CVE-2025-6089 – Astun Technology iShare Maps Open Redirect Vulnerability

June 15, 2025

CVE ID : CVE-2025-6089

Published : June 15, 2025, 1:15 p.m. | 12 hours, 6 minutes ago

Description : A vulnerability has been found in Astun Technology iShare Maps 5.4.0 and classified as problematic. This vulnerability affects unknown code of the file atCheckJS.aspx. The manipulation of the argument ref leads to open redirect. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-21085 – PingFederate PostgreSQL OAuth2 Memory Exhaustion

Next Article CVE-2025-36041 – IBM MQ Operator Private Key Configuration Vulnerability

Highlights

CVE-2025-3466 – Langgenius Dify Arbitrary Code Execution Vulnerability

July 7, 2025

CVE ID : CVE-2025-3466

Published : July 7, 2025, 10:15 a.m. | 2 hours, 54 minutes ago

Description : langgenius/dify versions 1.1.0 to 1.1.2 are vulnerable to unsanitized input in the code node, allowing execution of arbitrary code with full root permissions. The vulnerability arises from the ability to override global functions in JavaScript, such as parseInt, before sandbox security restrictions are imposed. This can lead to unauthorized access to secret keys, internal network servers, and lateral movement within dify.ai. The issue is resolved in version 1.1.3.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

I Ran Local LLMs on My Android Phone

I Ran Local LLMs on My Android Phone

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

CVE-2025-6089 – Astun Technology iShare Maps Open Redirect Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

The UX-Dev Relay – How to Pass the Baton Effectively

CVE-2025-37101 – HPE OneView for VMware vCenter Vertical Privilege Escalation

CVE-2025-4890 – Code-projects Tourism Management System Stack-Based Buffer Overflow Vulnerability

Stealth Falcon Exploits New Zero-Day (CVE-2025-33053) in Sophisticated Cyberespionage Campaign

CVE-2025-3466 – Langgenius Dify Arbitrary Code Execution Vulnerability

CVE-2025-43200 – Apple WatchOS/IOS/MacOS/iPadOS/VisionOS Photo/Video Processing Logic Vulnerability

Redefining Quality Engineering – Tricentis India Partner Event

Synology ABM Flaw (CVE-2025-4679) Leaks Global Client Secret, Exposing ALL Microsoft 365 Tenants

CVE-2025-6089 – Astun Technology iShare Maps Open Redirect Vulnerability

Related Posts