoint, enabling attackers to retrieve form submission data by enumerating form IDs. Technical Details The vulnerability resides in how the Zigaform plugin handles requests to the rocket_front_payment_seesummary AJAX action. Versions up to and including 7.6.5 do not implement proper authentication or authorization checks before retrieving and displaying form submission data. An attacker can exploit this by sending requests…
-
Overview CVE-2025-11726 is a medium severity vulnerability affecting the Beaver Builder – WordPress Page Builder plugin for WordPress. Specifically, versions up to and including 2.9.4 are susceptible to Missing Authorization. This flaw allows authenticated attackers with contributor-level access or higher to modify or delete global color and background presets site-wide. These presets affect all content created with Beaver Builder, potentially leading to defacement or unwanted changes to the website’s appearance. Technical Details The vulnerability stems from insufficient capability checks within the ‘fl-controls/v1’ REST API endpoints. These endpoints control the global presets functionality within Beaver Builder. Authenticated users, even those with…
-
Overview CVE-2025-10971 details an Insecure Storage of Sensitive Information vulnerability found in the MeetMe application for both iOS and Android platforms. This flaw allows attackers to potentially retrieve embedded sensitive data. The vulnerability affects MeetMe versions up to and including v2.2.5. Technical Details The vulnerability stems from the insecure storage of sensitive information within the MeetMe application. The specifics of how this data is stored are not explicitly detailed in the initial CVE description, but the ability to retrieve it suggests inadequate encryption, insufficient data protection mechanisms, or default credentials being bundled with the application. Further investigation into the application’s…