Overview A high-severity vulnerability, identified as CVE-2025-12529, has been discovered in the Cost Calculator Builder plugin for WordPress. This vulnerability allows unauthenticated attackers to delete arbitrary files on the server. Exploitation of this vulnerability can lead to remote code execution, potentially compromising the entire WordPress site. This issue affects all versions up to, and including, 3.6.3 of the plugin, but is only exploitable when the Pro version of the Cost Calculator Builder plugin is also installed along with the free version. Technical Details The vulnerability stems from insufficient file path validation within the deleteOrdersFiles() function of the Cost Calculator Builder…
-
-
Overview A critical vulnerability, identified as CVE-2024-45675, has been discovered in IBM Informix Dynamic Server 14.10. This vulnerability allows a local user on the system to log into the Informix server as an administrator without requiring a password. This poses a significant security risk, as it could allow unauthorized access to sensitive data and system resources. This security flaw was published on 2025-12-02 and is classified as HIGH severity. Technical Details The specific technical details of the vulnerability are not publicly disclosed in complete detail to prevent widespread exploitation before patching. However, it is understood that the flaw resides in…
-
Overview CVE-2025-58488 is a medium-severity vulnerability affecting SmartTouchCall versions prior to 1.0.1.1. This vulnerability stems from improper verification of the communication channel’s source, potentially allowing remote attackers to gain unauthorized access to sensitive information. Crucially, user interaction is required to trigger this vulnerability. Technical Details The vulnerability lies in the insufficient validation of the origin of incoming communication requests. An attacker could potentially craft malicious communication packets that, when processed by a vulnerable SmartTouchCall application instance (and after user interaction), could bypass security checks. This circumvention allows the attacker to access or manipulate data that should otherwise be protected. The…
-
Overview CVE-2025-58487 is a medium severity vulnerability affecting Samsung Account prior to version 15.5.01.1. This vulnerability stems from improper authorization, allowing a local attacker to potentially launch arbitrary activities with Samsung Account privileges. This means a malicious application or attacker with local access to a device could exploit this weakness to perform actions as the legitimate user. Technical Details The specific flaw lies in the way Samsung Account handles authorization checks when launching certain activities. Prior to version 15.5.01.1, these checks were insufficient, allowing a malicious application with the right intent and permissions to bypass the intended security measures. A…
-
Overview This article provides detailed information regarding CVE-2025-58486, a medium severity vulnerability identified in Samsung Account. This vulnerability allows a local attacker to execute arbitrary scripts due to improper input validation. This affects versions prior to 15.5.01.1. It’s crucial to understand the technical details, potential impact, and mitigation steps to protect your device and data. Technical Details CVE-2025-58486 stems from insufficient input sanitization within the Samsung Account application. Specifically, the application fails to adequately validate user-supplied input when handling certain functionalities, making it susceptible to script injection. A local attacker with sufficient privileges could exploit this flaw to inject and…
-
Overview CVE-2025-58485 is a medium severity vulnerability affecting Samsung Internet browser versions prior to 29.0.0.48. This vulnerability allows a local attacker to inject arbitrary scripts due to improper input validation. This can potentially lead to unauthorized actions performed within the context of the browser. Technical Details The root cause of CVE-2025-58485 lies in the insufficient validation of user-supplied input within Samsung Internet. Specifically, certain input fields or parameters processed by the browser lack adequate sanitization. This oversight enables an attacker, with local access to the device, to inject malicious scripts into the browser’s environment. These scripts could then be executed,…
-
Overview CVE-2025-58484 is a medium severity vulnerability affecting Samsung Cloud Assistant versions prior to 8.0.03.8. The vulnerability stems from incorrect default permissions, which can allow a local attacker to gain access to partial data stored within the application’s sandbox environment. This can potentially lead to unauthorized access to sensitive information managed by the Cloud Assistant. Technical Details The vulnerability lies in the insufficient access controls applied to the sandbox directory and its contents by Samsung Cloud Assistant. Due to the overly permissive default permissions, another application running locally on the same device, with appropriate permissions (e.g., file system access), can…
-
Overview CVE-2025-58483 is a medium severity vulnerability affecting the Galaxy Store application for Galaxy Watch. Specifically, an improper export of Android application components within the Galaxy Store allows a local attacker to potentially install arbitrary applications on the device. This vulnerability exists in versions prior to 1.0.06.29. Technical Details The root cause of this vulnerability lies in the insufficient access control of exported components within the Galaxy Store application. Android applications can expose certain components (e.g., Activities, Services, Broadcast Receivers, Content Providers) for use by other applications. If these components are improperly exported without adequate permission checks, a malicious local…
-
Overview CVE-2025-58482 is a high-severity vulnerability affecting the MPLocalService component of Samsung MotionPhoto applications prior to version 4.1.51. This vulnerability allows a local attacker to bypass access controls and start a privileged service, potentially leading to unauthorized actions and system compromise. Technical Details The vulnerability stems from improper access control mechanisms within the MPLocalService. Specifically, a local attacker can exploit this flaw to initiate the privileged service without proper authorization. This is achieved through [Details of attack, ideally filled in with more information if available from reports]. Successfully exploiting this vulnerability allows the attacker to execute commands with elevated privileges,…
-
Overview A critical security vulnerability, identified as CVE-2025-58481, has been discovered in the MotionPhoto application, specifically affecting the MPRemoteService component. This improper access control flaw allows a local attacker to initiate a privileged service, potentially leading to unauthorized actions and system compromise. The vulnerability affects MotionPhoto versions prior to 4.1.51. Technical Details The vulnerability stems from a lack of proper access control mechanisms within the MPRemoteService. An attacker with local access can exploit this flaw to start the service without proper authorization. This allows the attacker to potentially execute privileged operations normally reserved for the MotionPhoto application. The precise methods…