Overview CVE-2025-14008 details a Server-Side Request Forgery (SSRF) vulnerability found in dayrui XunRuiCMS up to version 4.7.1. This flaw allows a remote attacker to force the server to make HTTP requests to arbitrary destinations, potentially exposing sensitive internal resources or interacting with external services on behalf of the server. The vendor was notified about this vulnerability but did not respond. Technical Details The vulnerability resides in the admin79f2ec220c7e.php?c=api&m=test_site_domain file, specifically within the “Project Domain Change Test” component. By manipulating the v argument, an attacker can inject a malicious URL, causing the server to initiate a request to that URL. This…

Overview CVE-2025-14007 describes a Cross-Site Scripting (XSS) vulnerability found in dayrui XunRuiCMS up to version 4.7.1. The vulnerability resides within the “Domain Name Binding Page” component, specifically in the /admin79f2ec220c7e.php?c=api&m=demo&name=mobile file. An attacker can exploit this vulnerability to inject malicious scripts that are executed in the context of other users’ browsers. While the vulnerability is considered to have a low severity, its public exploit availability warrants attention. Technical Details The vulnerability stems from insufficient input validation and output encoding in the /admin79f2ec220c7e.php?c=api&m=demo&name=mobile file, part of the Domain Name Binding Page functionality. An attacker can manipulate parameters in the URL to…

Overview A cross-site scripting (XSS) vulnerability, identified as CVE-2025-14006, has been discovered in dayrui XunRuiCMS up to version 4.7.1. This vulnerability resides within the “Add Data Validation Page” component, specifically affecting the /admind45f74adbd95.php?c=field&m=add&rname=site&rid=1&page=1 file. By manipulating the data[name] argument, a remote attacker can inject malicious scripts that execute in the context of other users’ browsers. The vendor has been notified but has not provided a response. Technical Details The vulnerability stems from insufficient input validation of the data[name] parameter in the “Add Data Validation Page” functionality. An attacker can inject arbitrary JavaScript code within this parameter. When a user views…

Overview CVE-2024-5401 is a medium severity vulnerability affecting Synology DiskStation Manager (DSM) and Synology Unified Controller (DSMUC). Specifically, it resides within the WebAPI component and allows remote authenticated users to potentially obtain elevated privileges without proper authorization. This vulnerability stems from improper control of dynamically-managed code resources. The affected versions of Synology products include: Synology DiskStation Manager (DSM) before 7.1.1-42962-8 Synology DiskStation Manager (DSM) before 7.2.1-69057-2 Synology DiskStation Manager (DSM) before 7.2.2-72806 Synology Unified Controller (DSMUC) before 3.1.4-23079 Technical Details The vulnerability arises due to the inadequate management of dynamically-managed code resources within the WebAPI component. While the exact attack…

Overview CVE-2024-45539 is a high-severity vulnerability affecting Synology DiskStation Manager (DSM) and Synology Unified Controller (DSMUC). This out-of-bounds write flaw in the CGI components allows remote attackers to potentially trigger a denial-of-service (DoS) condition. It’s crucial for Synology NAS users to update their systems immediately to mitigate this risk. Technical Details The vulnerability, identified as CVE-2024-45539, is an out-of-bounds write issue within the CGI components of Synology DSM and DSMUC. An attacker can exploit this flaw by sending crafted requests to the affected systems. The specific vectors leading to the out-of-bounds write are not detailed in the initial advisory, but…

Overview A critical Cross-Site Request Forgery (CSRF) vulnerability, identified as CVE-2024-45538, has been discovered in the WebAPI Framework within Synology DiskStation Manager (DSM) and Synology Unified Controller (DSMUC). This vulnerability allows remote attackers to potentially execute arbitrary code on affected devices. It is crucial to update your systems immediately to mitigate this risk. Technical Details CVE-2024-45538 affects the following Synology products: Synology DiskStation Manager (DSM) versions before 7.2.1-69057-2 and 7.2.2-72806 Synology Unified Controller (DSMUC) versions before 3.1.4-23079 The vulnerability resides in the WebAPI Framework. Due to insufficient CSRF protection, an attacker can potentially trick a logged-in administrator into unknowingly executing…

Overview CVE-2025-14005 details a cross-site scripting (XSS) vulnerability found in dayrui XunRuiCMS up to version 4.7.1. This vulnerability allows a remote attacker to inject malicious scripts into the application, potentially compromising user accounts and data. The vendor has not responded to disclosure attempts. Technical Details The vulnerability exists within the “Add Display Name Field” functionality located in the /admind45f74adbd95.php?c=field&m=add&rname=site&rid=1&page=0 file. Specifically, the data[name] argument is susceptible to manipulation. An attacker can inject malicious JavaScript code into this parameter, which will then be executed in the context of other users accessing the same page. The vulnerability can be triggered remotely without…

Overview CVE-2025-14004 details a server-side request forgery (SSRF) vulnerability found in dayrui XunRuiCMS up to version 4.7.1. This flaw resides within the Email Setting Handler, specifically affecting an unknown function of the file /admind45f74adbd95.php?c=email&m=add. An attacker can exploit this vulnerability to perform unauthorized network requests from the server, potentially leading to information disclosure or internal network exploitation. Technical Details The vulnerability allows a remote attacker to manipulate the input parameters of the /admind45f74adbd95.php?c=email&m=add script to force the server to make requests to arbitrary URLs. This is a classic SSRF scenario. Because the vendor did not respond to responsible disclosure attempts,…

Overview CVE-2025-40215 addresses a vulnerability in the Linux kernel’s XFRM (XFRM framework) subsystem. This vulnerability involves the improper handling of IPcomp fallback tunnels, potentially leading to stale entries and triggering warnings within the kernel. The fix ensures that fallback states are deleted promptly when the last user state depending on them is removed, preventing resource leaks and potential instability. Technical Details The issue arises because IPcomp fallback tunnels were previously being deleted only when the last *user state that *needed* that fallback is destroyed, not deleted from hashtables/lists immediately. This meant that if a reference to that user state persisted…

Overview CVE-2025-40214 describes a vulnerability within the Linux kernel’s AF_UNIX socket implementation. This flaw could lead to a scenario where the garbage collection (GC) process incorrectly identifies and collects a receive queue belonging to an active, in-flight socket. This improper garbage collection can lead to unpredictable system behavior and potential instability. This article provides a detailed analysis of the vulnerability, its potential impact, and the mitigation implemented in the Linux kernel. Technical Details The vulnerability stems from the fact that the scc_index field within the unix_vertex structure was not initialized in the unix_add_edge() function. This oversight, as reported by Quang…