Application Detections Published in October 2025

Hitesh Kadu
Hitesh Kadu, Senior Web Application Security Signatures Engineer
- 6 min read

Table of Contents

In October, Qualys Web Application Scanning released QIDs targeting vulnerabilities in several widely used software products and frameworks, including:

Prebid.js, Apache HTTP Server, Liferay Portal, Squid, GitLab, Flowise, Apache Airflow, Joomla!, ClipBucket, Adobe (Magento/Connect), XWiki, Zabbix, Jenkins, WordPress, Fortinet (FortiWeb), Progress Telerik, SAP, Apache Kylin, Palo Alto Networks, Oracle, Splunk Enterprise, JetBrains (TeamCity/YouTrack), Tableau, Sitecore, Citrix (NetScaler), PHP-Fusion, Apache Tomcat, Node.js, Spring (MVC), Ruby on Rails, Nginx, ElasticSearch, Prometheus, Mongo Express, Redis, CircleCI, Google, Ansible, Django, AWS and KubePi.

Details about the following QIDs can be found in our knowledge base. Please review reports of the scanned applications for these detections and, if any are identified, follow the steps provided in the knowledge base to ensure applications are protected against the reported vulnerabilities. Immediate resolution of these vulnerabilities as soon as they are detected should be a priority for all organizations. If not addressed, these vulnerabilities can pose security risks, such as breaches, unauthorized access, and various malicious activities.

QIDTitle
151069Prebid.js Supply Chain Compromised Release Vulnerability (CVE-2025-59038)
520074Apache HTTP Server Multiple Vulnerabilities (CVE-2024-38476)
520075Liferay Portal Open Membership Default Vulnerability (CVE-2025-43797)
520076Liferay Portal Cross-Site Scripting (XSS) Vulnerability (CVE-2025-43800)
520077Liferay Portal Cross-Site Scripting (XSS) Vulnerability (CVE-2025-43815)
520078Liferay Portal Cross-Site Scripting (XSS) Vulnerability (CVE-2025-43818)
520082Squid Information Disclosure Vulnerability (CVE-2025-62168)
530520GitLab CE/EE Cross-Site Scripting Vulnerability (CVE-2025-9642)
530521GitLab CE/EE Denial of Service Vulnerability (CVE-2025-10858)
530522Flowise Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-59527)
530523Flowise Remote Code Execution (RCE) Vulnerability (CVE-2025-59528)
530524Apache Airflow Connection Sensitive Details Exposure Vulnerability (CVE-2025-54831)
530525Joomla! Core Cross-Site Scripting Vulnerability (CVE-2024-40748)
530526ClipBucket V5 Arbitrary File Upload Vulnerability (CVE-2025-55912)
530527Adobe Magento Multiple Vulnerabilities (APSB21-30)
530528WordPress Media Player Addons for Elementor Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-9203)
530529Adobe Magento Multiple Vulnerabilities (APSB22-48)
530530XWiki Password Hash Exposure Vulnerability (CVE-2025-54124)
530531 Zabbix Second-Order SQL Injection Vulnerability (CVE-2025-27240)
530532 Jenkins Log Message Injection Vulnerability (CVE-2025-59476)
530533WordPress Blocksy Companion Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-9565)
530534WordPress Ocean Extra Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-9499)
530535Adobe Magento Multiple Vulnerabilities (APSB22-38)
530536FortiWeb Authentication Bypass Vulnerability (CVE-2025-52970)
530537Adobe Magento Improper Input Validation Vulnerabilities (CVE-2022-24086,CVE-2022-24087)
530538Adobe Magento Multiple Vulnerabilities (APSB23-17)
530539WordPress Advanced Views (acf-views) Plugin: Server-Side Template Injection Vulnerability (CVE-2025-10380)
530540WordPress Appointment Booking Calendar Plugin: Template Injection Vulnerability (CVE-2024-7129)
530541Jenkins Missing Authorization Vulnerability (CVE-2025-59474)
530542Jenkins Missing Authorization Vulnerability (CVE-2025-59475)
530543Adobe Magento Multiple Vulnerabilities (APSB23-35)
530544Progress Telerik Report Server Deserialization Vulnerability (CVE-2024-1800)
530545SAP NetWeaver Insecure Deserialization Vulnerability (CVE-2025-42944)
530546Apache Kylin Unrestricted File Read Vulnerability (CVE-2025-61734)
530547WordPress StoreEngine Plugin: Arbitrary File Upload Vulnerability (CVE-2025-9216)
530548WordPress SureForms Plugin: Cross-Site Scripting Vulnerability (CVE-2025-8282)
530549Apache Kylin Server-Side Request Forgery Vulnerability (CVE-2025-61735)
530550Apache Kylin Authentication Bypass Vulnerability (CVE-2025-61733)
530551Palo Alto Networks PAN-OS Command Injection Vulnerability (CVE-2024-3400) (Intrusive Check)
530552Adobe Magento Improper Input Validation Vulnerabilities
530553Adobe Magento Cross-Site Request Forgery Vulnerability (CVE-2021-39864)
530554Splunk Enterprise Improper Access Control Vulnerability (CVE-2025-20366)
530555Splunk Enterprise Cross-site Scripting (XSS) Vulnerabilities (CVE-2025-20367
530556JetBrains TeamCity Project Isolation Bypass Vulnerability (CVE-2025-59455)
530557JetBrains TeamCity Path Traversal Vulnerability (CVE-2025-59456)
530558JetBrains TeamCity Credential Exposure via Git URL Handling Vulnerability (CVE-2025-59457)
530559Adobe Magento Improper Input Validation Vulnerability (CVE-2025-54236)
530560WordPress Copypress Rest API Plugin: Remote Code Execution Vulnerability (CVE-2025-8625)
530561WordPress LatePoint Plugin: Cross-Site Request Forgery Vulnerability (CVE-2025-7052)
530562Adobe Magento Multiple Security Vulnerabilities
530563Adobe Magento Cross-Site Scripting Vulnerabilities (CVE-2019-8139,CVE-2025-20368)
530564SAP S/4HANA Code Injection Vulnerability (CVE-2025-42957)
530565WordPress LatePoint Plugin: Authentication Bypass Vulnerability (CVE-2025-7038)
530566Adobe Magento Multiple Security Vulnerabilities
530567Adobe Magento Multiple Security Vulnerabilities
530568Adobe Magento Multiple Security Vulnerabilities
530569Adobe Magento Multiple Security Vulnerabilities
530570WordPress WP Statistics Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-9816)
530571Oracle E-Business Suite Remote Code Execution (RCE) Vulnerability (CVE-2025-61882)
530572WordPress Qyrr Plugin: Arbitrary File Upload Vulnerability (CVE-2025-10000)
530573WordPress Post By Email Plugin: Arbitrary File Upload Vulnerability (CVE-2025-9762)
530575GitLab EE Incorrect Authorization Vulnerability (CVE-2025-11340)
530576Fortinet FortiOS Heap-based Buffer Overflow Vulnerability (CVE-2025-57740)
530577GitLab CE/EE Denial of Service Vulnerability (CVE-2025-10004)
530578Flowise Remote Code Execution (RCE) Vulnerability (CVE-2025-34267)
530579Flowise Arbitrary File Read/Write Vulnerability (CVE-2025-61913)
530580GitLab CE/EE Missing Authorization Vulnerability (CVE-2025-9825)
530581GitLab CE/EE Denial of Service Vulnerability (CVE-2025-2934)
530582WordPress Nexa Blocks Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-8624)
530583WordPress Mihdan Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-8608)
530584WordPress All in One Music Player Plugin: Path Traversal Vulnerability (CVE-2025-8559)
530585WordPress Yoga Schedule Momoyoga Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-9852)
530586Oracle WebLogic Server Multiple Vulnerabilities (CPU-OCT2025)
530587Adobe Magento Incorrect Authorization Vulnerabilities (CVE-2025-54263,CVE-2025-54265,CVE-2025-54267)
530588Adobe Magento Cross-Site Scripting Vulnerabilities (CVE-2025-54264,CVE-2025-54266)
530589Zimbra Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-62763)
530590Adobe Connect Cross-site Scripting Vulnerabilities (CVE-2025-49552,CVE-2025-49553)
530591Adobe Connect Open Redirect Vulnerability (CVE-2025-54196)
530593XWiki Path Traversal Vulnerability (CVE-2025-55747)
530594WordPress Pie Register Plugin: Authentication Bypass Vulnerability (CVE-2025-34077)
530595WordPress Any News Ticker Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-10168)
530596WordPress My AskAI Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-10179)
530597WordPress LatePoint Plugin: Stored Cross-Site Scripting Vulnerabilities (CVE-2025-6941,CVE-2025-6815)
530598WordPress GutenBee Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2025-8566)
530599WordPress OAuth SSO Plugin: Improper Verification of Cryptographic Signature Vulnerability (CVE-2025-9485)
530601Oracle E-Business Suite Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-61884)
530602GitLab CE/EE Denial of Service Vulnerability (CVE-2025-11042)
530603Apache Tomcat Relative Path Traversal vulnerability (CVE-2025-55752)
530604GitLab EE Privilege Escalation Vulnerability (CVE-2025-7691)
530605GitLab EE Improper Authorization Vulnerability (CVE-2025-10871)
530606GitLab CE/EE Denial of Service Vulnerability (CVE-2025-8014)
580858XML Internal Entity Vulnerability
580860Authentication Bypass via Staging Login URLs
580862Apache Druid Remote Code Execution Vulnerability (CVE-2021-25646)
580863PHP-Fusion Remote Code Execution Vulnerability (CVE-2020-24949)
580864Apache Tomcat Cross-site Scripting Vulnerability (CVE-2019-0221)
580865CAPTCHA Bypass via HTTP Header Manipulation
580866Local File Inclusion in User-Agent Header (Linux)
580867Local File Inclusion in User-Agent Header (Windows)
580868Local File Inclusion in Referer Header (Linux)
580869Local File Inclusion in Referer Header (Windows)
580870Node.js Local File Inclusion (LFI) Vulnerability
580871Spring MVC Local File Inclusion Vulnerability
580872Ruby On Rails Local File Inclusion Vulnerability
580874Apache Server Status Exposure
580875Information Disclosure via Response Headers
580876Rails Debug Mode Enabled
580877Zookeeper APIs Exposed
580878Wgetrc Configuration File Exposure
580879Mongo Express Unauthenticated Access
580880Source Code Disclosure via WEB-INF
580881Redis Configuration File Exposure
580882Prometheus Debug Exposed
580883Parameters.yml File Disclosed
580884Bypass Deposit Validation for Orders and Pre-Orders

What’s Next

Leverage the QID list to guide your remediation efforts and strengthen your risk posture.

Looking for more context or remediation tips? Head to Qualys KnowledgeBase for detailed analysis, actionable guidance, and expert-backed support.

Share your Comments

Comments

Your email address will not be published. Required fields are marked *