CVE-2025-47244 – Inedo ProGet C# Reflection Layer Remote Code Execution and Denial of Service

May 3, 2025

CVE ID : CVE-2025-47244

Published : May 3, 2025, 11:15 p.m. | 2 hours, 16 minutes ago

Description : Inedo ProGet through 2024.22 allows remote attackers to reach restricted functionality through the C# reflection layer, as demonstrated by causing a denial of service (when an attacker executes a loop calling RestartWeb) or obtaining potentially sensitive information. Exploitation can occur if Anonymous access is enabled, or if there is a successful CSRF attack.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47245 – BlueWave Checkmate Role Tampering Vulnerability

Next Article CVE-2025-2774: Webmin Vulnerability Allows Root-Level Privilege Escalation

Highlights

CVE-2025-2851 – GL.iNet RPC Handler Buffer Overflow

April 26, 2025

CVE ID : CVE-2025-2851

Published : April 26, 2025, 8:15 a.m. | 3 hours, 49 minutes ago

Description : A vulnerability classified as critical has been found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 Shadow, GL-AR300M Shadow, GL-AR750 Creta, GL-AR750S-EXT Slate, GL-AX1800 Flint, GL-AXT1800 Slate AX, GL-B1300 Convexa-B, GL-B3000 Marble, GL-BE3600 Slate 7, GL-E750, GL-E750V2 Mudi, GL-MT300N-V2 Mango, GL-MT1300 Beryl, GL-MT2500 Brume 2, GL-MT3000 Beryl AX, GL-MT6000 Flint 2, GL-SFT1200 Opal, GL-X300B Collie, GL-X750 Spitz, GL-X3000 Spitz AX, GL-XE300 Puli and GL-XE3000 Puli AX 4.x. Affected is an unknown function of the file plugins.so of the component RPC Handler. The manipulation leads to buffer overflow. It is recommended to upgrade the affected component.

Severity: 8.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

My top gaming laptop of 2024 defended its crown with a redesign, but lost one of my favorite features

“I do agree that Diablo 4 still has a lot of untapped potential,” Diablo 4 developers discuss Season 8 themes, their evolving developer philosophy, and more

Thanks to Xbox’s price hike, the Series S is now more expensive than the PS5

Elden Ring Nightreign classes: All 8 Nightfarer characters in FromSoftware’s co-op spinoff explained

Brisa 0.2.12 – Near 0.3 🔜

Brisa 0.2.12 – Near 0.3 🔜

Essential Git Command Reference: The Core Operations Every Developer Needs

nativephp/electron

Microsoft’s Bing share is now 12.2%, Google drops to 79.10%, and it’s not due to ChatGPT

Microsoft’s Bing share is now 12.2%, Google drops to 79.10%, and it’s not due to ChatGPT

MeshLab processes and edits 3D triangular meshes

NVIDIA_OC overclocks NVIDIA GPUs

CVE-2025-47244 – Inedo ProGet C# Reflection Layer Remote Code Execution and Denial of Service

CISA Adds Two New Exploited Vulnerabilities to Its Catalog: CVE-2024-38475 and CVE-2023-44221

watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices

Three Questions I Ask Before Starting a New Design Project

Hidden Tools for Designers in 2025

Itâ€™s Time to Disrupt Visual Regression Testing

UB-Mesh: A Cost-Efficient, Scalable Network Architecture for Large-Scale LLM Training

CVE-2025-2851 – GL.iNet RPC Handler Buffer Overflow

CVE-2025-41395 – Mattermost Denial of Service (DoS) Vulnerability

CVE-2024-58253 – Obfstr Crate Invalid UTF-8 Conversion Vulnerability

Microsoft introduces Phi-4 reasoning SLM models — Still “making big leaps in AI” while its partnership with OpenAI frays

CVE-2025-47244 – Inedo ProGet C# Reflection Layer Remote Code Execution and Denial of Service

Related Posts