Publish Advisories

GHSA-gq8r-4rr6-wr2q
GHSA-mp27-9vf3-rfc6
GHSA-p5wf-p25w-3c2h
GHSA-rm9v-363r-mcp3
GHSA-wcrf-5vr8-vwjp

Author: advisory-database[bot]

advisories/unreviewed/2026/01/GHSA-gq8r-4rr6-wr2q/GHSA-gq8r-4rr6-wr2q.json

@@ -0,0 +1,64 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-gq8r-4rr6-wr2q",
+  "modified": "2026-01-02T00:30:25Z",
+  "published": "2026-01-02T00:30:25Z",
+  "aliases": [
+    "CVE-2025-15418"
+  ],
+  "details": "A security flaw has been discovered in Open5GS up to 2.7.6. Affected by this vulnerability is the function ogs_gtp2_parse_bearer_qos in the library lib/gtp/v2/types.c of the component Bearer QoS IE Length Handler. Performing manipulation results in denial of service. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. The patch is named 4e913d21f2c032b187815f063dbab5ebe65fe83a. To fix this issue, it is recommended to deploy a patch.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15418"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/open5gs/open5gs/issues/4217"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/open5gs/open5gs/issues/4217#issue-3759615968"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/open5gs/open5gs/issues/4217#issuecomment-3690767105"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/open5gs/open5gs/commit/4e913d21f2c032b187815f063dbab5ebe65fe83a"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.339340"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.339340"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.728043"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-404"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-02T00:15:43Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-mp27-9vf3-rfc6/GHSA-mp27-9vf3-rfc6.json

@@ -0,0 +1,64 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-mp27-9vf3-rfc6",
+  "modified": "2026-01-02T00:30:25Z",
+  "published": "2026-01-02T00:30:25Z",
+  "aliases": [
+    "CVE-2025-15417"
+  ],
+  "details": "A vulnerability was identified in Open5GS up to 2.7.6. Affected is the function sgwc_s11_handle_create_session_request of the file src/sgwc/s11-handler.c of the component GTPv2-C F-TEID Handler. Such manipulation leads to denial of service. The attack must be carried out locally. The exploit is publicly available and might be used. The name of the patch is 465273d13ba5d47b274c38c9d1b07f04859178a1. A patch should be applied to remediate this issue.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15417"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/open5gs/open5gs/issues/4203"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/open5gs/open5gs/issues/4203#issue-3719257558"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/open5gs/open5gs/issues/4203#issuecomment-3681643498"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/open5gs/open5gs/commit/465273d13ba5d47b274c38c9d1b07f04859178a1"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.339339"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.339339"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.727616"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-404"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-01T23:15:56Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-p5wf-p25w-3c2h/GHSA-p5wf-p25w-3c2h.json

@@ -0,0 +1,52 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-p5wf-p25w-3c2h",
+  "modified": "2026-01-02T00:30:25Z",
+  "published": "2026-01-02T00:30:25Z",
+  "aliases": [
+    "CVE-2025-15416"
+  ],
+  "details": "A vulnerability was found in xnx3 wangmarket up to 6.4. This affects an unknown function of the file /siteVar/save.do of the component Add Global Variable Handler. The manipulation of the argument Remark/Variable Value results in cross site scripting. The attack can be executed remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15416"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/yuccun/CVE/blob/main/wangmarket-Stored_Cross-Site_Scripting.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.339337"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.339337"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.721080"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-01T23:15:55Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-rm9v-363r-mcp3/GHSA-rm9v-363r-mcp3.json

@@ -0,0 +1,52 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-rm9v-363r-mcp3",
+  "modified": "2026-01-02T00:30:25Z",
+  "published": "2026-01-02T00:30:25Z",
+  "aliases": [
+    "CVE-2025-15415"
+  ],
+  "details": "A vulnerability has been found in xnx3 wangmarket up to 6.4. The impacted element is the function uploadImage of the file /sits/uploadImage.do of the component XML File Handler. The manipulation of the argument image leads to unrestricted upload. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15415"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/yuccun/CVE/blob/main/wangmarket-Upload2StoredXSS.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.339336"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.339336"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.721078"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-284"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-01T22:15:42Z"
+  }
+}

advisories/unreviewed/2026/01/GHSA-wcrf-5vr8-vwjp/GHSA-wcrf-5vr8-vwjp.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-wcrf-5vr8-vwjp",
+  "modified": "2026-01-02T00:30:25Z",
+  "published": "2026-01-02T00:30:25Z",
+  "aliases": [
+    "CVE-2025-15414"
+  ],
+  "details": "A flaw has been found in go-sonic sonic up to 1.1.4. The affected element is the function FetchTheme of the file service/theme/git_fetcher.go of the component Theme Fetching API. Executing manipulation of the argument uri can lead to server-side request forgery. The attack may be launched remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15414"
+    },
+    {
+      "type": "WEB",
+      "url": "https://note-hxlab.wetolink.com/share/SeCdFaAVlHAJ"
+    },
+    {
+      "type": "WEB",
+      "url": "https://note-hxlab.wetolink.com/share/SeCdFaAVlHAJ#-span--strong-proof-of-concept---strong---span-"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.339335"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.339335"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.719789"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-918"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-01T22:15:42Z"
+  }
+}