General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-5454 | An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to pot… | Medium (6.4) | 2025-11-11 | General-Purpose |
| CVE-2025-5452 | A malicious ACAP application can gain access to admin-level service account credentials used by legitimate ACAP applica… | Medium (6.6) | 2025-11-11 | General-Purpose |
| CVE-2025-4645 | An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vul… | Medium (6.7) | 2025-11-11 | General-Purpose |
| CVE-2025-11855 | The age-restriction WordPress plugin through 3.0.2 does not have authorisation in the age_restrictionRemoteSupportReque… | High (7.5) | 2025-11-11 | General-Purpose |
| CVE-2025-11307 | The WP Go Maps (formerly WP Google Maps) WordPress plugin before 9.0.48 does not sanitize user input provided via an AJ… | High (8.8) | 2025-11-11 | General-Purpose |