carlos-artmann/vulnerability-research

Releases0

This repository contains information on all of the CVEs I found.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-65784 ↗	Jan 13, 2026Tuesday, 13 January 2026, 17:15	6.5 MEDIUM	—
Insecure permissions in Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows authenticated attackers with low-level privileges to access other users' information via a crafted API request.
CVE-2025-65783 ↗	Jan 13, 2026Tuesday, 13 January 2026, 16:15	9.8 CRITICAL	—
An arbitrary file upload vulnerability in the /utils/uploadFile component of Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows attackers to execute arbitrary code via uploading a crafted PDF file.