Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-54236 KEV |
|
[KEV] Vulnerability in Adobe commerce (CVE-2025-54236)
vulnerability in Adobe commerce (CVE-2025-54236). Confidential information can be exposed externally. Listed in CISA KEV — actively exploited.
|
| CVE-2025-60837 |
|
Cross-Site Scripting (XSS) in mingsoft (CVE-2025-60837)
cross-site scripting in mingsoft (CVE-2025-60837). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-56009 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-56009)
vulnerability in csrf (CVE-2025-56009). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-56008 |
|
Cross-Site Scripting (XSS) in keenetic (CVE-2025-56008)
cross-site scripting in keenetic (CVE-2025-56008). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-10727 |
|
Cross-Site Scripting (XSS) in CVE-2025-10727 (CVE-2025-10727)
cross-site scripting in CVE-2025-10727 (CVE-2025-10727). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-10914 |
|
Cross-Site Scripting (XSS) in CVE-2025-10914 (CVE-2025-10914)
cross-site scripting in CVE-2025-10914 (CVE-2025-10914). Confidential information can be exposed externally.
|
| CVE-2025-56447 |
|
TM2 Monitoring v3.04 contains an authentication bypass and plaintext credential disclosure.
TM2 Monitoring v3.04 contains an authentication bypass and plaintext credential disclosure.
|
| CVE-2025-10612 |
|
Cross-Site Scripting (XSS) in CVE-2025-10612 (CVE-2025-10612)
cross-site scripting in CVE-2025-10612 (CVE-2025-10612). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-56219 |
|
Vulnerability in dos (CVE-2025-56219)
vulnerability in dos (CVE-2025-56219). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-56223 |
|
Vulnerability in dos (CVE-2025-56223)
vulnerability in dos (CVE-2025-56223). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-56320 |
|
Cross-Site Scripting (XSS) in CVE-2025-56320 (CVE-2025-56320)
cross-site scripting in CVE-2025-56320 (CVE-2025-56320). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-57567 |
|
Code Injection in CVE-2025-57567 (CVE-2025-57567)
code injection in CVE-2025-57567 (CVE-2025-57567). Successful exploitation can lead to full system takeover.
|
| CVE-2025-60641 |
|
SQL Injection in sqli (CVE-2025-60641)
SQL injection in sqli (CVE-2025-60641). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-34512 |
|
Cross-Site Scripting (XSS) in ilevia (CVE-2025-34512)
cross-site scripting in ilevia (CVE-2025-34512). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60535 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-60535)
vulnerability in csrf (CVE-2025-60535). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-59249 |
|
Vulnerability in microsoft (CVE-2025-59249)
vulnerability in microsoft (CVE-2025-59249). Successful exploitation can lead to full system takeover.
|
| CVE-2025-59248 |
|
Vulnerability in microsoft (CVE-2025-59248)
vulnerability in microsoft (CVE-2025-59248). Confidential information can be exposed externally.
|
| CVE-2025-53782 |
|
Vulnerability in microsoft (CVE-2025-53782)
vulnerability in microsoft (CVE-2025-53782). Successful exploitation can lead to full system takeover.
|
| CVE-2025-31366 |
|
Cross-Site Scripting (XSS) in fortinet (CVE-2025-31366)
cross-site scripting in fortinet (CVE-2025-31366). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-10610 |
|
SQL Injection in sqli (CVE-2025-10610)
SQL injection in sqli (CVE-2025-10610). Successful exploitation can lead to full system takeover.
|
| CVE-2025-11731 |
|
Vulnerability in dos (CVE-2025-11731)
vulnerability in dos (CVE-2025-11731). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6919 |
|
SQL Injection in sqli (CVE-2025-6919)
SQL injection in sqli (CVE-2025-6919). Successful exploitation can lead to full system takeover.
|
| CVE-2025-60308 |
|
Cross-Site Scripting (XSS) in fabian (CVE-2025-60308)
cross-site scripting in fabian (CVE-2025-60308). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60307 |
|
SQL Injection in sqli (CVE-2025-60307)
SQL injection in sqli (CVE-2025-60307). Successful exploitation can lead to full system takeover.
|
| CVE-2025-8886 |
|
Information Disclosure in CVE-2025-8886 (CVE-2025-8886)
vulnerability in CVE-2025-8886 (CVE-2025-8886). Confidential information can be exposed externally.
|
| CVE-2025-11570 |
|
Cross-Site Scripting (XSS) in drupal (CVE-2025-11570)
cross-site scripting in drupal (CVE-2025-11570). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60304 |
|
Cross-Site Scripting (XSS) in fabian (CVE-2025-60304)
cross-site scripting in fabian (CVE-2025-60304). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60302 |
|
Cross-Site Scripting (XSS) in fabian (CVE-2025-60302)
cross-site scripting in fabian (CVE-2025-60302). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-0603 |
|
SQL Injection in sqli (CVE-2025-0603)
SQL injection in sqli (CVE-2025-0603). Successful exploitation can lead to full system takeover.
|
| CVE-2025-60969 |
|
Path Traversal in path-traversal (CVE-2025-60969)
path traversal in path-traversal (CVE-2025-60969). Confidential information can be exposed externally.
|
| CVE-2025-60967 |
|
Cross-Site Scripting (XSS) in endruntechnologies (CVE-2025-60967)
cross-site scripting in endruntechnologies (CVE-2025-60967). Confidential information can be exposed externally.
|
| CVE-2025-60963 |
|
OS Command Injection in dos (CVE-2025-60963)
OS command injection in dos (CVE-2025-60963). Data can be tampered with by attackers.
|
| CVE-2025-60964 |
|
OS Command Injection in dos (CVE-2025-60964)
OS command injection in dos (CVE-2025-60964). Successful exploitation can lead to full system takeover.
|
| CVE-2025-60965 |
|
OS Command Injection in dos (CVE-2025-60965)
OS command injection in dos (CVE-2025-60965). Successful exploitation can lead to full system takeover.
|
| CVE-2025-60957 |
|
OS Command Injection in dos (CVE-2025-60957)
OS command injection in dos (CVE-2025-60957). Successful exploitation can lead to full system takeover.
|
| CVE-2025-60960 |
|
OS Command Injection in dos (CVE-2025-60960)
OS command injection in dos (CVE-2025-60960). Data can be tampered with by attackers.
|
| CVE-2025-60956 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-60956)
vulnerability in csrf (CVE-2025-60956). Successful exploitation can lead to full system takeover.
|
| CVE-2025-60961 |
|
Cross-Site Scripting (XSS) in endruntechnologies (CVE-2025-60961)
cross-site scripting in endruntechnologies (CVE-2025-60961). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60958 |
|
Cross-Site Scripting (XSS) in endruntechnologies (CVE-2025-60958)
cross-site scripting in endruntechnologies (CVE-2025-60958). Confidential information can be exposed externally.
|
| CVE-2025-0609 |
|
Cross-Site Scripting (XSS) in c (CVE-2025-0609)
cross-site scripting in c (CVE-2025-0609). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-42193 |
|
Cross-Site Scripting (XSS) in nopcommerce (CVE-2021-42193)
cross-site scripting in nopcommerce (CVE-2021-42193). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-11234 |
|
Use-After-Free in dos (CVE-2025-11234)
vulnerability in dos (CVE-2025-11234). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-0876 |
|
Cross-Site Scripting (XSS) in CVE-2025-0876 (CVE-2025-0876)
cross-site scripting in CVE-2025-0876 (CVE-2025-0876). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-0616 |
|
SQL Injection in sqli (CVE-2025-0616)
SQL injection in sqli (CVE-2025-0616). Confidential information can be exposed externally.
|
| CVE-2025-22862 |
|
Vulnerability in fortinet (CVE-2025-22862)
vulnerability in fortinet (CVE-2025-22862). Successful exploitation can lead to full system takeover.
|
| CVE-2025-0642 |
|
Vulnerability in CVE-2025-0642 (CVE-2025-0642)
vulnerability in CVE-2025-0642 (CVE-2025-0642). Confidential information can be exposed externally.
|
| CVE-2025-56588 |
|
Code Injection in dolibarr (CVE-2025-56588)
code injection in dolibarr (CVE-2025-56588). Successful exploitation can lead to full system takeover.
|
| CVE-2025-57393 |
|
Cross-Site Scripting (XSS) in CVE-2025-57393 (CVE-2025-57393)
cross-site scripting in CVE-2025-57393 (CVE-2025-57393). Successful exploitation can lead to full system takeover.
|
| CVE-2025-56513 |
|
Vulnerability in nicehash (CVE-2025-56513)
vulnerability in nicehash (CVE-2025-56513). Successful exploitation can lead to full system takeover.
|
| CVE-2025-56200 |
|
Cross-Site Scripting (XSS) in validator-project (CVE-2025-56200)
cross-site scripting in validator-project (CVE-2025-56200). Risk of unauthorized operations or information disclosure.
|