Author: Joe-W

  Posted by Apple Product Security via Fulldisclosure on Jul 29 APPLE-SA-07-29-2025-3 macOS Sequoia 15.6 macOS Sequoia 15.6 addresses the following issues. Information about the security content is also available at https://support.apple.com/124149. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. Admin Framework Available for: macOS Sequoia Impact: … Read More “APPLE-SA-07-29-2025-3 macOS Sequoia 15.6  – Full Disclosure” »

  Posted by Apple Product Security via Fulldisclosure on Jul 29 APPLE-SA-07-29-2025-4 macOS Sonoma 14.7.7 macOS Sonoma 14.7.7 addresses the following issues. Information about the security content is also available at https://support.apple.com/124150. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. Admin Framework Available for: macOS Sonoma Impact: … Read More “APPLE-SA-07-29-2025-4 macOS Sonoma 14.7.7  – Full Disclosure” »

  Posted by Apple Product Security via Fulldisclosure on Jul 29 APPLE-SA-07-29-2025-5 macOS Ventura 13.7.7 macOS Ventura 13.7.7 addresses the following issues. Information about the security content is also available at https://support.apple.com/124151. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. Admin Framework Available for: macOS Ventura Impact: … Read More “APPLE-SA-07-29-2025-5 macOS Ventura 13.7.7  – Full Disclosure” »

  Posted by Egidio Romano on Jul 29 —————————————————————————- Invision Community <= 4.7.20 (calendar/view.php) SQL Injection Vulnerability —————————————————————————- [-] Software Link: https://invisioncommunity.com [-] Affected Versions: Certain 4.x versions before 4.7.21. [-] Vulnerability Description: The vulnerability is located within the… – Read More  – Full Disclosure 

  Posted by Apple Product Security via Fulldisclosure on Jul 29 APPLE-SA-07-29-2025-1 iOS 18.6 and iPadOS 18.6 iOS 18.6 and iPadOS 18.6 addresses the following issues. Information about the security content is also available at https://support.apple.com/124147. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. Accessibility Available for: … Read More “APPLE-SA-07-29-2025-1 iOS 18.6 and iPadOS 18.6  – Full Disclosure” »

  Posted by Apple Product Security via Fulldisclosure on Jul 29 APPLE-SA-07-29-2025-2 iPadOS 17.7.9 iPadOS 17.7.9 addresses the following issues. Information about the security content is also available at https://support.apple.com/124148. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. Accessibility Available for: iPad Pro 12.9-inch 2nd generation, iPad … Read More “APPLE-SA-07-29-2025-2 iPadOS 17.7.9  – Full Disclosure” »

  Posted by Marcus Krueppel on Jul 29 ================== Overview ================== TL;DR: Using the low-privilege “admin” user account via SSH on the IoT device “USB-Server-LXL” [1], it is possible to modify the script /etc/init.d/lighttpd which is executed by root upon restart, leading to arbitrary code execution with root privileges. CVE: CVE-2025-52361 Suggested CVSS vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N … Read More “AK-Nord USB-Server-LXL privilege escalation and code execution (CVE-2025-52361)  – Full Disclosure” »

  Posted by Egidio Romano on Jul 29 —————————————————————— SugarCRM <= 14.0.0 (css/preview) LESS Code Injection Vulnerability —————————————————————— [-] Software Link: https://www.sugarcrm.com [-] Affected Versions: All commercial versions before 13.0.4 and 14.0.1. [-] Vulnerability Description: User input passed through GET parameters to the /css/preview REST API endpoint is not… – Read More  – Full Disclosure 

  Posted by Andrey Stoykov on Jul 29 # Exploit Title: Open Redirect “Login Page” Functionality – seotoasterv2.5.0 # Date: 07/2025 # Exploit Author: Andrey Stoykov # Version: 2.5.0 # Tested on: Debian 12 # Blog: https://msecureltd.blogspot.com/ Open Redirect “Login Page” Functionality #1: Steps to Reproduce Login to the application and then add the Referer … Read More “Open Redirect “Login Page” Functionality – seotoasterv2.5.0  – Full Disclosure” »

  Posted by Andrey Stoykov on Jul 29 # Exploit Title: Stored XSS “Create Page” Functionality – seotoasterv2.5.0 # Date: 07/2025 # Exploit Author: Andrey Stoykov # Version: 2.5.0 # Tested on: Debian 12 # Blog: https://msecureltd.blogspot.com/ Stored XSS “Create Page” Functionality #1: Steps to Reproduce 1. Login with admin and visit “Pages” > “Create … Read More “Stored XSS “Create Page” Functionality – seotoasterv2.5.0  – Full Disclosure” »

  Posted by Andrey Stoykov on Jul 29 # Exploit Title: Stored XSS “Edit General Info” Functionality – seotoasterv2.5.0 # Date: 07/2025 # Exploit Author: Andrey Stoykov # Version: 2.5.0 # Tested on: Debian 12 # Blog: https://msecureltd.blogspot.com/ Stored XSS “Edit General Info” Functionality #3: Steps to Reproduce 1. Login with admin and visit “Website … Read More “Stored XSS “Edit General Info” Functionality – seotoasterv2.5.0  – Full Disclosure” »

  Posted by Palula Brasil on Jul 29 The following snippet in the text is associated to the wrong CVE number: 2.2 Possibility of injecting JavaScript code into the name of the visiting network (XSS) – CVE-2025-26064 The correct CVE number for item 2.2 is CVE-2025-26065. – Read More  – Full Disclosure 

  Posted by Egidio Romano on Jul 29 —————————————————————————————– Invision Community <= 5.0.7 (oauth/callback) Reflected Cross-Site Scripting Vulnerability —————————————————————————————– [-] Software Link: https://invisioncommunity.com [-] Affected Versions: Certain 4.x versions before 4.7.21. All 5.x versions before 5.0.8. [-] Vulnerability Description:… – Read More  – Full Disclosure 

  Posted by Sanjay Singh on Jul 29 Hello Full Disclosure community, I’m sharing details of a recently assigned CVE affecting a widely used open‑source School Management System (PHP/MySQL). ——————————————– CVE ID: CVE‑2025‑52187 Vulnerability Type: Stored Cross‑Site Scripting (XSS) Attack Vector: Remote Discoverer: Sanjay Singh Vendor Repository: https://github.com/GetProjectsIdea/Create-School-Management-System-with-PHP-MySQL Version… – Read More  – Full Disclosure 

  Posted by KoreLogic Disclosures via Fulldisclosure on Jul 28 KL-001-2025-012: Xorux XorMon-NG Read Only User Export Device Configuration Exposing Sensitive Information Title: Xorux XorMon-NG Read Only User Export Device Configuration Exposing Sensitive Information Advisory ID: KL-001-2025-012 Publication Date: 2025-07-28 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2025-012.txt 1. Vulnerability Details      Affected Vendor: Xorux      Affected Product: XorMon-NG     … – … Read More “KL-001-2025-012: Xorux XorMon-NG Read Only User Export Device Configuration Exposing Sensitive Information  – Full Disclosure” »

  Posted by KoreLogic Disclosures via Fulldisclosure on Jul 28 KL-001-2025-013: Xorux XorMon-NG Web Application Privilege Escalation to Administrator Title: Xorux XorMon-NG Web Application Privilege Escalation to Administrator Advisory ID: KL-001-2025-013 Publication Date: 2025-07-28 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2025-013.txt 1. Vulnerability Details      Affected Vendor: Xorux      Affected Product: XorMon-NG      Affected Version: 1.8 and prior… – Read … Read More “KL-001-2025-013: Xorux XorMon-NG Web Application Privilege Escalation to Administrator  – Full Disclosure” »

  Posted by KoreLogic Disclosures via Fulldisclosure on Jul 28 KL-001-2025-014: Xorux LPAR2RRD Read Only User Denial of Service Title: Xorux LPAR2RRD Read Only User Denial of Service Advisory ID: KL-001-2025-014 Publication Date: 2025-07-28 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2025-014.txt 1. Vulnerability Details      Affected Vendor: Xorux      Affected Product: LPAR2RRD      Affected Version: 8.04 and prior      … Read More “KL-001-2025-014: Xorux LPAR2RRD Read Only User Denial of Service  – Full Disclosure” »

  Posted by KoreLogic Disclosures via Fulldisclosure on Jul 28 KL-001-2025-015: Xorux LPAR2RRD Read Only User Log Download Exposing Sensitive Information Title: Xorux LPAR2RRD Read Only User Log Download Exposing Sensitive Information Advisory ID: KL-001-2025-015 Publication Date: 2025-07-28 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2025-015.txt 1. Vulnerability Details      Affected Vendor: Xorux      Affected Product: LPAR2RRD      Affected Version: … Read More “KL-001-2025-015: Xorux LPAR2RRD Read Only User Log Download Exposing Sensitive Information  – Full Disclosure” »

  Posted by KoreLogic Disclosures via Fulldisclosure on Jul 28 KL-001-2025-016: Xorux LPAR2RRD File Upload Directory Traversal Title: Xorux LPAR2RRD File Upload Directory Traversal Advisory ID: KL-001-2025-016 Publication Date: 2025-07-28 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2025-016.txt 1. Vulnerability Details      Affected Vendor: Xorux      Affected Product: LPAR2RRD      Affected Version: 8.04 and prior      Platform: Rocky Linux 8.10 … Read More “KL-001-2025-016: Xorux LPAR2RRD File Upload Directory Traversal  – Full Disclosure” »