CVE-2025-7370 – Libsoup Cookie Parsing NULL Pointer Dereference Vulnerability

July 10, 2025

CVE ID : CVE-2025-7370

Published : July 10, 2025, 3:15 p.m. | 4 hours, 3 minutes ago

Description : A flaw was found in libsoup. A NULL pointer dereference vulnerability occurs in libsoup’s cookie parsing functionality. When processing a cookie without a domain parameter, the soup_cookie_jar_add_cookie() function will crash, resulting in a denial of service.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7408 – SourceCodester Zoo Management System Cross-Site Scripting Vulnerability

Next Article CVE-2025-46835 – Git GUI Directory Traversal Write Permission Vulnerability

Highlights

CVE-2012-10033 – Narcissus PHP Remote Code Execution Vulnerability

August 5, 2025

CVE ID : CVE-2012-10033

Published : Aug. 5, 2025, 8:15 p.m. | 3 hours, 10 minutes ago

Description : Narcissus is vulnerable to remote code execution via improper input handling in its image configuration workflow. Specifically, the backend.php script fails to sanitize the release parameter before passing it to the configure_image() function. This function invokes PHP’s passthru() with the unsanitized input, allowing attackers to inject arbitrary system commands. Exploitation occurs via a crafted POST request, resulting in command execution under the web server’s context.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Optimizing PWAs For Different Display Modes

Node.js Web App Development Costs: A 2025 Executive Pricing Guide

Google locking down Android security with upcoming developer verification requirements for sideloaded apps

Microsoft donates DocumentDB to the Linux Foundation

Google can translate your voice in real time now – try it free

The one-click Linux app I use for instant online anonymity

You can try Android 16’s new lock screen widgets – if you have one of these phones

Apple’s iPhone 17 event launch date is official – here’s everything we expect

Password Strength Estimator Validation in Laravel

Password Strength Estimator Validation in Laravel

Laravel’s Enhanced String Validation with Inverse Methods

Using SQLite in production with Laravel

Microsoft Excel just got a Copilot function — but the new AI has some surprising limitations

Microsoft Excel just got a Copilot function — but the new AI has some surprising limitations

Why Final Fantasy XIV fans are review‑bombing the game on Steam

Google Chrome VPN under fire for secretly screenshotting users’ browsing habits

CVE-2025-7370 – Libsoup Cookie Parsing NULL Pointer Dereference Vulnerability

Yemen Cyber Army hacker jailed after stealing millions of people’s data

CISA Adds Three Exploited Vulnerabilities to KEV Catalog Affecting Citrix and Git

If you just bought a Surface Pro 12-inch, don’t forget to grab these 7 accessories — They’re ALL discounted for Prime Day!

Sony Unveils FlexStrike, Its First Wireless Fight Stick for PS5 and PC

Rilasciato Mozilla Firefox 138: tutte le novità del browser open-source

CVE-2025-43015 – JetBrains RubyMine Remote Port Overwrite

CVE-2012-10033 – Narcissus PHP Remote Code Execution Vulnerability

PHP 8.5.0 Alpha 4 available for testing

CVE-2025-20276 – “Cisco Unified CCX Java Deserialization Remote Code Execution Vulnerability”

Understanding Flame Graphs in Node.js (and How AI Makes Them Easier with N|Solid)

CVE-2025-7370 – Libsoup Cookie Parsing NULL Pointer Dereference Vulnerability

Related Posts