CVE-2025-54446 – Samsung MagicINFO 9 Server Path Traversal

July 23, 2025

CVE ID : CVE-2025-54446

Published : July 23, 2025, 6:15 a.m. | 18 hours, 14 minutes ago

Description : Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-54449 – Samsung Electronics MagicINFO 9 Server Unrestricted File Upload Code Injection Vulnerability

Next Article CVE-2025-54445 – Samsung MagicINFO 9 Server XML External Entity Reference SSRF

Highlights

CVE-2025-46337 – ADOdb PostgreSQL SQL Injection Vulnerability

May 1, 2025

CVE ID : CVE-2025-46337

Published : May 1, 2025, 6:15 p.m. | 1 hour, 53 minutes ago

Description : ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and calls pg_insert_id() with user-supplied data. This issue has been patched in version 5.22.9.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Value-Driven AI Roadmap

This week in AI updates: Mistral’s new Le Chat features, ChatGPT updates, and more (September 5, 2025)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Lenovo Legion Go 2 specs unveiled: The handheld gaming device to watch this October

As Windows 10 support ends, users weigh costly extended security program against upgrading to Windows 11

Lenovo’s Legion Glasses 2 update could change handheld gaming

Is Lenovo’s refreshed LOQ tower enough to compete? New OLED monitors raise the stakes at IFA 2025

External Forces Reshaping Financial Services in 2025 and Beyond

External Forces Reshaping Financial Services in 2025 and Beyond

Why It’s Time to Move from SharePoint On-Premises to SharePoint Online

Apple’s Big Move: The Future of Mobile

Lenovo Legion Go 2 specs unveiled: The handheld gaming device to watch this October

Lenovo Legion Go 2 specs unveiled: The handheld gaming device to watch this October

As Windows 10 support ends, users weigh costly extended security program against upgrading to Windows 11

Lenovo’s Legion Glasses 2 update could change handheld gaming

CVE-2025-54446 – Samsung MagicINFO 9 Server Path Traversal

20 Popular npm Packages With 2 Billion Weekly Downloads Compromised in Supply Chain Attack

TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs

Multiple Critical Vulnerabilities in D-Link Routers Let Attackers Execute Arbitrary Code Remotely

GTA 5 is coming back to Xbox Game Pass apparently, this time with PC and Cloud in tow

CVE-2025-7547 – Campcodes Online Movie Theater Seat Reservation System Unrestricted File Upload Vulnerability

GitLab 18 integrates AI capabilities from Duo

CVE-2025-46337 – ADOdb PostgreSQL SQL Injection Vulnerability

CVE-2025-20976 – Samsung Notes Out-of-Bounds Read Vulnerability

Serverless Image Processing Pipeline with AWS ECS and Lambda

Understanding concepts in Event Driven Architectures (EDA)

CVE-2025-54446 – Samsung MagicINFO 9 Server Path Traversal

Related Posts