Overview CVE-2025-66432 is a medium-severity vulnerability affecting Oxide control plane versions 15 through 17 (prior to 17.1). This flaw allows API tokens to be renewed even after their designated expiration date. This can lead to unauthorized access and potential security breaches if exploited. Technical Details The vulnerability stems from a logic error within the token renewal process of the Oxide control plane. Specifically, the system fails to properly validate the expiration status of a token before allowing it to be renewed. This means that a token, which should no longer be valid, can be extended, effectively bypassing the intended expiration…
-
-
Overview CVE-2025-13782 describes a high-severity SQL injection vulnerability affecting WTCMS (version up to commit 01a5f68a3dfc2fdddb44eed967bb2d4f60487665). This vulnerability resides within the SlideController component, specifically in the delete function of the application/Admin/Controller/SlideController.class.php file. A malicious actor can exploit this flaw by manipulating the ids argument to execute arbitrary SQL queries, potentially compromising the entire database. Technical Details The vulnerability stems from insufficient sanitization of the ids parameter passed to the delete function in the SlideController. This lack of input validation allows an attacker to inject malicious SQL code into the query, leading to unauthorized data access, modification, or deletion. The attack can…
-
Overview CVE-2025-66424 is a medium severity vulnerability affecting Tryton, an open-source business management system. Specifically, versions 6.0 before 7.6.11 are susceptible to a flaw where access rights are not properly enforced during data export operations. This could allow unauthorized users to export sensitive data they should not have access to. Patches are available in versions 7.6.11, 7.4.21, 7.0.40, and 6.0.70. Technical Details The vulnerability stems from insufficient access control checks within the data export functionality of Tryton. Without proper validation of user permissions before initiating an export, malicious or compromised accounts could potentially bypass intended restrictions and extract data from…
-
Overview CVE-2025-66423 is a high-severity access control vulnerability affecting Tryton, an open-source enterprise resource planning (ERP) system. Specifically, versions 6.0 before 7.6.11 do not properly enforce access rights for the HTML editor route. This flaw allows unauthorized users to potentially access or manipulate sensitive data within the Tryton system via the HTML editor, bypassing intended security measures. Patches are available in versions 7.6.11, 7.4.21, 7.0.40, and 6.0.70. Technical Details The vulnerability lies in the lack of proper access control checks on the route responsible for handling requests to the HTML editor functionality within Tryton. This means that an attacker, potentially…
-
Overview CVE-2025-66422 is a medium severity vulnerability affecting Tryton, an open-source ERP system. Specifically, versions of trytond before 7.6.11 are susceptible to information disclosure. Remote attackers can potentially obtain sensitive traceback information related to the server setup, which could aid in further malicious activities. This post provides a detailed analysis of the vulnerability, its impact, and the necessary steps to mitigate the risk. Technical Details The vulnerability stems from insufficient error handling or access controls within the trytond component. Under certain circumstances, an attacker can trigger an error that exposes detailed traceback information. This traceback can include configuration settings, file…
-
Overview A medium-severity Cross-Site Scripting (XSS) vulnerability, identified as CVE-2025-66421, has been discovered in Tryton SAO (aka tryton-sao) versions before 7.6.11. This flaw allows attackers to inject arbitrary web scripts or HTML into the user’s browser due to insufficient escaping of completion values. Users are strongly advised to upgrade to the patched versions as soon as possible. Technical Details The vulnerability stems from the lack of proper sanitization of completion values within Tryton SAO. When a user interacts with features that utilize completion (e.g., auto-complete in forms), the system doesn’t adequately escape the provided values before rendering them in the…
-
Overview CVE-2025-66420 describes a medium severity Cross-Site Scripting (XSS) vulnerability affecting Tryton SAO (aka tryton-sao) versions prior to 7.6.9. This vulnerability allows attackers to inject malicious scripts into the context of a user’s browser by exploiting the handling of HTML attachments. Successfully exploiting this vulnerability could lead to session hijacking, sensitive data theft, or defacement of the application interface. Technical Details The vulnerability stems from insufficient sanitization of HTML content within attachments processed by Tryton SAO. An attacker can craft a malicious HTML attachment containing JavaScript code. When a user opens or previews this attachment within the Tryton SAO application,…
-
Overview A critical security vulnerability, identified as CVE-2025-13615, has been discovered in the StreamTube Core plugin for WordPress. This flaw allows unauthenticated attackers to change user passwords, potentially leading to complete takeover of administrator accounts. This vulnerability affects versions up to and including 4.78 of the StreamTube Core plugin. This vulnerability stems from inadequate authorization checks when handling user-controlled access to objects, allowing bypasses that grant access to system resources which should be protected. Important Note: This vulnerability is only exploitable if the ‘registration password fields’ are enabled in the theme options of the StreamTube plugin. Technical Details The StreamTube…
-
Overview CVE-2025-6666 is a low-severity vulnerability affecting motogadget mo.lock Ignition Lock up to version 20251125. The vulnerability resides in the NFC handler component and can be exploited through manipulation to potentially utilize a hard-coded cryptographic key. This could allow an attacker with physical access to the device to bypass security measures. Technical Details The vulnerability lies within the NFC handler functionality of the motogadget mo.lock. An attacker with physical proximity to the device could potentially manipulate NFC communication to trigger the use of a hard-coded cryptographic key. The exact mechanism for exploiting this vulnerability is not publicly detailed, but it…
-
Overview A significant security vulnerability, identified as CVE-2025-66291, has been discovered in OrangeHRM, a widely used human resource management system. This flaw allows unauthorized users to access sensitive interview attachments within the Recruitment module. Specifically, users with Employee Self-Service (ESS) level access, who should not have access to recruitment workflows, can potentially retrieve confidential interview documents, including candidate CVs, evaluations, and supporting files. This exposure stems from inadequate authorization checks during the retrieval of interview attachments. Technical Details The vulnerability exists in OrangeHRM versions 5.0 through 5.7. The issue arises because the interview attachment retrieval endpoint relies solely on an…