Leviton AcquiSuite and Energy Monitoring Hub 
are susceptible to a cross-site scripting vulnerability, allowing 
an attacker to craft a malicious payload in URL parameters, which would 
execute in a client browser when accessed by a user, steal session 
tokens, and control the service.

CVE Database V5

Detailed information about CVE-2025-6185: CWE-79 in Leviton AcquiSuite affecting Leviton AcquiSuite. Get real-time updates, technical details, and mitigation st

CVE-2025-6185: CWE-79 in Leviton AcquiSuite - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-6185: CWE-79 in Leviton AcquiSuite

A flaw was found in the Keycloak identity and access management system when Fine-Grained Admin Permissions(FGAPv2) are enabled. An administrative user with the manage-users role can escalate their privileges to realm-admin due to improper privilege enforcement. This vulnerability allows unauthorized elevation of access rights, compromising the intended separation of administrative duties and posing a security risk to the realm.

CVE-2025-7784 is a vulnerability identified in the Red Hat Build of Keycloak, an open-source identity and access management system widely used for authentication and authorization services. The flaw arises when Fine-Grained Admin Permissions version 2 (FGAPv2) are enabled. Specifically, an administrative user assigned the 'manage-users' role can exploit improper privilege enforcement to escalate their privileges to 'realm-admin'. This escalation bypasses the intended separation of administrative duties, allowing a user with limited administrative rights to gain full administrative control over a realm. The vulnerability is due to insufficient checks on privilege boundaries within the FGAPv2 implementation, which fails to enforce strict role separation. The CVSS v3.1 base score is 6.5 (medium severity), reflecting that the vulnerability is remotely exploitable over the network (AV:N), requires low attack complexity (AC:L), but requires the attacker to already have high privileges (PR:H) and does not require user interaction (UI:N). The impact includes full compromise of confidentiality and integrity of the realm's data and configurations, though availability is not affected. No known exploits are currently reported in the wild, and no patches or affected versions were specified at the time of publication. This vulnerability undermines the security model of Keycloak realms by allowing unauthorized privilege escalation, potentially enabling attackers to manipulate user accounts, roles, and sensitive configurations within the identity management system.

Detailed information about CVE-2025-7784: Improper Privilege Management in Red Hat Red Hat Build of Keycloak affecting Red Hat Red Hat Build of Keycloak. Get re

CVE-2025-7784: Improper Privilege Management in Red Hat Red Hat Build of Keycloak - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-7784: Improper Privilege Management in Red Hat Red Hat Build of Keycloak

An arbitrary file upload vulnerability in the is_allowed_file_type() function of Filemanager v2.3.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.

CVE-2025-46001 is an arbitrary file upload vulnerability identified in the is_allowed_file_type() function of Filemanager version 2.3.0. This vulnerability allows an attacker to bypass file type validation controls and upload crafted PHP files to the server. Once uploaded, these malicious PHP files can be executed remotely, enabling the attacker to run arbitrary code on the affected system. The vulnerability stems from insufficient validation or improper sanitization of uploaded file types within the is_allowed_file_type() function, which is intended to restrict uploads to safe file formats. Exploitation of this flaw can lead to full system compromise, including unauthorized access, data theft, modification, or destruction, and potentially pivoting to other internal network resources. Although no known exploits are currently reported in the wild, the nature of arbitrary file upload vulnerabilities makes them highly attractive targets for attackers due to their ease of exploitation and severe consequences. The lack of a CVSS score indicates that the vulnerability is newly published and has not yet been fully assessed or scored by standard frameworks. The affected version is specifically Filemanager v2.3.0, but no other versions are mentioned, suggesting the issue may be isolated or unconfirmed in other releases. No patches or mitigation links are currently provided, emphasizing the need for immediate attention from users of this software.

Detailed information about CVE-2025-46001: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-46001: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-46001: n/a

A vulnerability, which was classified as problematic, has been found in Gnuboard g6 up to 6.0.10. This issue affects some unknown processing of the file /bbs/scrap_popin_update/qa/ of the component Post Reply Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7786 is a cross-site scripting (XSS) vulnerability identified in Gnuboard g6, a popular open-source bulletin board system widely used for community forums and content management. The vulnerability affects all versions up to and including 6.0.10. Specifically, the flaw exists in the processing of the /bbs/scrap_popin_update/qa/ endpoint within the Post Reply Handler component. This endpoint fails to properly sanitize user-supplied input, allowing an attacker to inject malicious scripts that execute in the context of the victim's browser. The vulnerability is remotely exploitable without authentication, requiring only user interaction (e.g., clicking a crafted link or visiting a malicious page) to trigger the attack. The CVSS v4.0 base score is 5.1, indicating a medium severity level. The vector details show that the attack vector is network-based (AV:N), with low attack complexity (AC:L), no privileges required (PR:L, meaning low privileges but some authentication may be needed), and user interaction is necessary (UI:P). The impact affects integrity and availability to a limited extent, with no confidentiality impact. Although no public exploits are currently known in the wild, the vulnerability has been publicly disclosed, increasing the risk of exploitation. The lack of official patches at the time of disclosure means that affected organizations must implement interim mitigations to reduce exposure. This vulnerability could be leveraged to perform session hijacking, defacement, or phishing attacks by injecting malicious JavaScript, potentially compromising user accounts and trust in affected web applications.

Detailed information about CVE-2025-7786: Cross Site Scripting in Gnuboard g6 affecting Gnuboard g6. Get real-time updates, technical details, and mitigation st

CVE-2025-7786: Cross Site Scripting in Gnuboard g6 - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-7786: Cross Site Scripting in Gnuboard g6

An issue in Filemanager v2.5.0 and below allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint.

Detailed information about CVE-2025-46002: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-46002: n/a

CVE-2025-46002: n/a

Description

Technical Details

Related Threats

CVE-2025-6185: CWE-79 in Leviton AcquiSuite

CVE-2025-7784: Improper Privilege Management in Red Hat Red Hat Build of Keycloak

CVE-2025-46001: n/a

CVE-2025-7786: Cross Site Scripting in Gnuboard g6

CVE-2025-7785: Open Redirect in thinkgem JeeSite

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility