Overview CVE-2025-64070 describes a Cross-Site Scripting (XSS) vulnerability discovered in Sourcecodester Student Grades Management System version 1.0. This vulnerability allows an attacker to inject malicious scripts into the “Add New Subject Description” field, potentially compromising user accounts and data. Technical Details The vulnerability resides in the lack of proper input sanitization within the “Add New Subject Description” functionality. An attacker can input malicious JavaScript code into this field. When a user views the subject description, the injected script will execute within their browser. This can lead to: Account hijacking: Stealing user cookies or session tokens. Data theft: Accessing and exfiltrating…

Overview CVE-2025-13828 describes a significant security vulnerability in Mautic, a popular open-source marketing automation platform. This flaw allows a non-privileged user to install and remove arbitrary packages via Composer, even when the “enable composer based update” setting is disabled. This circumvents intended security controls and creates a pathway for attackers to inject malicious code into the Mautic instance. Technical Details The vulnerability stems from insufficient access control checks within the Composer integration. Despite disabling the Composer-based update feature, the application fails to properly restrict Composer functionality for unauthenticated or low-privileged users. This oversight allows a malicious actor to leverage Composer…

Overview CVE-2025-13827 describes an arbitrary file upload vulnerability affecting the GrapesJS Builder. This vulnerability stems from a lack of restriction on the types of files that can be uploaded through the builder. If the webserver’s media folder is improperly configured, allowing execution of uploaded files, this can lead to Remote Code Execution (RCE). Technical Details The GrapesJS Builder, when integrated into applications (such as Mautic), typically allows users to upload media assets like images. However, CVE-2025-13827 highlights the absence of proper validation or filtering on the file types being uploaded. This means a malicious actor could potentially upload executable files…

Overview A stored Cross-Site Scripting (XSS) vulnerability has been identified in CiviCRM before version 6.7. Designated as CVE-2025-65187, this vulnerability resides within the Accounting Batches field. An authenticated user with sufficient privileges can inject malicious JavaScript code into this field. This code will then execute whenever a user views the affected page, potentially leading to unauthorized access, data theft, or other malicious activities. Technical Details The vulnerability stems from insufficient sanitization and validation of user-supplied input within the Accounting Batches field. Specifically, the application fails to properly encode special characters before displaying the data. This allows an attacker to inject…

Overview CVE-2025-64460 describes a potential denial-of-service (DoS) vulnerability affecting Django versions 5.2 before 5.2.9, 5.1 before 5.1.15, and 4.2 before 4.2.27. This issue arises from algorithmic complexity within the django.core.serializers.xml_serializer.getInnerText() function. A remote attacker can exploit this vulnerability by sending specially crafted XML input to the Django XML Deserializer, leading to excessive CPU and memory consumption, effectively causing a denial-of-service. It is important to note that older, unsupported Django versions (such as 5.0.x, 4.1.x, and 3.2.x) were not explicitly evaluated but may also be susceptible to this vulnerability. Therefore, users of these older versions are strongly advised to consider upgrading…

Overview CVE-2025-63872 details a Cross-Site Scripting (XSS) vulnerability discovered in DeepSeek V3.2. This vulnerability allows attackers to inject and execute arbitrary JavaScript code within the context of the DeepSeek application through specially crafted SVG (Scalable Vector Graphics) content generated by the model. Because DeepSeek does not properly sanitize or validate SVG output, malicious actors can leverage this flaw to potentially compromise user accounts, steal sensitive information, or perform unauthorized actions. Technical Details The vulnerability resides in the processing of SVG content generated by the DeepSeek V3.2 model. If a user prompts the model to generate an image in SVG format,…

Overview CVE-2025-59704 details a vulnerability affecting Entrust nShield Connect XC, nShield 5c, and nShield HSMi hardware security modules (HSMs). The issue stems from the lack of a password protecting the BIOS menu, potentially allowing an attacker with physical access to gain unauthorized control over the device’s low-level settings. Technical Details The vulnerability exists in Entrust nShield Connect XC, nShield 5c, and nShield HSMi devices running firmware versions up to and including 13.6.11, and also version 13.7. The absence of a BIOS password allows an attacker with physical access to the HSM to enter the BIOS setup. From there, the attacker…

Overview A critical physical security vulnerability, identified as CVE-2025-59703, has been discovered in Entrust nShield Connect XC, nShield 5c, and nShield HSMi devices. This flaw allows a physically proximate attacker to gain access to the internal components of the Hardware Security Module (HSM) without triggering tamper evidence mechanisms. This attack, known as an F14 attack, exploits the device’s physical design and the ease with which the tamper labels and fixing screws can be removed without causing obvious damage. Technical Details The vulnerability stems from the design of the nShield HSM casing and the tamper-evident mechanisms employed. An attacker with physical…

Overview CVE-2025-58113 describes an out-of-bounds read vulnerability affecting PDF-XChange Editor version 10.7.3.401. This vulnerability resides in the application’s handling of Enhanced Metafile (EMF) files. A specially crafted EMF file can trigger an out-of-bounds read, potentially leading to the disclosure of sensitive information. Technical Details The vulnerability exists within the EMF parsing functionality of PDF-XChange Editor. When processing a malicious EMF file, the application attempts to read data beyond the allocated memory buffer. This occurs due to insufficient bounds checking during the processing of specific EMF records. An attacker can exploit this flaw by crafting an EMF file with specific record…

Overview CVE-2025-13877 describes a medium-severity vulnerability found in NocoBase versions up to 1.9.4 and 2.0.0-alpha.37. This flaw involves the use of a hard-coded cryptographic key within the JWT Service component, specifically affecting the nocobase\packages\core\auth\src\base\jwt-service.ts file. Successful exploitation of this vulnerability allows for remote attackers to potentially compromise the system. Technical Details The vulnerability resides in the JWT Service component of NocoBase. The specific issue is the use of a hard-coded cryptographic key when handling the API_KEY argument. An attacker can leverage this weakness to forge or manipulate JWT (JSON Web Tokens), potentially gaining unauthorized access or performing actions on behalf…