A weakness has been identified in UAB Paytend App up to 2.1.9 on Android. This impacts an unknown function of the file AndroidManifest.xml of the component com.passport.cash. Executing manipulation can lead to improper export of android application components. The attack needs to be launched locally. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

CVE Database V5

Detailed information about CVE-2025-9671: Improper Export of Android Application Components in UAB Paytend App affecting UAB Paytend App. Get real-time updates,

CVE-2025-9671: Improper Export of Android Application Components in UAB Paytend App - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-9671: Improper Export of Android Application Components in UAB Paytend App

A security flaw has been discovered in mixmark-io turndown up to 7.2.1. This affects an unknown function of the file src/commonmark-rules.js. Performing manipulation results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited.

CVE-2025-9670 is a vulnerability identified in the mixmark-io turndown library, specifically affecting versions 7.2.0 and 7.2.1. The flaw resides in an unspecified function within the src/commonmark-rules.js file, where inefficient regular expression complexity can be triggered by crafted input. This inefficiency can lead to excessive CPU consumption, commonly known as a Regular Expression Denial of Service (ReDoS) attack. The vulnerability is remotely exploitable without requiring authentication or user interaction, meaning an attacker can send specially crafted data to a system using the vulnerable turndown versions and cause resource exhaustion. The CVSS 4.0 base score is 6.9 (medium severity), reflecting the network attack vector, low attack complexity, no privileges or user interaction needed, and limited impact on availability. Although no known exploits are currently observed in the wild, a public exploit has been released, increasing the risk of exploitation. Turndown is a JavaScript library used to convert HTML into Markdown, often integrated into web applications, content management systems, and developer tools. The vulnerability could be triggered when user-supplied HTML is processed by turndown, potentially allowing attackers to degrade service performance or cause denial of service conditions by exploiting the inefficient regex processing.

Detailed information about CVE-2025-9670: Inefficient Regular Expression Complexity in mixmark-io turndown affecting mixmark-io turndown. Get real-time updates,

CVE-2025-9670: Inefficient Regular Expression Complexity in mixmark-io turndown - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-9670: Inefficient Regular Expression Complexity in mixmark-io turndown

A vulnerability has been found in Jinher OA 1.0. This issue affects some unknown processing of the file GetTreeDate.aspx. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.

CVE-2025-9669 is a SQL Injection vulnerability identified in Jinher OA version 1.0, specifically within the processing of the GetTreeDate.aspx file. The vulnerability arises from improper handling of the 'ID' parameter, which allows an attacker to inject malicious SQL code remotely without requiring authentication or user interaction. The injection flaw can lead to unauthorized access or manipulation of the backend database, potentially exposing sensitive information or enabling further compromise of the system. The CVSS 4.0 base score is 6.9 (medium severity), reflecting the network attack vector, low attack complexity, and no privileges or user interaction needed. The vulnerability impacts confidentiality, integrity, and availability to a limited extent due to the low scope and impact metrics. Although no known exploits are currently observed in the wild, the public disclosure of the exploit code increases the risk of exploitation. Jinher OA is an office automation software product, and version 1.0 is affected, indicating that organizations using this legacy or initial release are vulnerable. The lack of available patches or mitigations from the vendor further elevates the risk for affected deployments.

Detailed information about CVE-2025-9669: SQL Injection in Jinher OA affecting Jinher OA. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-9669: SQL Injection in Jinher OA - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-9669: SQL Injection in Jinher OA

Liferay Portal  7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0, 2025.Q1.0 through 2025.Q1.14, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.18 and 7.4 GA through update 92 has a security vulnerability that allowing for improper access through the expandoTableLocalService.

CVE-2025-43773 is a medium severity security vulnerability affecting multiple versions of Liferay Portal and Liferay DXP, specifically versions 7.4.0 through 7.4.3.132 and various quarterly releases from 2024.Q1.1 through 2025.Q2.1. The vulnerability is classified under CWE-862, which denotes Missing Authorization. The core issue lies in the expandoTableLocalService, a service that provides powerful database operations. This service is exposed within the Notifications Templates component without proper permission checks, allowing unauthorized users to access or manipulate data they should not have permission to. The vulnerability does not require the attacker to have elevated privileges (PR:H indicates high privileges required), but user interaction is necessary (UI:A). The CVSS 4.0 vector indicates network attack vector (AV:N), low attack complexity (AC:L), no privileges required (PR:H), user interaction required (UI:A), and low impact on confidentiality, integrity, and availability (VC:L, VI:L, VA:N). This suggests that while exploitation is possible remotely, it requires some user interaction and elevated privileges, and the impact on system security is limited but non-negligible. The lack of proper authorization checks in a service that can perform database operations could allow attackers to read or modify data improperly, potentially leading to data leakage or unauthorized data manipulation within the Liferay Portal environment. No known exploits are currently reported in the wild, and no patches have been linked yet, indicating that organizations should be vigilant and monitor for updates from Liferay.

Detailed information about CVE-2025-43773: CWE-862 Missing Authorization in Liferay Portal affecting Liferay Portal. Get real-time updates, technical details, a

CVE-2025-43773: CWE-862 Missing Authorization in Liferay Portal - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-43773: CWE-862 Missing Authorization in Liferay Portal

An issue in Evope Core v.1.1.3.20 allows a local attacker to obtain sensitive information via the use of hard coded cryptographic keys.

Detailed information about CVE-2025-56577: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-56577: n/a

CVE-2025-56577: n/a

Description

Technical Details

Related Threats

CVE-2025-9671: Improper Export of Android Application Components in UAB Paytend App

CVE-2025-9670: Inefficient Regular Expression Complexity in mixmark-io turndown

CVE-2025-9669: SQL Injection in Jinher OA

CVE-2025-43773: CWE-862 Missing Authorization in Liferay Portal

CVE-2025-9667: SQL Injection in code-projects Simple Grading System

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility