An issue was discovered in Zeroheight (SaaS) prior to 2025-06-13. A legacy user creation API pathway allowed accounts to be created without completing the intended email verification step. While unverified accounts could not access product functionality, the behavior bypassed intended verification controls and allowed unintended account creation. This could have enabled spam/fake account creation or resource usage impact. No data exposure or unauthorized access to existing accounts was reported.

CVE Database V5

Detailed information about CVE-2025-65925: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-65925: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-65925: n/a

A vulnerability was identified in Edimax BR-6208AC 1.02/1.03. Affected is the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component Web-based Configuration Interface. The manipulation of the argument rootAPmac leads to command injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used. Edimax confirms this issue: "The product mentioned, EDIMAX BR-6208AC V2, has reached its End of Life (EOL) status. It is no longer supported or maintained by Edimax, and it is no longer available for purchase in the market. Consequently, there will be no further firmware updates or patches for this device. We recommend users upgrade to newer models for better security." This vulnerability only affects products that are no longer supported by the maintainer.

Detailed information about CVE-2025-15256: Command Injection in Edimax BR-6208AC affecting Edimax BR-6208AC. Get real-time updates, technical details, and mitig

CVE-2025-15256: Command Injection in Edimax BR-6208AC - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-15256: Command Injection in Edimax BR-6208AC

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yada Wiki yada-wiki allows Stored XSS.This issue affects Yada Wiki: from n/a through 3.5.

Detailed information about CVE-2025-66094: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in dmccan Yada Wiki affec

CVE-2025-66094: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in dmccan Yada Wiki - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-66094: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in dmccan Yada Wiki

Missing Authorization vulnerability in SiteLock SiteLock Security allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SiteLock Security: from n/a through 5.0.1.

Detailed information about CVE-2025-62128: CWE-862 Missing Authorization in SiteLock SiteLock Security affecting SiteLock SiteLock Security. Get real-time updat

CVE-2025-62128: CWE-862 Missing Authorization in SiteLock SiteLock Security - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-62128: CWE-862 Missing Authorization in SiteLock SiteLock Security

Cross-Site Request Forgery (CSRF) vulnerability in Merv Barrett Import into Easy Property Listings allows Cross Site Request Forgery.This issue affects Import into Easy Property Listings: from n/a through 2.2.1.

Detailed information about CVE-2025-62112: CWE-352 Cross-Site Request Forgery (CSRF) in Merv Barrett Import into Easy Property Listings affecting Merv Barrett I

CVE-2025-62112: CWE-352 Cross-Site Request Forgery (CSRF) in Merv Barrett Import into Easy Property Listings - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-62112: CWE-352 Cross-Site Request Forgery (CSRF) in Merv Barrett Import into Easy Property Listings

Detailed information about CVE-2023-54054. Get real-time updates, technical details, and mitigation strategies.

CVE-2023-54054

CVE-2023-54054

Technical Details

Community Reviews

Related Threats

CVE-2025-65925: n/a

CVE-2025-15256: Command Injection in Edimax BR-6208AC

CVE-2025-66094: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in dmccan Yada Wiki

CVE-2025-62128: CWE-862 Missing Authorization in SiteLock SiteLock Security

CVE-2025-62112: CWE-352 Cross-Site Request Forgery (CSRF) in Merv Barrett Import into Easy Property Listings

Actions

External Links

Need more coverage?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility