CVE-2025-50151 – File access paths in configuration files uploaded

July 21, 2025

CVE ID : CVE-2025-50151

Published : July 21, 2025, 10:15 a.m. | 13 hours, 59 minutes ago

Description : File access paths in configuration files uploaded by users with administrator access are not validated.

This issue affects Apache Jena version up to 5.4.0.

Users are recommended to upgrade to version 5.5.0, which does not allow arbitrary configuration upload.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-13974 – A business logic vulnerability in the Up2Date comp

Next Article CVE-2024-6107 – Due to insufficient verification, an attacker coul

Highlights

CVE-2025-29534 – PowerStick Wave Dual-Band Wifi Extender Remote Code Execution Vulnerability

July 28, 2025

CVE ID : CVE-2025-29534

Published : July 28, 2025, 8:17 p.m. | 4 hours, 20 minutes ago

Description : An authenticated remote code execution vulnerability in PowerStick Wave Dual-Band Wifi Extender V1.0 allows an attacker with valid credentials to execute arbitrary commands with root privileges. The issue stems from insufficient sanitization of user-supplied input in the /cgi-bin/cgi_vista.cgi executable, which is passed to a system-level function call.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Value-Driven AI Roadmap

This week in AI updates: Mistral’s new Le Chat features, ChatGPT updates, and more (September 5, 2025)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

‘Job Hugging’ Trend Emerges as Workers Confront AI Uncertainty

Distribution Release: MocaccinoOS 25.09

Composition in CSS

DataCrunch raises €55M to boost EU AI sovereignty with green cloud infrastructure

Finally, safe array methods in JavaScript

Finally, safe array methods in JavaScript

Perficient Interviewed for Forrester Report on AI’s Transformative Role in DXPs

Perficient’s “What If? So What?” Podcast Wins Gold Stevie® Award for Technology Podcast

Distribution Release: MocaccinoOS 25.09

Distribution Release: MocaccinoOS 25.09

Speed Isn’t Everything When Buying SSDs – Here’s What Really Matters!

14 Themes for Beautifying Your Ghostty Terminal

CVE-2025-50151 – File access paths in configuration files uploaded

Qantas Airways Slashes CEO Bonus After Cyberattack Exposes 5.7 Million Customers

UAE Cyber Security Council Flags 70% Smart Home Devices as Vulnerable

Kong AI Gateway 3.11 introduces new method for reducing token costs

FACTS Grounding: A new benchmark for evaluating the factuality of large language models

Noisy Bear Targets Kazakhstan Energy Sector With BarrelFire Phishing Campaign

CVE-2025-27248 – Huawei OpenHarmony NULL Pointer Dereference DOS

CVE-2025-29534 – PowerStick Wave Dual-Band Wifi Extender Remote Code Execution Vulnerability

CVE-2025-4664 – Google Chrome Cross-Origin Data Leaking Vulnerability

Subatomic Update: Publishing & Adopting Design Token Systems!

Benchmarking the Orange Pi R2S Single Board Computer

CVE-2025-50151 – File access paths in configuration files uploaded

Related Posts