MaxKB is an open-source AI assistant for enterprise. Prior to version 2.0.0, the sandbox design rules can be bypassed because MaxKB only restricts the execution permissions of files in a specific directory. Therefore, an attacker can use the `shutil.copy2` method in Python to copy the command they want to execute to the executable directory. This bypasses directory restrictions and reverse shell. Version 2.0.0 fixes the issue.

CVE Database V5

Detailed information about CVE-2025-53927: CWE-94: Improper Control of Generation of Code ('Code Injection') in 1Panel-dev MaxKB affecting 1Panel-dev MaxKB. Get

CVE-2025-53927: CWE-94: Improper Control of Generation of Code ('Code Injection') in 1Panel-dev MaxKB - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-53927: CWE-94: Improper Control of Generation of Code ('Code Injection') in 1Panel-dev MaxKB

mailcow: dockerized is an open source groupware/email suite based on docker. A Server-Side Template Injection (SSTI) vulnerability exists in versions prior to 2025-07 in the notification template system used by mailcow for sending quota and quarantine alerts. The template rendering engine allows template expressions that may be abused to execute code in certain contexts. The issue requires admin-level access to mailcow UI to configure templates, which are automatically rendered during normal system operation. Version 2025-07 contains a patch for the issue.

Detailed information about CVE-2025-53909: CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine in mailcow mailcow-dockerized affecti

CVE-2025-53909: CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine in mailcow mailcow-dockerized - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-53909: CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine in mailcow mailcow-dockerized

TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a buffer overflow via the ePort parameter in the function setIpPortFilterRules.

Detailed information about CVE-2025-51630: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-51630: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-51630: n/a

Catalyst::Plugin::Session before version 0.44 for Perl generates session ids insecurely.

The session id is generated from a (usually SHA-1) hash of a simple counter, the epoch time, the built-in rand function, the PID and the current Catalyst context. This information is of low entropy. The PID will come from a small set of numbers, and the epoch time may be guessed, if it is not leaked from the HTTP Date header. The built-in rand function is unsuitable for cryptographic usage.

Predicable session ids could allow an attacker to gain access to systems.

CVE-2025-40924 identifies a security vulnerability in the Perl module Catalyst::Plugin::Session versions prior to 0.44. This module is responsible for managing session identifiers (session IDs) in web applications built using the Catalyst framework. The vulnerability arises from the insecure generation of session IDs, which are created using a combination of low-entropy inputs: a simple counter, the epoch time, the built-in Perl rand() function, the process ID (PID), and the current Catalyst context. The session ID is typically derived by hashing these values with SHA-1. However, these inputs do not provide sufficient randomness or unpredictability. The PID is drawn from a limited range of values, the epoch time can often be guessed or inferred (especially if exposed via HTTP Date headers), and the built-in rand() function is not cryptographically secure. This results in session IDs that are predictable and vulnerable to guessing or brute-force attacks. An attacker who can predict or guess valid session IDs could hijack active sessions, gaining unauthorized access to user accounts or sensitive application functionality. This vulnerability falls under CWE-340 (Generation of Predictable Numbers or Identifiers), which highlights the risks of using weak random number generation in security-critical contexts. Although no known exploits are currently reported in the wild, the weakness fundamentally undermines session security and could be exploited by attackers with network access to the application or the ability to observe or infer timing information. The lack of a CVSS score indicates this is a newly published vulnerability without formal severity assessment, but the technical details clearly demonstrate a significant risk to confidentiality and integrity of user sessions.

Detailed information about CVE-2025-40924: CWE-340 Generation of Predictable Numbers or Identifiers in HAARG Catalyst::Plugin::Session affecting HAARG Catalyst:

CVE-2025-40924: CWE-340 Generation of Predictable Numbers or Identifiers in HAARG Catalyst::Plugin::Session - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-40924: CWE-340 Generation of Predictable Numbers or Identifiers in HAARG Catalyst::Plugin::Session

MaxKB is an open-source AI assistant for enterprise. Prior to versions 1.10.9-lts and 2.0.0, a Remote Command Execution vulnerability exists in the MCP call. Versions 1.10.9-lts and 2.0.0 fix the issue.

Detailed information about CVE-2025-53928: CWE-94: Improper Control of Generation of Code ('Code Injection') in 1Panel-dev MaxKB affecting 1Panel-dev MaxKB. Get