Publish Advisories

GHSA-5c5p-g26h-xx2f
GHSA-6phw-p8vc-q8gp
GHSA-8643-3fq3-vwcr
GHSA-8mfp-xmv3-hv35
GHSA-mjjp-xjfg-97wg
GHSA-p54q-9gfq-fvp4
GHSA-q82x-ch97-83xv

Author: advisory-database[bot]

advisories/unreviewed/2026/01/GHSA-5c5p-g26h-xx2f/GHSA-5c5p-g26h-xx2f.json

@@ -0,0 +1,41 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-5c5p-g26h-xx2f",
+  "modified": "2026-01-10T12:30:15Z",
+  "published": "2026-01-10T12:30:15Z",
+  "aliases": [
+    "CVE-2025-52435"
+  ],
+  "details": "J2EE Misconfiguration: Data Transmission Without Encryption vulnerability in Apache NimBLE.\n\nImproper handling of Pause Encryption procedure on Link Layer results in a previously encrypted connection being left in un-encrypted state allowing an eavesdropper to observe the remainder of the exchange.\nThis issue affects Apache NimBLE: through <= 1.8.0.\n\nUsers are recommended to upgrade to version 1.9.0, which fixes the issue.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52435"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/apache/mynewt-nimble/commit/164f1c23c18a290908df76ed83fe848bfe4a4903"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/apache/mynewt-nimble/commit/ec3d75e909fa6dcadf1836fefc4432794a673d18"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.apache.org/thread/ow8dzpsqfh9llfclh5fzh6z237brzc0s"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2026/01/08/1"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-10T10:15:50Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-6phw-p8vc-q8gp/GHSA-6phw-p8vc-q8gp.json

@@ -0,0 +1,43 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-6phw-p8vc-q8gp",
+  "modified": "2026-01-10T12:30:16Z",
+  "published": "2026-01-10T12:30:16Z",
+  "aliases": [
+    "CVE-2025-53477"
+  ],
+  "details": "NULL Pointer Dereference vulnerability in Apache Nimble.\n\nMissing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference.\nThis issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low.\n\nThis issue affects Apache NimBLE: through 1.8.0.\n\nUsers are recommended to upgrade to version 1.9.0, which fixes the issue.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-53477"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/apache/mynewt-nimble/commit/0caf9baeb271ede85fcc5237ab87ddbf938600da"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/apache/mynewt-nimble/commit/3160b8c4c7ff8db4e0f9badcdf7df684b151e077"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.apache.org/thread/1dxthc132hwm2tzvjblrtnschcsbw2vo"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2026/01/08/3"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-476"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-10T10:15:50Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-8643-3fq3-vwcr/GHSA-8643-3fq3-vwcr.json

@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-8643-3fq3-vwcr",
+  "modified": "2026-01-10T12:30:16Z",
+  "published": "2026-01-10T12:30:16Z",
+  "aliases": [
+    "CVE-2026-0831"
+  ],
+  "details": "The Templately plugin for WordPress is vulnerable to Arbitrary File Write in all versions up to, and including, 3.4.8. This is due to inadequate input validation in the `save_template_to_file()` function where user-controlled parameters like `session_id`, `content_id`, and `ai_page_ids` are used to construct file paths without proper sanitization. This makes it possible for unauthenticated attackers to write arbitrary `.ai.json` files to locations within the uploads directory.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-0831"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/templately/tags/3.4.5/includes/API/AIContent.php#L38"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/templately/tags/3.4.5/includes/Core/Importer/Utils/AIUtils.php#L414"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3426051"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/778242f4-5dfa-4d72-a032-8b5521c5b8ce?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-863"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-10T10:15:50Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-8mfp-xmv3-hv35/GHSA-8mfp-xmv3-hv35.json

@@ -0,0 +1,39 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-8mfp-xmv3-hv35",
+  "modified": "2026-01-10T12:30:16Z",
+  "published": "2026-01-10T12:30:15Z",
+  "aliases": [
+    "CVE-2025-62235"
+  ],
+  "details": "Authentication Bypass by Spoofing vulnerability in Apache NimBLE.\n\nReceiving specially crafted Security Request could lead to removal of original bond and re-bond with impostor.\nThis issue affects Apache NimBLE: through 1.8.0.\n\nUsers are recommended to upgrade to version 1.9.0, which fixes the issue.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-62235"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/apache/mynewt-nimble/commit/41f67e391e788c5feef9030026cc5cbc5431838a"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.apache.org/thread/rw2mrpfwb9d9wmq4h4b6ctcd6gpkk2ho"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2026/01/08/4"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-290"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-10T10:15:50Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-mjjp-xjfg-97wg/GHSA-mjjp-xjfg-97wg.json

@@ -0,0 +1,68 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-mjjp-xjfg-97wg",
+  "modified": "2026-01-10T12:30:16Z",
+  "published": "2026-01-10T12:30:16Z",
+  "aliases": [
+    "CVE-2025-15504"
+  ],
+  "details": "A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parse_binary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. Upgrading to version 0.17.2 can resolve this issue. The patch is identified as 81bd5d7ea0c390563f1c4c017c9019d154802978. It is recommended to upgrade the affected component.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15504"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/lief-project/LIEF/issues/1277"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/lief-project/LIEF/issues/1277#issuecomment-3693859001"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/lief-project/LIEF/commit/81bd5d7ea0c390563f1c4c017c9019d154802978"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/lief-project/LIEF/releases/tag/0.17.2"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/oneafter/1210/blob/main/segv1"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.340375"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.340375"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.733329"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-404"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-10T12:15:49Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-p54q-9gfq-fvp4/GHSA-p54q-9gfq-fvp4.json

@@ -0,0 +1,39 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-p54q-9gfq-fvp4",
+  "modified": "2026-01-10T12:30:16Z",
+  "published": "2026-01-10T12:30:15Z",
+  "aliases": [
+    "CVE-2025-53470"
+  ],
+  "details": "Out-of-bounds Read vulnerability in Apache  NimBLE HCI H4 driver. Specially crafted HCI event could lead to invalid memory read in H4 driver.\n\nThis issue affects Apache NimBLE: through 1.8. \n\nThis issue requires a broken or bogus Bluetooth controller and thus severity is considered low.\n\nUsers are recommended to upgrade to version 1.9, which fixes the issue.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-53470"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/apache/mynewt-nimble/commit/b973df0c6cf7b30efbf8eb2cafdc1ee843464b76"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.apache.org/thread/32sm0944dyod4sdql77stgyw9xb2msc0"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2026/01/08/2"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-125"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-10T10:15:50Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-q82x-ch97-83xv/GHSA-q82x-ch97-83xv.json

@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-q82x-ch97-83xv",
+  "modified": "2026-01-10T12:30:16Z",
+  "published": "2026-01-10T12:30:16Z",
+  "aliases": [
+    "CVE-2025-14506"
+  ],
+  "details": "The ConvertForce Popup Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Gutenberg block's `entrance_animation` attribute in all versions up to, and including, 0.0.7. This is due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14506"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/convertforce-popup-builder/trunk/inc/Blocks/Conversion.php#L47"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/convertforce-popup-builder/trunk/inc/Blocks/Conversion.php#L66"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3419678"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/c57b9a78-53f4-40bb-ae6a-c5242b41329f?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-10T12:15:48Z"
+  }
+}