CVE-2025-54833 – OPEXUS FOIAXpress Bypass Account-Lockout and CAPTCHA Protection Vulnerability

July 31, 2025

CVE ID : CVE-2025-54833

Published : July 31, 2025, 6:15 p.m. | 6 hours, 11 minutes ago

Description : OPEXUS FOIAXpress Public Access Link (PAL) version v11.1.0 allows attackers to bypass account-lockout and CAPTCHA protections. Unauthenticated remote attackers can more easily brute force passwords.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-8426 – Marvell QConvergeConsole Directory Traversal and Information Disclosure/DoS

Next Article CVE-2025-54834 – OPEXUS FOIAXpress Information Disclosure Vulnerability

Highlights

CVE-2025-5864 – Tenda TDSEE App Authentication Bypass

June 9, 2025

CVE ID : CVE-2025-5864

Published : June 9, 2025, 6:15 a.m. | 3 hours, 23 minutes ago

Description : A vulnerability was found in Tenda TDSEE App up to 1.7.12. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/ConfirmSmsCode of the component Password Reset Confirmation Code Handler. The manipulation leads to improper restriction of excessive authentication attempts. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. Upgrading to version 1.7.15 is able to address this issue. It is recommended to upgrade the affected component.

Severity: 3.7 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Representative Line: Brace Yourself

Beyond the Pilot: A Playbook for Enterprise-Scale Agentic AI

GitHub launches MCP Registry to provide central location for trusted servers

MongoDB brings Search and Vector Search to self-managed versions of database

Distribution Release: Security Onion 2.4.180

Distribution Release: Omarchy 3.0.1

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

Shopping Portal using Python Django & MySQL

Perficient Earns Adobe’s Real-time CDP Specialization

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Review: Elecrow’s All-in-one Starter Kit for Pico 2

FOSS Weekly #25.38: GNOME 49 Release, KDE Drama, sudo vs sudo-rs, Local AI on Android and More Linux Stuff

CVE-2025-54833 – OPEXUS FOIAXpress Bypass Account-Lockout and CAPTCHA Protection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

FOSS Weekly #25.36: Ubuntu 25.10 Features, Top Command, Firefox Survives, Sudo Tips and More

CVE-2025-49449 – WP Map Plugins Interactive Regional Map of Africa CSRF Vulnerability

CVE-2025-49223 – Billboard.js Prototype Pollution Vulnerability

CVE-2025-20217 – Cisco Secure Firewall Threat Defense (FTD) Snort 3 Packet Inspection Denial of Service

CVE-2025-5864 – Tenda TDSEE App Authentication Bypass

Meta AI Introduces Token-Shuffle: A Simple AI Approach to Reducing Image Tokens in Transformers

Updo – website monitoring tool

Tunnel Run game in 170 lines of pure JS

CVE-2025-54833 – OPEXUS FOIAXpress Bypass Account-Lockout and CAPTCHA Protection Vulnerability

Related Posts