CVE-2025-25194 | Lemmy up to 0.19.8 activitypub_federation server-side request forgery

Inserito da Angelo Barbosa | Feb 10, 2025 | CVE

A vulnerability was found in Lemmy up to 0.19.8. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component activitypub_federation. The manipulation leads to server-side request forgery.

This vulnerability is known as CVE-2025-25194. The attack can be launched remotely. There is no exploit available.

CVE-2025-25194 | Lemmy up to 0.19.8 activitypub_federation server-side request forgery

Post correlati

CVE-2024-56042 | WPLMS Theme Plugin on WordPress sql injection

CVE-2024-12798 | QOS Logback-core up to 1.5.12 JaninoEventEvaluator expression language injection

CVE-2023-49963 | DYMO LabelWriter Print Server up to 2.366 hard-coded password

CVE-2024-55627 | OISF Suricata up to 7.0.7 TCP Stream integer underflow (ID 7393)