CVE-2025-52725 – CouponXxL PEBAS Object Injection Vulnerability

June 27, 2025

CVE ID : CVE-2025-52725

Published : June 27, 2025, 12:15 p.m. | 2 hours, 14 minutes ago

Description : Deserialization of Untrusted Data vulnerability in pebas CouponXxL allows Object Injection. This issue affects CouponXxL: from n/a through 3.0.0.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52726 – Pebas CouponXxL Custom Post Types Privilege Escalation Vulnerability

Next Article CVE-2025-52724 – BoldThemes Amwerk Object Injection Vulnerability

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

Forget YouTube’s ad blocker war — this Google AI Overviews clone might finally sell me on the $14/month Premium subscription

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

CVE-2025-52725 – CouponXxL PEBAS Object Injection Vulnerability

Qilin Ransomware Attack on NHS Causes Patient Death in the UK

CVE-2025-6817 – HDF5 Resource Consumption Denial of Service

Google Researchers Advance Diagnostic AI: AMIE Now Matches or Outperforms Primary Care Physicians Using Multimodal Reasoning with Gemini 2.0 Flash

AI-generated images are a legal mess – and still a very human process

Ago is a small static blog generator without any fuzz

Snowflake’s new AI agents make it easier for businesses to make sense of their data

CVE-2025-5024 – “GNOME Remote Desktop RDP Denial of Service Vulnerability”

Borderlands 4 is offering a free weapon skin and Golden Keys to unlock loot before the game is even out

PumaBot: New Stealthy Linux Botnet Evades Detection, Targets IoT Devices

Rethinking Toxic Data in LLM Pretraining: A Co-Design Approach for Improved Steerability and Detoxification

CVE-2025-52725 – CouponXxL PEBAS Object Injection Vulnerability

Related Posts