2025-07-15 Daily Vulns

NEW:

CVE	vendor-product	description	metric	Referenceurl	title	GithubURL
CVE-2020-36847	eemitch - Simple File List	The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 4.2.2 via the rename function which can be used to rename uploaded PHP code with a png extension to use a php extension. This allows unauthenticated attackers to execute code on the server.	CVSS3.1: 9.8 - CRITICAL	0 1 2 3 4	Exploitation: pocAutomatable: yesTechnical Impact: total	Simple File List < 4.2.3 - Remote Code Execution	github
CVE-2020-36848	boldgrid - Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid	The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.14.9 via the env-info.php and restore-info.json files. This makes it possible for unauthenticated attackers to find the location of back-up files and subsequently download them.	CVSS3.1: 7.5 - HIGH	0 1 2 3	Exploitation: noneAutomatable: yesTechnical Impact: partial	Total Upkeep by BoldGrid <= 1.14.9 - Unauthenticated Backup Download	github
CVE-2025-53014	ImageMagick - ImageMagick	ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-0 and 6.9.13-26 have a heap buffer overflow in the `InterpretImageFilename` function. The issue stems from an off-by-one error that causes out-of-bounds memory access when processing format strings containing consecutive percent signs (`%%`). Versions 7.1.2-0 and 6.9.13-26 fix the issue.	CVSS3.1: 3.7 - LOW	0	Exploitation: pocAutomatable: noTechnical Impact: partial	ImageMagick has Heap Buffer Overflow in InterpretImageFilename	github
CVE-2023-39339	Ivanti - Policy Secure	A vulnerability exists on all versions of Ivanti Policy Secure below 22.6R1 where an authenticated administrator can perform an arbitrary file read via a maliciously crafted web request.	0	Exploitation: noneAutomatable: noTechnical Impact: partial	undefined	github
CVE-2023-38036	Ivanti - Avalanche	A security vulnerability within Ivanti Avalanche Manager before version 6.4.1 may allow an unauthenticated attacker to create a buffer overflow that could result in service disruption or arbitrary code execution.	CNA n/a CVSS3.1: 9.8 - CRITICAL	0	Exploitation: noneAutomatable: noTechnical Impact: total	undefined	github
CVE-2024-26292	Avid - Avid NEXIS E-seriesAvid - Avid NEXIS F-seriesAvid - Avid NEXIS PRO+Avid - System Director Appliance (SDA+)	An authenticated Arbitrary File Deletion vulnerability enables an attacker to delete critical files. This issue affects Avid NEXIS E-series: before 2025.5.1; Avid NEXIS F-series: before 2025.5.1; Avid NEXIS PRO+: before 2025.5.1; System Director Appliance (SDA+): before 2025.5.1.	CVSS4.0: 7.1 - HIGH	0 1	Exploitation: noneAutomatable: noTechnical Impact: partial	Authenticated Arbitrary File Deletion affecting Avid NEXIS	github
CVE-2025-7596	Tenda - FH1205	A vulnerability was found in Tenda FH1205 2.0.0.7(775). It has been rated as critical. This issue affects the function formWifiExtraSet of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.Eine Schwachstelle wurde in Tenda FH1205 2.0.0.7(775) ausgemacht. Sie wurde als kritisch eingestuft. Davon betroffen ist die Funktion formWifiExtraSet der Datei /goform/WifiExtraSet. Dank Manipulation des Arguments wpapsk_crypto mit unbekannten Daten kann eine stack-based buffer overflow-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen. Der Exploit steht zur öffentlichen Verfügung.	CVSS4.0: 8.7 - HIGH CVSS3.1: 8.8 - HIGH	0 1 2 3 4 5	Exploitation: pocAutomatable: noTechnical Impact: total	Tenda FH1205 WifiExtraSet formWifiExtraSet stack-based overflow	github