CVE-2025-48921 – Drupal Open Social CSRF Vulnerability

June 26, 2025

CVE ID : CVE-2025-48921

Published : June 26, 2025, 2:15 p.m. | 49 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in Drupal Open Social allows Cross Site Request Forgery.This issue affects Open Social: from 0.0.0 before 12.3.14, from 12.4.0 before 12.4.13.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49003 – DataEase Java RCE (Character Conversion)

Next Article CVE-2025-52573 – “iOS Simulator MCP Server Command Injection Vulnerability”

Highlights

CVE-2025-3482 – MedDream PACS Server DICOM File Parsing Remote Code Execution Vulnerability

May 22, 2025

CVE ID : CVE-2025-3482

Published : May 22, 2025, 1:15 a.m. | 1 hour, 35 minutes ago

Description : MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MedDream PACS Server. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the parsing of DICOM files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-25826.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-53031 – Oracle Financial Services Analytical Applications Infrastructure HTTP Unauthenticated Confidentiality Vulnerability

July 16, 2025

CVE-2025-45081 – IITB SSO Authentication Bypass

July 2, 2025

RedGolf Hackers Expose Fortinet Exploits & Tools Used to Hack Organizations

April 21, 2025

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

The coming AI smartphone: Redefining personal tech

Modern React animation libraries: Real examples for engaging UIs

How Debian 13’s little improvements add up to the distro’s surprisingly big leap forward

Why xAI is giving you ‘limited’ free access to Grok 4

How Apple may revamp Siri to a voice assistant I’d actually use (and ditch Gemini for)

I jump-started a bus from the 1930s with this power bank – here’s the verdict

Laravel’s UsePolicy Attribute: Explicit Authorization Control

Laravel’s UsePolicy Attribute: Explicit Authorization Control

The Laravel Way to Build AI Agents That Actually Work

The Laravel Way to Build AI Agents That Actually Work

Microsoft sued over killing support for Windows 10

Microsoft sued over killing support for Windows 10

Grok 4 rolled out for free-tier users worldwide, with some limits

Firefox AI slammed for hogging CPU and draining battery

CVE-2025-48921 – Drupal Open Social CSRF Vulnerability

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

BadCam Attack Turns Trusted Linux Webcams into Stealthy USB Weapons

How to use Lottie animations

Citrix warns of NetScaler vulnerability exploited in DoS attacks

Best Games Under 500 MB for PC To Install and Enjoy

Warhammer 40,000: Space Marine 2 update brings the new Trygon enemy, Space Wolves cosmetics, and more

CVE-2025-3482 – MedDream PACS Server DICOM File Parsing Remote Code Execution Vulnerability

CVE-2025-53031 – Oracle Financial Services Analytical Applications Infrastructure HTTP Unauthenticated Confidentiality Vulnerability

CVE-2025-45081 – IITB SSO Authentication Bypass

RedGolf Hackers Expose Fortinet Exploits & Tools Used to Hack Organizations

CVE-2025-48921 – Drupal Open Social CSRF Vulnerability

Related Posts