admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-12-17 20:42:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2025-01-05T21:00:19.245423+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2025-01-05 21:03:41 +00:00
parent e233f2dd40
commit 5ad2b42a7b
4 changed files with 298 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

141
CVE-2025/CVE-2025-02xx/CVE-2025-0228.json Normal file
View File

@ -0,0 +1,141 @@
{
"id": "CVE-2025-0228",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-01-05T19:15:06.320",
"lastModified": "2025-01-05T19:15:06.320",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been found in code-projects Local Storage Todo App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /js-todo-app/index.html. The manipulation of the argument Add leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"vulnerableSystemConfidentiality": "NONE",
"vulnerableSystemIntegrity": "LOW",
"vulnerableSystemAvailability": "NONE",
"subsequentSystemConfidentiality": "NONE",
"subsequentSystemIntegrity": "NONE",
"subsequentSystemAvailability": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirements": "NOT_DEFINED",
"integrityRequirements": "NOT_DEFINED",
"availabilityRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnerableSystemConfidentiality": "NOT_DEFINED",
"modifiedVulnerableSystemIntegrity": "NOT_DEFINED",
"modifiedVulnerableSystemAvailability": "NOT_DEFINED",
"modifiedSubsequentSystemConfidentiality": "NOT_DEFINED",
"modifiedSubsequentSystemIntegrity": "NOT_DEFINED",
"modifiedSubsequentSystemAvailability": "NOT_DEFINED",
"safety": "NOT_DEFINED",
"automatable": "NOT_DEFINED",
"recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",
"baseScore": 2.4,
"baseSeverity": "LOW",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 0.9,
"impactScore": 1.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:M/C:N/I:P/A:N",
"baseScore": 3.3,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "MULTIPLE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE"
},
"baseSeverity": "LOW",
"exploitabilityScore": 6.4,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
},
{
"lang": "en",
"value": "CWE-94"
}
]
}
],
"references": [
{
"url": "https://code-projects.org/",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.290218",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.290218",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.474049",
"source": "cna@vuldb.com"
}
]
}

145
CVE-2025/CVE-2025-02xx/CVE-2025-0229.json Normal file
View File

@ -0,0 +1,145 @@
{
"id": "CVE-2025-0229",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-01-05T20:15:05.383",
"lastModified": "2025-01-05T20:15:05.383",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability, which was classified as critical, has been found in code-projects Travel Management System 1.0. This issue affects some unknown processing of the file /enquiry.php. The manipulation of the argument pid/t1/t2/t3/t4/t5/t6/t7 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"vulnerableSystemConfidentiality": "LOW",
"vulnerableSystemIntegrity": "LOW",
"vulnerableSystemAvailability": "LOW",
"subsequentSystemConfidentiality": "NONE",
"subsequentSystemIntegrity": "NONE",
"subsequentSystemAvailability": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirements": "NOT_DEFINED",
"integrityRequirements": "NOT_DEFINED",
"availabilityRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnerableSystemConfidentiality": "NOT_DEFINED",
"modifiedVulnerableSystemIntegrity": "NOT_DEFINED",
"modifiedVulnerableSystemAvailability": "NOT_DEFINED",
"modifiedSubsequentSystemConfidentiality": "NOT_DEFINED",
"modifiedSubsequentSystemIntegrity": "NOT_DEFINED",
"modifiedSubsequentSystemAvailability": "NOT_DEFINED",
"safety": "NOT_DEFINED",
"automatable": "NOT_DEFINED",
"recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"baseScore": 6.5,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-74"
},
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://code-projects.org/",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/Huandtx/cve/blob/main/cve/sql1.md",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.290225",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.290225",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.474572",
"source": "cna@vuldb.com"
}
]
}

14
README.md
View File

@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2025-01-05T19:00:19.510988+00:00
2025-01-05T21:00:19.245423+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2025-01-05T18:15:06.570000+00:00
2025-01-05T20:15:05.383000+00:00
```
### Last Data Feed Release
@ -33,17 +33,15 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
275738
275740
```
### CVEs added in the last Commit
Recently added CVEs: `4`
Recently added CVEs: `2`
- [CVE-2025-0224](CVE-2025/CVE-2025-02xx/CVE-2025-0224.json) (`2025-01-05T17:15:06.027`)
- [CVE-2025-0225](CVE-2025/CVE-2025-02xx/CVE-2025-0225.json) (`2025-01-05T17:15:06.620`)
- [CVE-2025-0226](CVE-2025/CVE-2025-02xx/CVE-2025-0226.json) (`2025-01-05T18:15:05.573`)
- [CVE-2025-0227](CVE-2025/CVE-2025-02xx/CVE-2025-0227.json) (`2025-01-05T18:15:06.570`)
- [CVE-2025-0228](CVE-2025/CVE-2025-02xx/CVE-2025-0228.json) (`2025-01-05T19:15:06.320`)
- [CVE-2025-0229](CVE-2025/CVE-2025-02xx/CVE-2025-0229.json) (`2025-01-05T20:15:05.383`)
### CVEs modified in the last Commit

10
_state.csv
View File

@ -275720,10 +275720,12 @@ CVE-2025-0220,0,0,e2a1de80227234e2ee0ad6599c3e6137c8cd2931a8e4558632166ff8d1637d
CVE-2025-0221,0,0,bf2d1013ca5e346bb2f023d267f8796cd36ff872dcfd00def4c61e9ac89e1567,2025-01-05T15:15:17.473000
CVE-2025-0222,0,0,4e8177a1bf3924ae38b9bf36c130d285f0307c82660c8f16a402a069a674dfe8,2025-01-05T16:15:05.217000
CVE-2025-0223,0,0,5aabb33eada9f9a0a35847a6c98c4e16a7624f0d5b76cfb6fd378f30f372ae99,2025-01-05T16:15:05.497000
CVE-2025-0224,1,1,28e5c7c6ae9f92e276e429054d47bb104d4a84ab655c0a2b5b9cf770216c9a84,2025-01-05T17:15:06.027000
CVE-2025-0225,1,1,05f3e95e5a5216de1729c29aa623cb834288b97c999cdcab41fa05b2facf403c,2025-01-05T17:15:06.620000
CVE-2025-0226,1,1,c107f3a1190ffff7a5bb943eb632d954a11de62889d175189cba857eeb732cc9,2025-01-05T18:15:05.573000
CVE-2025-0227,1,1,b7e75591f803956c9c2fede15969a7aa7d454dc47e8d770ec080124efffe3817,2025-01-05T18:15:06.570000
CVE-2025-0224,0,0,28e5c7c6ae9f92e276e429054d47bb104d4a84ab655c0a2b5b9cf770216c9a84,2025-01-05T17:15:06.027000
CVE-2025-0225,0,0,05f3e95e5a5216de1729c29aa623cb834288b97c999cdcab41fa05b2facf403c,2025-01-05T17:15:06.620000
CVE-2025-0226,0,0,c107f3a1190ffff7a5bb943eb632d954a11de62889d175189cba857eeb732cc9,2025-01-05T18:15:05.573000
CVE-2025-0227,0,0,b7e75591f803956c9c2fede15969a7aa7d454dc47e8d770ec080124efffe3817,2025-01-05T18:15:06.570000
CVE-2025-0228,1,1,5cce80d84a8eb33f28f78570fb958c340ef8d25e9383674444c637cddefdf408,2025-01-05T19:15:06.320000
CVE-2025-0229,1,1,733cbb695588f6a25d8cc517b82298be2972e628f3d2d85a6ad5987d6d498cef,2025-01-05T20:15:05.383000
CVE-2025-21609,0,0,46e3af17bfffe98fbaec33d01272d23877fbd06c6cc0e4a79625fd3beabb7e1e,2025-01-03T17:15:09.147000
CVE-2025-21610,0,0,803b1c12bbaab2c87bcfc5865cced8b68fa26746eb8c056e6bba01e1200224ac,2025-01-03T17:15:09.290000
CVE-2025-22214,0,0,9f9cbba758088c6fe54f3b7aba457fa8b68f7e0bf397744585451dc526c7cea3,2025-01-02T04:15:06.277000

Can't render this file because it is too large.