CVE-2025-26846 – Znuny Generic Interface Unauthenticated Remote Code Execution

May 12, 2025

CVE ID : CVE-2025-26846

Published : May 12, 2025, 3:15 p.m. | 1 hour, 18 minutes ago

Description : An issue was discovered in Znuny before 7.1.4. Permissions are not checked properly when using the Generic Interface to update ticket metadata.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46610 – Artec EMA Mail CSRF Vulnerability

Next Article CVE-2025-26841 – WPEverest Everest Forms Cross-Site Scripting (XSS)

Highlights

CVE-2025-7144 – SourceCodester Best Salon Management System Cross-Site Scripting Vulnerability

July 7, 2025

CVE ID : CVE-2025-7144

Published : July 7, 2025, 9:15 p.m. | 1 hour, 29 minutes ago

Description : A vulnerability has been found in SourceCodester Best Salon Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /panel/admin-profile.php of the component Admin Profile Page. The manipulation of the argument Admin Name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Coded Smorgasbord: High Strung

Chainguard launches trusted collection of verified JavaScript libraries

CData launches Connect AI to provide agents access to enterprise data sources

PostgreSQL 18 adds asynchronous I/O to improve performance

Distribution Release: Neptune 9.0

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

PHP 8.5.0 RC 1 available for testing

PHP 8.5.0 RC 1 available for testing

Terraform Code Generator Using Ollama and CodeGemma

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Distribution Release: Neptune 9.0

Distribution Release: Neptune 9.0

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

CVE-2025-26846 – Znuny Generic Interface Unauthenticated Remote Code Execution

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

How to Build a Word Search Game Using HTML, CSS, and JavaScript

Microsoft Patch Tuesday June 2025 – Exploited zero-day and Other 65 Vulnerabilities Patched

CVE-2025-27721 – INFINITT PACS Unauthenticated System Manager Access

CodeSOD: Round Strips

CVE-2025-7144 – SourceCodester Best Salon Management System Cross-Site Scripting Vulnerability

Sonatype Open Source Malware Index, Gemini API Batch Mode, and more – Daily News Digest

NVIDIA Riva Vulnerabilities Leave AI-Powered Speech and Translation Services at Risk

CVE-2025-50164 – Microsoft Windows RRAS Heap-based Buffer Overflow Vulnerability

CVE-2025-26846 – Znuny Generic Interface Unauthenticated Remote Code Execution

Related Posts