{"vulnerability": "cve-2025-4837", "sightings": [{"uuid": "ef926e13-60f2-40df-acaf-5f958a2210bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48376", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpurw7g3nha2", "content": "", "creation_timestamp": "2025-05-23T23:29:36.814509Z"}, {"uuid": "caab7456-fbab-4718-82db-e039976ee28b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48375", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpurw5qirxj2", "content": "", "creation_timestamp": "2025-05-23T23:29:36.217710Z"}, {"uuid": "7130bc63-7752-4f54-b5b0-bcf252e098e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48375", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17414", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48375\n\ud83d\udd25 CVSS Score: 6.6 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: Schule is open-source school management system software. Prior to version 1.0.1, the file forgot_password.php (or equivalent endpoint responsible for email-based OTP generation) lacks proper rate limiting controls, allowing attackers to abuse the OTP request functionality. This vulnerability can be exploited to send an excessive number of OTP emails, leading to potential denial-of-service (DoS) conditions or facilitating user harassment through email flooding. Version 1.0.1 fixes the issue.\n\ud83d\udccf Published: 2025-05-23T15:41:11.735Z\n\ud83d\udccf Modified: 2025-05-23T16:09:49.204Z\n\ud83d\udd17 References:\n1. https://github.com/schule111/Schule/security/advisories/GHSA-h3f2-mc85-67gc", "creation_timestamp": "2025-05-23T16:45:03.000000Z"}, {"uuid": "26c9efd8-589a-4d62-9428-2de74cbb9bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48372", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17361", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48372\n\ud83d\udd25 CVSS Score: 6.6 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: Schule is open-source school management system software. The generateOTP() function generates a 4-digit numeric One-Time Password (OTP). Prior to version 1.0.1, even if a secure random number generator is used, the short length and limited range (1000\u20139999) results in only 9000 possible combinations. This small keyspace makes the OTP highly vulnerable to brute-force attacks, especially in the absence of strong rate-limiting or lockout mechanisms. Version 1.0.1 fixes the issue.\n\ud83d\udccf Published: 2025-05-22T20:38:02.463Z\n\ud83d\udccf Modified: 2025-05-22T20:38:02.463Z\n\ud83d\udd17 References:\n1. https://github.com/schule111/Schule/security/advisories/GHSA-6c48-67xx-vqgc\n2. https://github.com/schule111/Schule/commit/cd53abbea93943f2c60a5281d45bebadc57636b7", "creation_timestamp": "2025-05-22T21:38:31.000000Z"}, {"uuid": "3a2770aa-4923-43ab-9b9c-b36aa9c0f6fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48378", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17409", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48378\n\ud83d\udd25 CVSS Score: 6.1 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N)\n\ud83d\udd39 Description: DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 9.13.9, uploaded SVG files could contain scripts and if rendered inline those scripts could run allowing XSS attacks. Version 9.13.9 fixes the issue.\n\ud83d\udccf Published: 2025-05-23T15:39:03.727Z\n\ud83d\udccf Modified: 2025-05-23T15:39:03.727Z\n\ud83d\udd17 References:\n1. https://github.com/dnnsoftware/Dnn.Platform/security/advisories/GHSA-m4hf-fxcg-cp34\n2. https://github.com/dnnsoftware/Dnn.Platform/commit/cfed83c291d5e5072b2fa70924a8b7c35b1cdf9e", "creation_timestamp": "2025-05-23T15:44:42.000000Z"}, {"uuid": "1a8fd610-e45e-4a88-b02c-4a6c2bf759cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48371", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17362", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48371\n\ud83d\udd25 CVSS Score: 5.8 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H)\n\ud83d\udd39 Description: OpenFGA is an authorization/permission engine. OpenFGA versions 1.8.0 through 1.8.12 (corresponding to Helm chart openfga-0.2.16 through openfga-0.2.30 and docker 1.8.0 through 1.8.12) are vulnerable to authorization bypass when certain Check and ListObject calls are executed. Users are affected under four specific conditions: First, calling Check API or ListObjects with an authorization model that has a relationship directly assignable by both type bound public access and userset; second, there are check or list object queries with contextual tuples for the relationship that can be directly assignable by both type bound public access and userset; third, those contextual tuples\u2019s user field is an userset; and finally, type bound public access tuples are not assigned to the relationship. Users should upgrade to version 1.8.13 to receive a patch. The upgrade is backwards compatible.\n\ud83d\udccf Published: 2025-05-22T22:20:37.570Z\n\ud83d\udccf Modified: 2025-05-22T22:20:37.570Z\n\ud83d\udd17 References:\n1. https://github.com/openfga/openfga/security/advisories/GHSA-c72g-53hw-82q7\n2. https://github.com/openfga/openfga/commit/e5960d4eba92b723de8ff3a5346a07f50c1379ca", "creation_timestamp": "2025-05-22T22:50:46.000000Z"}, {"uuid": "4fd150a0-30f4-4463-9351-32d2b3a2a708", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48377", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17408", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48377\n\ud83d\udd25 CVSS Score: 6 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N)\n\ud83d\udd39 Description: DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 9.13.9, a specially crafted URL may be constructed which can inject an XSS payload that is triggered by using some module actions. Version 9.13.9 fixes the issue.\n\ud83d\udccf Published: 2025-05-23T15:39:40.020Z\n\ud83d\udccf Modified: 2025-05-23T15:39:40.020Z\n\ud83d\udd17 References:\n1. https://github.com/dnnsoftware/Dnn.Platform/security/advisories/GHSA-79m3-rvx2-3qq9\n2. https://github.com/dnnsoftware/Dnn.Platform/commit/351b166492ad4b6509c273dc83211d52238e31a7", "creation_timestamp": "2025-05-23T15:44:33.000000Z"}, {"uuid": "ff85d659-0c81-453b-b33b-a4f095d8b63e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48376", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17410", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48376\n\ud83d\udd25 CVSS Score: 3.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L)\n\ud83d\udd39 Description: DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 9.13.9, a malicious SuperUser (Host) could craft a request to use an external url for a site export to then be imported. Version 9.13.9 fixes the issue.\n\ud83d\udccf Published: 2025-05-23T15:37:03.832Z\n\ud83d\udccf Modified: 2025-05-23T15:37:03.832Z\n\ud83d\udd17 References:\n1. https://github.com/dnnsoftware/Dnn.Platform/security/advisories/GHSA-62mf-vhhw-xmf8\n2. https://github.com/dnnsoftware/Dnn.Platform/commit/13fb13ee76173c3467d7ee8d120b20ca7bd4fa63", "creation_timestamp": "2025-05-23T15:44:43.000000Z"}, {"uuid": "33f51d72-fbf0-479a-90fa-c1fcbc14bc43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48370", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17659", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48370\n\ud83d\udd25 CVSS Score: 2.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: auth-js is an isomorphic Javascript library for Supabase Auth. Prior to version 2.69.1, the library functions getUserById, deleteUser, updateUserById, listFactors and deleteFactor did not require the user supplied values to be valid UUIDs. This could lead to a URL path traversal, resulting in the wrong API function being called. Implementations that follow security best practice and validate user controlled inputs, such as the userId are not affected by this. This issue has been patched in version 2.69.1.\n\ud83d\udccf Published: 2025-05-27T15:27:00.864Z\n\ud83d\udccf Modified: 2025-05-27T15:37:18.556Z\n\ud83d\udd17 References:\n1. https://github.com/supabase/auth-js/security/advisories/GHSA-8r88-6cj9-9fh5\n2. https://github.com/supabase/auth-js/pull/1063", "creation_timestamp": "2025-05-27T15:49:17.000000Z"}, {"uuid": "7f0c82a0-6338-4cf1-b58b-e88c4f85001f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48370", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq62fj35jmy2", "content": "", "creation_timestamp": "2025-05-27T15:55:21.645246Z"}, {"uuid": "242241bb-6932-4af1-aad3-1ea8c0b9b394", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4837", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpfl6gvaxdj2", "content": "", "creation_timestamp": "2025-05-17T22:19:24.501031Z"}, {"uuid": "39f24c75-3ef5-496a-bc1c-90db2aeaa4bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48377", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpu6kzfber2m", "content": "", "creation_timestamp": "2025-05-23T17:43:15.098004Z"}, {"uuid": "64b17c3a-571d-4075-b2df-1683fa700954", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48378", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpu6qyfysd2m", "content": "", "creation_timestamp": "2025-05-23T17:46:35.618859Z"}, {"uuid": "2cfaee0f-55cc-4579-962b-e6ca75bfad06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48376", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpu77ewyrw2m", "content": "", "creation_timestamp": "2025-05-23T17:54:38.304576Z"}, {"uuid": "d0f7ddc6-0f48-4884-adda-465fdc5bb632", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48379", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114779561289242286", "content": "", "creation_timestamp": "2025-07-01T19:11:55.773070Z"}, {"uuid": "50771c36-348a-4268-b063-e7fbfb5f756a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48378", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpurwcvufoo2", "content": "", "creation_timestamp": "2025-05-23T23:29:58.007180Z"}, {"uuid": "bf4f4038-59c1-4063-8fe3-b102cae2e8a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48377", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpus7gxgdno2", "content": "", "creation_timestamp": "2025-05-23T23:34:44.192107Z"}, {"uuid": "f194184d-65aa-4930-97df-5bb7aa8317e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-48379", "type": "seen", "source": "https://gist.github.com/fernandinand/80cb943bc13477d76a3adff5cb86715c", "content": "", "creation_timestamp": "2026-04-22T13:26:30.000000Z"}, {"uuid": "8757a1d4-d221-4ba2-8908-504b14bbf7b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48374", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpsbwxlg372y", "content": "", "creation_timestamp": "2025-05-22T23:38:17.760781Z"}, {"uuid": "55b4dae5-a9b3-423f-a043-798c610696d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48373", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpsc7vydin2a", "content": "", "creation_timestamp": "2025-05-22T23:43:18.166875Z"}, {"uuid": "d1c710d5-77f7-4611-bc19-c74025e9ec72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48372", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpsciufkr527", "content": "", "creation_timestamp": "2025-05-22T23:48:18.316925Z"}, {"uuid": "d5fecd2c-d7ec-4d23-b82d-25812217778e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4837", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpfuvq74kj2j", "content": "", "creation_timestamp": "2025-05-18T01:13:01.770691Z"}, {"uuid": "6a99c055-7864-4813-930f-3f7ef967a38c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48375", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpu5qpkiwu2q", "content": "", "creation_timestamp": "2025-05-23T17:28:32.394447Z"}, {"uuid": "19c24635-39e2-4ba4-8535-13bdf882a390", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48379", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/20075", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48379\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H)\n\ud83d\udd39 Description: Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap buffer overflow when writing a sufficiently large (>64k encoded with default settings) image in the DDS format due to writing into a buffer without checking for available space. This only affects users who save untrusted data as a compressed DDS image. This issue has been patched in version 11.3.0.\n\ud83d\udccf Published: 2025-07-01T18:33:30.687Z\n\ud83d\udccf Modified: 2025-07-01T18:33:30.687Z\n\ud83d\udd17 References:\n1. https://github.com/python-pillow/Pillow/security/advisories/GHSA-xg8h-j46f-w952\n2. https://github.com/python-pillow/Pillow/pull/9041\n3. https://github.com/python-pillow/Pillow/commit/ef98b3510e3e4f14b547762764813d7e5ca3c5a4\n4. https://github.com/python-pillow/Pillow/releases/tag/11.3.0", "creation_timestamp": "2025-07-01T19:09:21.000000Z"}]}