CVE-2025-54451 – Samsung Electronics MagicINFO 9 Server Code Injection Vulnerability

July 23, 2025

CVE ID : CVE-2025-54451

Published : July 23, 2025, 6:15 a.m. | 18 hours, 14 minutes ago

Description : Improper Control of Generation of Code (‘Code Injection’) vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-54454 – Samsung Electronics MagicINFO 9 Server Hard-coded Credentials Authentication Bypass Vulnerability

Next Article CVE-2025-54449 – Samsung Electronics MagicINFO 9 Server Unrestricted File Upload Code Injection Vulnerability

Highlights

CVE-2025-2506 – EDB pglogical Replication Connection Verification Bypass

May 22, 2025

CVE ID : CVE-2025-2506

Published : May 22, 2025, 4:15 p.m. | 31 minutes ago

Description : When pglogical attempts to replicate data, it does not verify it is using a replication connection, which means a user with CONNECT access to a database configured for replication can execute the pglogical command to obtain read access to replicated tables. When pglogical runs it should verify it is running on a replication connection but does not perform this check. This vulnerability was introduced in the pglogical 3.x codebase, which is proprietary to EDB. The same code base has been integrated into BDR/PGD 4 and 5.
To exploit the vulnerability the attacker needs at least CONNECT permissions to a database configured for replication and must understand a number of pglogical3/BDR specific commands and be able to decode the binary protocol.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Designing Better UX For Left-Handed People

This week in AI dev tools: Gemini 2.5 Flash-Lite, GitLab Duo Agent Platform beta, and more (July 25, 2025)

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

I ran with the Apple Watch and Samsung Watch 8 – here’s the better AI coach

8 smart home gadgets that instantly upgraded my house (and why they work)

I tested Panasonic’s new affordable LED TV model – here’s my brutally honest buying advice

OpenAI teases imminent GPT-5 launch. Here’s what to expect

NativePHP Is Entering Its Next Phase

NativePHP Is Entering Its Next Phase

Medical Card Generator Android App Project Using SQLite

The details of TC39’s last meeting

Elden Ring Nightreign’s Patch 1.02 update next week is adding a feature we’ve all been waiting for since launch — and another I’ve been begging for, too

Elden Ring Nightreign’s Patch 1.02 update next week is adding a feature we’ve all been waiting for since launch — and another I’ve been begging for, too

The next time you look at Microsoft Copilot, it may look back — but who asked for this?

5 Open Source Apps You Can use for Seamless File Transfer Between Linux and Android

CVE-2025-54451 – Samsung Electronics MagicINFO 9 Server Code Injection Vulnerability

SharePoint under fire: ToolShell attacks hit organizations worldwide

Rogue CAPTCHAs: Look out for phony verification pages spreading malware

Citrix bleeds again: This time a zero-day exploited – patch now

Better CSS Shapes Using shape() — Part 4: Close and Move

This crazy throwback to old-school ninja action games just got even crazier with its latest trailer, as it heads to Xbox and PC this summer

CVE-2025-5890 – Actions Toolkit Glob Regular Expression Complexity Vulnerability

CVE-2025-2506 – EDB pglogical Replication Connection Verification Bypass

CVE-2025-46576 – GoldenDB Database Permission Bypass Vulnerability

CVE-2025-6845 – “Simple Forum SQL Injection Vulnerability”

CVE-2025-4159 – PCMan FTP Server GLOB Command Handler Buffer Overflow Vulnerability

CVE-2025-54451 – Samsung Electronics MagicINFO 9 Server Code Injection Vulnerability

Related Posts