CVE-2025-46652 – IZArc Mark-of-the-Web Bypass Information Disclosure Vulnerability

April 26, 2025

CVE ID : CVE-2025-46652

Published : April 26, 2025, 6:15 p.m. | 48 minutes ago

Description : In IZArc through 4.5, there is a Mark-of-the-Web Bypass Vulnerability. When a user performs an extraction from an archive file that bears Mark-of-the-Web, Mark-of-the-Web is not propagated to the extracted files.

Severity: 6.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleOtter is a self-hosted bookmark manager

Next Article CVE-2025-46646 – Ghostscript UTF-8 Encoding Vulnerability

How To Prevent WordPress SQL Injection Attacks

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Databricks adds new tools like Lakebase, Lakeflow Designer, and Agent Bricks to better support building AI apps and agents in the enterprise

Zencoder launches end-to-end UI testing agent

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

OpenAI shifts to Google for cloud computing support as Microsoft partnership falters, despite Sam Altman’s “compute-sufficient” claim

Clair Obscur: Expedition 33 now lets you rematch the game’s most brutal boss

The Alters PC review: I’m rethinking my own life paths after falling in love with a sci-fi game

SVAR Svelte Filter: Visual Query Builder for Data-Driven Apps

SVAR Svelte Filter: Visual Query Builder for Data-Driven Apps

Developing a Serverless Blogging Platform with AWS Lambda and Python

YAML files in DBT

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

OpenAI shifts to Google for cloud computing support as Microsoft partnership falters, despite Sam Altman’s “compute-sufficient” claim

Clair Obscur: Expedition 33 now lets you rematch the game’s most brutal boss

CVE-2025-46652 – IZArc Mark-of-the-Web Bypass Information Disclosure Vulnerability

Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction

EchoLeak Zero-Click AI Attack in Microsoft Copilot Exposes Company Data

Cyber Brief 25-05 – April 2025

CVE-2024-12863 – OpenText Content Management CE Stored Cross-Site Scripting Vulnerability

CVE-2025-1976 – Brocade Fabric OS Root Privilege Escalation

Sitecore Search Source Types – Part I

CVE-2025-47949 – Samlify SAML Response Signature Wrapping Vulnerability

Microsoft unveils 9 new Copilot features – you can try some now

LLMs Can Now Learn without Labels: Researchers from Tsinghua University and Shanghai AI Lab Introduce Test-Time Reinforcement Learning (TTRL) to Enable Self-Evolving Language Models Using Unlabeled Data

TikTok adds X-style community notes – here’s how you can apply

CVE-2025-46652 – IZArc Mark-of-the-Web Bypass Information Disclosure Vulnerability

Related Posts