CVE-2025-9174 – Neurobin Shc OS Command Injection Vulnerability

CVE ID : CVE-2025-9174

Published : Aug. 19, 2025, 11:15 p.m. | 2 hours, 28 minutes ago

Description : A vulnerability was determined in neurobin shc up to 4.0.3. This vulnerability affects the function make of the file src/shc.c of the component Filename Handler. Executing manipulation can lead to os command injection. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-9175 – Neurobin SHC Stack-Based Buffer Overflow

CVE ID : CVE-2025-9175

Published : Aug. 19, 2025, 11:15 p.m. | 2 hours, 28 minutes ago

Description : A vulnerability was identified in neurobin shc up to 4.0.3. This issue affects the function make of the file src/shc.c. The manipulation leads to stack-based buffer overflow. The attack can only be performed from a local environment. The exploit is publicly available and might be used.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-9176 – Neurobin shc OS Command Injection Vulnerability

CVE ID : CVE-2025-9176

Published : Aug. 20, 2025, 12:15 a.m. | 1 hour, 28 minutes ago

Description : A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of the file src/shc.c of the component Environment Variable Handler. The manipulation results in os command injection. The attack is only possible with local access. The exploit has been released to the public and may be exploited.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-9193 – TOTVS Portal Meu RH Open Redirect Vulnerability

CVE ID : CVE-2025-9193

Published : Aug. 20, 2025, 12:15 a.m. | 1 hour, 28 minutes ago

Description : A flaw has been found in TOTVS Portal Meu RH up to 12.1.17. Impacted is an unknown function of the component Password Reset Handler. Executing manipulation of the argument redirectUrl can lead to open redirect. The attack may be performed from a remote location. The exploit has been published and may be used. Upgrading to version 12.1.2410.274, 12.1.2502.178 and 12.1.2506.121 is recommended to address this issue. It is recommended to upgrade the affected component. The vendor explains, that “[o]ur internal validation (…) confirms that the reported behavior does not exist in currently supported releases. In these tests, the redirectUrl parameter is ignored, and no malicious redirection occurs.” This vulnerability only affects products that are no longer supported by the maintainer.

Severity: 5.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-12223 – Palo Alto Networks Prism Central Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2024-12223

Published : Aug. 20, 2025, 1:15 a.m. | 28 minutes ago

Description : Prism Central versions prior to 2024.3.1 are vulnerable to a stored cross-site scripting attack via the Events component, allowing an attacker to hijack a victim user’s session and perform actions in their security context.

Severity: 9.3 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-9132 – Google Chrome V8 Out-of-Bounds Heap Corruption Vulnerability

CVE ID : CVE-2025-9132

Published : Aug. 20, 2025, 1:15 a.m. | 28 minutes ago

Description : Out of bounds write in V8 in Google Chrome prior to 139.0.7258.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Pomolin – minimalist Pomodoro timer

Pomolin is billed as a simple, beautiful, and minimalist Pomodoro timer for your desktop. The post Pomolin – minimalist Pomodoro…