CVE-2025-25218 – OpenHarmony NULL Pointer Dereference DOS Vulnerability

May 6, 2025

CVE ID : CVE-2025-25218

Published : May 6, 2025, 9:15 a.m. | 1 hour, 12 minutes ago

Description : in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4341 – D-Link DIR-880L Command Injection Vulnerability

Next Article CVE-2025-27241 – OpenHarmony NULL Pointer Dereference Denial of Service Vulnerability

Highlights

CVE-2025-3107 – “WordPress Newsletters SQL Injection Vulnerability”

May 13, 2025

CVE ID : CVE-2025-3107

Published : May 13, 2025, 7:15 a.m. | 1 hour, 23 minutes ago

Description : The Newsletters plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 4.9.9.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Contributor-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Representative Line: Brace Yourself

Beyond the Pilot: A Playbook for Enterprise-Scale Agentic AI

GitHub launches MCP Registry to provide central location for trusted servers

MongoDB brings Search and Vector Search to self-managed versions of database

Distribution Release: Security Onion 2.4.180

Distribution Release: Omarchy 3.0.1

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

Shopping Portal using Python Django & MySQL

Perficient Earns Adobe’s Real-time CDP Specialization

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Review: Elecrow’s All-in-one Starter Kit for Pico 2

FOSS Weekly #25.38: GNOME 49 Release, KDE Drama, sudo vs sudo-rs, Local AI on Android and More Linux Stuff

CVE-2025-25218 – OpenHarmony NULL Pointer Dereference DOS Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

You only have a short time left to own the only official John Wick video game — soon it’ll be gone for good

Apple’s gloves-on approach with AI is giving Siri a bad look — Former staffers say it’s a “hot potato” being tossed around AIMLessly

Error’d: Voluntold

CVE-2025-1327 – “Homey WordPress Theme Insecure Direct Object Reference Vulnerability”

CVE-2025-3107 – “WordPress Newsletters SQL Injection Vulnerability”

Building Autonomous AI Agents: Unlocking Scalable Growth for Modern Businesses🤖

Microsoft unveils new Start menu for Windows 11 with customizable layout and Phone Link integration

CVE-2025-49087 – Mbed TLS Block Cipher Padding Timing Attack

CVE-2025-25218 – OpenHarmony NULL Pointer Dereference DOS Vulnerability

Related Posts