A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

CVE-2025-8159 is a critical stack-based buffer overflow vulnerability identified in the D-Link DIR-513 router, specifically version 1.0. The flaw resides in the HTTP POST request handler component, within the function formLanguageChange, which processes requests to the /goform/formLanguageChange endpoint. The vulnerability arises from improper handling of the 'curTime' argument, allowing an attacker to manipulate this input to overflow the stack buffer. This overflow can lead to arbitrary code execution or cause the device to crash, impacting the router's availability and potentially allowing remote attackers to gain control without requiring authentication or user interaction. The vulnerability is remotely exploitable over the network, increasing the risk profile. Although the affected product is no longer supported by D-Link, the exploit code has been publicly disclosed, raising the likelihood of exploitation by threat actors. The CVSS v4.0 score of 8.7 (high severity) reflects the vulnerability's ease of exploitation (no authentication or user interaction needed), and its significant impact on confidentiality, integrity, and availability. No official patches are available due to the product's end-of-life status, complicating remediation efforts. This vulnerability primarily affects legacy deployments of the DIR-513 router, which may still be in use in some environments despite its unsupported status.

CVE Database V5

Detailed information about CVE-2025-8159: Stack-based Buffer Overflow in D-Link DIR-513 affecting D-Link DIR-513. Get real-time updates, technical details, and 

CVE-2025-8159: Stack-based Buffer Overflow in D-Link DIR-513 - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-8159: Stack-based Buffer Overflow in D-Link DIR-513

A Cross-Site Scripting (XSS) vulnerability exists in the OPAC search feature of Koha Library Management System v24.05. Unsanitized input entered in the search field is reflected in the search history interface, leading to the execution of arbitrary JavaScript in the browser context when the user interacts with the interface.

CVE-2025-52360 is a Cross-Site Scripting (XSS) vulnerability identified in the OPAC (Online Public Access Catalog) search feature of the Koha Library Management System version 24.05. The vulnerability arises because the search input entered by users is not properly sanitized before being reflected in the search history interface. This lack of input validation allows an attacker to inject arbitrary JavaScript code into the search field, which is then stored and executed in the context of the user's browser when they interact with the search history interface. This type of stored XSS can lead to session hijacking, credential theft, or unauthorized actions performed on behalf of the user within the affected web application. Since the vulnerability is in the OPAC search feature, it potentially affects any user who accesses the search history, including library patrons and staff. The vulnerability does not require authentication to exploit, as the search feature is typically publicly accessible. However, exploitation requires user interaction with the maliciously crafted search history entry. No CVSS score has been assigned yet, and no known exploits are currently reported in the wild. The absence of patch links suggests that a fix may not yet be publicly available or that the vendor has not yet released an update addressing this issue.

Detailed information about CVE-2025-52360: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-52360: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-52360: n/a

CNCF Harbor 2.13.x before 2.13.1 and 2.12.x before 2.12.4 allows information disclosure by administrators who can exploit an ORM Leak present in the /api/v2.0/users endpoint to leak users' password hash and salt values. The q URL parameter allows a user to filter users by any column, and filter password=~ could be abused to leak out a user's password hash character by character. An attacker with administrator access could exploit this to leak highly sensitive information stored in the Harbor database. All endpoints that support the q URL parameter are vulnerable to this ORM leak attack.

CVE-2025-30086 is a vulnerability affecting CNCF Harbor versions 2.13.x prior to 2.13.1 and 2.12.x prior to 2.12.4. Harbor is a popular open-source container image registry that stores and serves container images, widely used in cloud-native environments. The vulnerability arises from an Object-Relational Mapping (ORM) leak in the /api/v2.0/users endpoint. Specifically, the q URL parameter allows filtering users by any column, including the password field. An attacker with administrator privileges can exploit this flaw by crafting queries such as filter password=~ to extract password hashes and salt values character by character. This side-channel style information disclosure enables the attacker to reconstruct sensitive credential data stored in the Harbor database. Since all endpoints supporting the q parameter are vulnerable, the attack surface extends beyond just the users endpoint. The vulnerability requires administrative access to Harbor, which means the attacker must already have elevated privileges within the system. However, once exploited, it can lead to the compromise of user credentials, potentially enabling lateral movement or privilege escalation within the container registry environment. No CVSS score has been assigned yet, and there are no known exploits in the wild at the time of publication. The flaw was reserved in March 2025 and published in July 2025, indicating recent discovery and disclosure. No official patches or mitigations are linked in the provided data, but the fixed versions are 2.13.1 and 2.12.4, implying that upgrading to these or later versions will remediate the issue.

Detailed information about CVE-2025-30086: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-30086: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-30086: n/a

How We Gained Full Access to a $100M Zero-Trust Startup

Source: https://zero-defense.com/blog/how-we-gained-full-access-to-a-100m-zero-trust-startup/

The provided information references a blog post titled "How We Gained Full Access to a $100M Zero-Trust Startup," which appears to detail a security assessment or penetration test resulting in full access to a company that employs zero-trust security principles. The source is a Reddit NetSec post linking to zero-defense.com, a blog that likely specializes in security research or red teaming. However, the data lacks specific technical details such as the vulnerability exploited, attack vectors, affected software versions, or the nature of the zero-trust implementation bypassed. The absence of CWE identifiers, patch links, or known exploits in the wild further limits the technical depth. The severity is noted as medium, but without concrete exploitability or impact metrics. The narrative suggests a successful compromise of a high-value target (a $100M startup), indicating that even zero-trust architectures can have weaknesses if not properly implemented or if overlooked attack surfaces exist. The minimal discussion level and zero Reddit score imply limited community validation or scrutiny at this time. Overall, this represents a case study or proof-of-concept highlighting potential gaps in zero-trust deployments rather than a widespread or actively exploited vulnerability.

Reddit NetSec

Detailed information about How We Gained Full Access to a $100M Zero-Trust Startup. Get real-time updates, technical details, and mitigation strategies.

How We Gained Full Access to a $100M Zero-Trust Startup - Live Threat Intelligence - Threat Radar | OffSeq.com

How We Gained Full Access to a $100M Zero-Trust Startup

Reddit Discussion: How We Gained Full Access to a $100M Zero-Trust Startup

CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter.

Detailed information about CVE-2025-44608: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-44608: n/a

CVE-2025-44608: n/a

Description

Technical Details

Related Threats

CVE-2025-8159: Stack-based Buffer Overflow in D-Link DIR-513

CVE-2025-52360: n/a

CVE-2025-30086: n/a

CVE-2025-45777: n/a

CVE-2025-45939: n/a

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility