Skip to content

Commit f59aab8

Browse files
advisory-database[bot]advisory-database[bot]
committed
Publish Advisories
GHSA-xh5w-g8gq-r3v9 GHSA-4qpp-gxm3-h9vw GHSA-77r3-ghgf-32gr GHSA-g582-hp6c-fggw
1 parent 880db27 commit f59aab8

4 files changed

Lines changed: 108 additions & 2 deletions

File tree

advisories/github-reviewed/2025/11/GHSA-xh5w-g8gq-r3v9/GHSA-xh5w-g8gq-r3v9.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-xh5w-g8gq-r3v9",
4-
"modified": "2025-12-22T12:30:20Z",
4+
"modified": "2026-01-12T03:31:07Z",
55
"published": "2025-11-24T18:31:14Z",
66
"aliases": [
77
"CVE-2025-13609"
@@ -68,6 +68,10 @@
6868
"type": "WEB",
6969
"url": "https://access.redhat.com/errata/RHSA-2025:23852"
7070
},
71+
{
72+
"type": "WEB",
73+
"url": "https://access.redhat.com/errata/RHSA-2026:0429"
74+
},
7175
{
7276
"type": "WEB",
7377
"url": "https://access.redhat.com/security/cve/CVE-2025-13609"

advisories/unreviewed/2025/12/GHSA-4qpp-gxm3-h9vw/GHSA-4qpp-gxm3-h9vw.json

Lines changed: 13 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-4qpp-gxm3-h9vw",
4-
"modified": "2025-12-11T15:30:32Z",
4+
"modified": "2026-01-12T03:31:07Z",
55
"published": "2025-12-11T15:30:32Z",
66
"aliases": [
77
"CVE-2025-14523"
@@ -19,6 +19,18 @@
1919
"type": "ADVISORY",
2020
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14523"
2121
},
22+
{
23+
"type": "WEB",
24+
"url": "https://access.redhat.com/errata/RHSA-2026:0421"
25+
},
26+
{
27+
"type": "WEB",
28+
"url": "https://access.redhat.com/errata/RHSA-2026:0422"
29+
},
30+
{
31+
"type": "WEB",
32+
"url": "https://access.redhat.com/errata/RHSA-2026:0423"
33+
},
2234
{
2335
"type": "WEB",
2436
"url": "https://access.redhat.com/security/cve/CVE-2025-14523"

advisories/unreviewed/2026/01/GHSA-77r3-ghgf-32gr/GHSA-77r3-ghgf-32gr.json

Lines changed: 34 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,34 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-77r3-ghgf-32gr",
4+
"modified": "2026-01-12T03:31:07Z",
5+
"published": "2026-01-12T03:31:07Z",
6+
"aliases": [
7+
"CVE-2025-52694"
8+
],
9+
"details": "Successful exploitation of the SQL injection vulnerability could allow an unauthenticated remote attacker to execute arbitrary SQL commands on the vulnerable service when it is exposed to the Internet.",
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
14+
}
15+
],
16+
"affected": [],
17+
"references": [
18+
{
19+
"type": "ADVISORY",
20+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52694"
21+
},
22+
{
23+
"type": "WEB",
24+
"url": "https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-127"
25+
}
26+
],
27+
"database_specific": {
28+
"cwe_ids": [],
29+
"severity": "CRITICAL",
30+
"github_reviewed": false,
31+
"github_reviewed_at": null,
32+
"nvd_published_at": "2026-01-12T03:16:07Z"
33+
}
34+
}

advisories/unreviewed/2026/01/GHSA-g582-hp6c-fggw/GHSA-g582-hp6c-fggw.json

Lines changed: 56 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,56 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-g582-hp6c-fggw",
4+
"modified": "2026-01-12T03:31:07Z",
5+
"published": "2026-01-12T03:31:07Z",
6+
"aliases": [
7+
"CVE-2026-0852"
8+
],
9+
"details": "A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.",
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
14+
},
15+
{
16+
"type": "CVSS_V4",
17+
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
18+
}
19+
],
20+
"affected": [],
21+
"references": [
22+
{
23+
"type": "ADVISORY",
24+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-0852"
25+
},
26+
{
27+
"type": "WEB",
28+
"url": "https://github.com/Learner636/CVE-smbmit/issues/2"
29+
},
30+
{
31+
"type": "WEB",
32+
"url": "https://code-projects.org"
33+
},
34+
{
35+
"type": "WEB",
36+
"url": "https://vuldb.com/?ctiid.340447"
37+
},
38+
{
39+
"type": "WEB",
40+
"url": "https://vuldb.com/?id.340447"
41+
},
42+
{
43+
"type": "WEB",
44+
"url": "https://vuldb.com/?submit.734136"
45+
}
46+
],
47+
"database_specific": {
48+
"cwe_ids": [
49+
"CWE-74"
50+
],
51+
"severity": "MODERATE",
52+
"github_reviewed": false,
53+
"github_reviewed_at": null,
54+
"nvd_published_at": "2026-01-12T01:15:49Z"
55+
}
56+
}

0 commit comments

Comments
 (0)