{"vulnerability": "cve-2025-4682", "sightings": [{"uuid": "3ac78a11-4d19-4fa8-90d3-d420e917b1a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46822", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3lpyhte3hkr22", "content": "", "creation_timestamp": "2025-05-25T10:39:38.211827Z"}, {"uuid": "08ca3946-3eeb-4ad8-9596-9a8deb7fd2f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46822", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lq433mh2ht2v", "content": "", "creation_timestamp": "2025-05-26T21:02:17.013005Z"}, {"uuid": "d6507ac8-8f26-43b0-a303-84cabd235698", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46823", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqdff6ajfvw2", "content": "", "creation_timestamp": "2025-05-29T18:57:39.990674Z"}, {"uuid": "4bdf861c-230c-48ea-a150-34d8b2372ce6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4682", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq4r3sr4bcy2", "content": "", "creation_timestamp": "2025-05-27T03:36:09.832104Z"}, {"uuid": "5a28f4b0-3948-497e-95a2-c498b875ac3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46822", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lrltx76q5k2u", "content": "", "creation_timestamp": "2025-06-14T21:02:21.732134Z"}, {"uuid": "50cb9c24-4df7-4e08-85d7-5f3aef1c6cac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46820", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lojlqi2tlzb2", "content": "", "creation_timestamp": "2025-05-06T19:19:58.941255Z"}, {"uuid": "be9840f9-ebc3-4b7e-aafb-9fce2f09633a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46820", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lojwinwwk52h", "content": "", "creation_timestamp": "2025-05-06T22:27:00.817454Z"}, {"uuid": "721dce54-f5ab-4695-856a-6e5b1fedc9de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46820", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15197", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46820\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H)\n\ud83d\udd39 Description: phpgt/Dom provides access to modern DOM APIs. Versions of phpgt/Dom prior to 4.1.8 expose the GITHUB_TOKEN in the Dom workflow run artifact. The ci.yml workflow file uses actions/upload-artifact@v4 to upload the build artifact. This artifact is a zip of the current directory, which includes the automatically generated .git/config file containing the run's GITHUB_TOKEN. Seeing as the artifact can be downloaded prior to the end of the workflow, there is a few seconds where an attacker can extract the token from the artifact and use it with the GitHub API to push malicious code or rewrite release commits in your repository. Any downstream user of the repository may be affected, but the token should only be valid for the duration of the workflow run, limiting the time during which exploitation could occur. Version 4.1.8 fixes the issue.\n\ud83d\udccf Published: 2025-05-06T18:48:52.176Z\n\ud83d\udccf Modified: 2025-05-06T19:02:09.024Z\n\ud83d\udd17 References:\n1. https://github.com/phpgt/Dom/security/advisories/GHSA-cwj7-6v67-2cm4\n2. https://github.com/phpgt/Dom/commit/205cddcc82c002dfa48e874494efbf4c49497394", "creation_timestamp": "2025-05-06T19:21:12.000000Z"}, {"uuid": "411e95b7-31cd-49a2-85af-790bb293e53e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46822", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-46822.yaml", "content": "", "creation_timestamp": "2025-06-13T08:22:21.000000Z"}, {"uuid": "da62ca1e-af86-4c1f-abe7-bc51b1c9e915", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46827", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114467567755058452", "content": "", "creation_timestamp": "2025-05-07T16:47:51.757825Z"}, {"uuid": "22934827-0ee3-4f15-8ce6-5928d53d249b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46827", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lolzkeorqn2j", "content": "", "creation_timestamp": "2025-05-07T18:27:02.797481Z"}, {"uuid": "d290925b-bb7c-4814-8530-86452608f40a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46827", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3lomemeymib2x", "content": "", "creation_timestamp": "2025-05-07T21:44:54.235811Z"}, {"uuid": "beb6f8cb-79cf-43cd-a6a7-a58a3bd04c5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46828", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lomgxuwups2p", "content": "", "creation_timestamp": "2025-05-07T22:27:11.552504Z"}, {"uuid": "9b00afa2-4dd2-4f62-a9ee-e5164dbf0035", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46824", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lomgxvldu62o", "content": "", "creation_timestamp": "2025-05-07T22:27:15.131574Z"}, {"uuid": "8838fe70-1ec0-4728-b5b9-c9f1efd6b304", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46821", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lomnonmhfo2h", "content": "", "creation_timestamp": "2025-05-08T00:27:16.352082Z"}, {"uuid": "47ee31bd-5fa5-46d4-9e17-6430e8e83822", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46826", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lomnontey72p", "content": "", "creation_timestamp": "2025-05-08T00:27:17.594930Z"}, {"uuid": "28b11838-a011-4473-ac06-603cbbafa4a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46821", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15458", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46821\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: Envoy is a cloud-native edge/middle/service proxy. Prior to versions 1.34.1, 1.33.3, 1.32.6, and 1.31.8, Envoy's URI template matcher incorrectly excludes the `*` character from a set of valid characters in the URI path. As a result URI path containing the `*` character will not match a URI template expressions. This can result in bypass of RBAC rules when configured using the `uri_template` permissions. This vulnerability is fixed in Envoy versions v1.34.1, v1.33.3, v1.32.6, v1.31.8. As a workaround, configure additional RBAC permissions using `url_path` with `safe_regex` expression.\n\ud83d\udccf Published: 2025-05-07T21:24:07.891Z\n\ud83d\udccf Modified: 2025-05-07T21:24:07.891Z\n\ud83d\udd17 References:\n1. https://github.com/envoyproxy/envoy/security/advisories/GHSA-c7cm-838g-6g67", "creation_timestamp": "2025-05-07T22:23:22.000000Z"}, {"uuid": "7dbac468-923e-4d3e-a397-e82119c2014a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46826", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15456", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46826\n\ud83d\udd25 CVSS Score: 1.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/S:N/AU:Y/R:A/V:D/RE:L)\n\ud83d\udd39 Description: insa-auth is an authentication server for INSA Rouen. A minor issue allowed third-party websites to access the server's secondary authentication bridge, potentially revealing basic student information (name and number). However, the issue posed minimal risk, was never exploited, and had limited impact. A fix was implemented promptly on May 3, 2025.\n\ud83d\udccf Published: 2025-05-07T21:32:30.865Z\n\ud83d\udccf Modified: 2025-05-07T21:32:30.865Z\n\ud83d\udd17 References:\n1. https://github.com/INSAgenda/insa-auth/security/advisories/GHSA-63xr-gvjv-r6xv\n2. https://github.com/INSAgenda/insa-auth/commit/8c1e68b2fb55aa952f522ead55a6587526982a2c\n3. https://github.com/INSAgenda/insa-auth/commit/b0e7508e6ca4360e39fb1fd931f8d47b1f992ced\n4. https://github.com/INSAgenda/insa-auth/commit/c77cf2e25778f83ebf5c4fdb4ded3ffcc8cfd74d", "creation_timestamp": "2025-05-07T22:23:16.000000Z"}, {"uuid": "e9228f9f-6b3a-4d6e-9235-6bc899a8fdc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46827", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15347", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46827\n\ud83d\udd25 CVSS Score: 8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Graylog is a free and open log management platform. Prior to versions 6.0.14, 6.1.10, and 6.2.0, it is possible to obtain user session cookies by submitting an HTML form as part of an Event Definition Remediation Step field. For this attack to succeed, the attacker needs a user account with permissions to create event definitions, while the user must have permissions to view alerts. Additionally, an active Input must be present on the Graylog server that is capable of receiving form data (e.g. a HTTP input, TCP raw or syslog etc). Versions 6.0.14, 6.1.10, and 6.2.0 fix the issue. No known workarounds are available, as long as the relatively rare prerequisites are met.\n\ud83d\udccf Published: 2025-05-07T15:29:31.420Z\n\ud83d\udccf Modified: 2025-05-07T15:50:18.084Z\n\ud83d\udd17 References:\n1. https://github.com/Graylog2/graylog2-server/security/advisories/GHSA-76vf-mpmx-777j", "creation_timestamp": "2025-05-07T16:23:25.000000Z"}, {"uuid": "cb6158d0-287a-4973-840f-469271d4e5aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46822", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17159", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46822\n\ud83d\udd25 CVSS Score: 7.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P)\n\ud83d\udd39 Description: OsamaTaher/Java-springboot-codebase is a collection of Java and Spring Boot code snippets, applications, and projects. Prior to commit c835c6f7799eacada4c0fc77e0816f250af01ad2, insufficient path traversal mechanisms make absolute path traversal possible. This vulnerability allows unauthorized access to sensitive internal files. Commit c835c6f7799eacada4c0fc77e0816f250af01ad2 contains a patch for the issue.\n\ud83d\udccf Published: 2025-05-21T17:23:37.087Z\n\ud83d\udccf Modified: 2025-05-21T17:23:37.087Z\n\ud83d\udd17 References:\n1. https://github.com/OsamaTaher/Java-springboot-codebase/security/advisories/GHSA-q6mm-cm37-w637\n2. https://github.com/OsamaTaher/Java-springboot-codebase/commit/c835c6f7799eacada4c0fc77e0816f250af01ad2", "creation_timestamp": "2025-05-21T17:43:13.000000Z"}, {"uuid": "e6e941d7-48e5-4434-bba2-857f3589e797", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46825", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16072", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46825\n\ud83d\udd25 CVSS Score: 1.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P)\n\ud83d\udd39 Description: Kanboard is project management software that focuses on the Kanban methodology. Versions 1.2.26 through 1.2.44 have a Stored Cross-Site Scripting (XSS) Vulnerability in the `name` parameter of the `http://localhost/?controller=ProjectCreationController&action=create` form. This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users. Note that the default content security policy (CSP) blocks the JavaScript attack, though it can be exploited if an instance is badly configured and the software is vulnerable to CSS injection because of the unsafe-inline on the default CSP. Version 1.2.45 contains a fix for the issue.\n\ud83d\udccf Published: 2025-05-12T22:53:42.294Z\n\ud83d\udccf Modified: 2025-05-12T22:53:42.294Z\n\ud83d\udd17 References:\n1. https://github.com/kanboard/kanboard/security/advisories/GHSA-5wj3-c9v4-pj9v\n2. https://github.com/kanboard/kanboard/commit/6ebf22eeaae9f8b4abab72e3c18e45a2c4a2a808\n3. https://github.com/kanboard/kanboard/commit/ac94004ea9fc455dcc5edc8a242d67d1ccd85564\n4. https://github.com/kanboard/kanboard/blame/v1.2.44/app/Template/project_view/importTasks.php#L11", "creation_timestamp": "2025-05-12T23:29:31.000000Z"}, {"uuid": "f531dc6a-55ef-4583-ad55-6b2430e825c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46822", "type": "published-proof-of-concept", "source": "https://t.me/realcodeb0ss/44", "content": "", "creation_timestamp": "2025-06-14T20:58:24.000000Z"}, {"uuid": "d0ef12eb-28b7-4ddd-8266-92d1829f847b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46825", "type": "seen", "source": "https://t.me/cvedetector/25138", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46825 - Kanboard Stored Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-46825 \nPublished : May 12, 2025, 11:15 p.m. | 1\u00a0hour, 24\u00a0minutes ago \nDescription : Kanboard is project management software that focuses on the Kanban methodology. Versions 1.2.26 through 1.2.44 have a Stored Cross-Site Scripting (XSS) Vulnerability in the `name` parameter of the `http://localhost/?controller=ProjectCreationController&action=create` form. This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users. Note that the default content security policy (CSP) blocks the JavaScript attack, though it can be exploited if an instance is badly configured and the software is vulnerable to CSS injection because of the unsafe-inline on the default CSP. Version 1.2.45 contains a fix for the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-13T02:59:50.000000Z"}, {"uuid": "d6eb8efd-1b99-47b0-9a9a-fdd3536736be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46827", "type": "seen", "source": "https://t.me/cvedetector/24715", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46827 - Graylog HTML Form Cookie Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-46827 \nPublished : May 7, 2025, 4:15 p.m. | 25\u00a0minutes ago \nDescription : Graylog is a free and open log management platform. Prior to versions 6.0.14, 6.1.10, and 6.2.0, it is possible to obtain user session cookies by submitting an HTML form as part of an Event Definition Remediation Step field. For this attack to succeed, the attacker needs a user account with permissions to create event definitions, while the user must have permissions to view alerts. Additionally, an active Input must be present on the Graylog server that is capable of receiving form data (e.g. a HTTP input, TCP raw or syslog etc). Versions 6.0.14, 6.1.10, and 6.2.0 fix the issue. No known workarounds are available, as long as the relatively rare prerequisites are met. \nSeverity: 8.0 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-07T19:00:36.000000Z"}, {"uuid": "5343bc59-0bf4-4c19-8753-0d914b8b427b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46820", "type": "published-proof-of-concept", "source": "Telegram/MtkbMjKHSfcOGeyYZKODgJ22yCGfMFI_St_Qez5BgCNBgxs", "content": "", "creation_timestamp": "2025-05-06T21:30:42.000000Z"}, {"uuid": "98edc79d-5a8d-4859-892b-0d39887e454a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46824", "type": "seen", "source": "https://t.me/cvedetector/24742", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46824 - Discourse Code Review Plugin Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-46824 \nPublished : May 7, 2025, 6:15 p.m. | 26\u00a0minutes ago \nDescription : The Discourse Code Review Plugin allows users to review GitHub commits on Discourse. Prior to commit eed3a80, an attacker can execute arbitrary JavaScript on users' browsers by posting links to malicious GitHub commits. This problem is patched in commit eed3a80 of the discourse-code-review plugin. As a workaround, one may disable the plugin. \nSeverity: 3.1 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-07T21:31:41.000000Z"}, {"uuid": "7d21caa4-7405-479f-95da-879ce3dc635d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46821", "type": "seen", "source": "https://t.me/cvedetector/24764", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46821 - Envoy URI Template Path Matching Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-46821 \nPublished : May 7, 2025, 10:15 p.m. | 29\u00a0minutes ago \nDescription : Envoy is a cloud-native edge/middle/service proxy. Prior to versions 1.34.1, 1.33.3, 1.32.6, and 1.31.8, Envoy's URI template matcher incorrectly excludes the `*` character from a set of valid characters in the URI path. As a result URI path containing the `*` character will not match a URI template expressions. This can result in bypass of RBAC rules when configured using the `uri_template` permissions. This vulnerability is fixed in Envoy versions v1.34.1, v1.33.3, v1.32.6, v1.31.8. As a workaround, configure additional RBAC permissions using `url_path` with `safe_regex` expression. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-08T00:52:37.000000Z"}, {"uuid": "100fcb64-4062-419d-85c0-e82c7601bfd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46826", "type": "seen", "source": "https://t.me/cvedetector/24765", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46826 - INSA Rouen insa-auth Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-46826 \nPublished : May 7, 2025, 10:15 p.m. | 29\u00a0minutes ago \nDescription : insa-auth is an authentication server for INSA Rouen. A minor issue allowed third-party websites to access the server's secondary authentication bridge, potentially revealing basic student information (name and number). However, the issue posed minimal risk, was never exploited, and had limited impact. A fix was implemented promptly on May 3, 2025. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-08T00:52:38.000000Z"}, {"uuid": "6fb1247b-14cd-4fbc-b201-68788e6f59e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46822", "type": "seen", "source": "Telegram/Otu6Jbe8lDXdP_SNoyBScRz6BIgHRvrsI4mTky3IQgsujWk", "content": "", "creation_timestamp": "2026-05-23T07:00:10.000000Z"}, {"uuid": "5ca71369-98f5-47f1-897a-3d965391fa89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46820", "type": "seen", "source": "https://t.me/cvedetector/24641", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46820 - GitHub phpgt/Dom GitHub Token Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-46820 \nPublished : May 6, 2025, 7:16 p.m. | 58\u00a0minutes ago \nDescription : phpgt/Dom provides access to modern DOM APIs. Versions of phpgt/Dom prior to 4.1.8 expose the GITHUB_TOKEN in the Dom workflow run artifact. The ci.yml workflow file uses actions/upload-artifact@v4 to upload the build artifact. This artifact is a zip of the current directory, which includes the automatically generated .git/config file containing the run's GITHUB_TOKEN. Seeing as the artifact can be downloaded prior to the end of the workflow, there is a few seconds where an attacker can extract the token from the artifact and use it with the GitHub API to push malicious code or rewrite release commits in your repository. Any downstream user of the repository may be affected, but the token should only be valid for the duration of the workflow run, limiting the time during which exploitation could occur. Version 4.1.8 fixes the issue. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-06T22:51:05.000000Z"}, {"uuid": "edd09c0e-d62c-477d-946a-c0fe466af269", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46828", "type": "seen", "source": "https://t.me/cvedetector/24735", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46828 - WeGIA Web Manager SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-46828 \nPublished : May 7, 2025, 6:15 p.m. | 26\u00a0minutes ago \nDescription : WeGIA is a web manager for charitable institutions.  An unauthenticated SQL Injection vulnerability was identified in versions up to and including 3.3.0 in the endpoint `/html/socio/sistema/get_socios.php`, specifically in the query parameter. This issue allows attackers to inject and execute arbitrary SQL statements against the application's underlying database. As a result, it may lead to data exfiltration, authentication bypass, or complete database compromise. Version 3.3.1 fixes the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-07T21:31:33.000000Z"}]}