Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-65530 |
|
Vulnerability in cloudlinux (CVE-2025-65530)
vulnerability in cloudlinux (CVE-2025-65530). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65854 |
|
Code Injection in mineadmin (CVE-2025-65854)
code injection in mineadmin (CVE-2025-65854). Successful exploitation can lead to full system takeover.
|
| CVE-2025-13506 |
|
Vulnerability in CVE-2025-13506 (CVE-2025-13506)
vulnerability in CVE-2025-13506 (CVE-2025-13506). Successful exploitation can lead to full system takeover.
|
| CVE-2018-4063 KEV |
|
[KEV] Unrestricted File Upload in Sierra wireless sierra-wireless (CVE-2018-4063)
vulnerability in Sierra wireless sierra-wireless (CVE-2018-4063). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-67780 |
|
Vulnerability in CVE-2025-67780 (CVE-2025-67780)
vulnerability in CVE-2025-67780 (CVE-2025-67780). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`.
|
| CVE-2025-66586 |
|
Vulnerability in azeotech (CVE-2025-66586)
vulnerability in azeotech (CVE-2025-66586). Successful exploitation can lead to full system takeover.
|
| CVE-2025-66588 |
|
Vulnerability in azeotech (CVE-2025-66588)
vulnerability in azeotech (CVE-2025-66588). Successful exploitation can lead to full system takeover.
|
| CVE-2025-66585 |
|
Use-After-Free in azeotech (CVE-2025-66585)
vulnerability in azeotech (CVE-2025-66585). Successful exploitation can lead to full system takeover.
|
| CVE-2025-66590 |
|
Out-of-Bounds Write in azeotech (CVE-2025-66590)
out-of-bounds write in azeotech (CVE-2025-66590). Successful exploitation can lead to full system takeover.
|
| CVE-2025-14523 |
|
Vulnerability in CVE-2025-14523 (CVE-2025-14523)
vulnerability in CVE-2025-14523 (CVE-2025-14523). Data can be tampered with by attackers. Exploitable via `Host header`.
|
| CVE-2025-14512 |
|
Vulnerability in dos (CVE-2025-14512)
vulnerability in dos (CVE-2025-14512). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-58360 KEV |
|
[KEV] XXE (XML External Entity) in Osgeo geoserver (CVE-2025-58360)
vulnerability in Osgeo geoserver (CVE-2025-58360). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-65828 |
|
Vulnerability in dos (CVE-2025-65828)
vulnerability in dos (CVE-2025-65828). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-63895 |
|
Vulnerability in dos (CVE-2025-63895)
vulnerability in dos (CVE-2025-63895). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-13127 |
|
Cross-Site Scripting (XSS) in CVE-2025-13127 (CVE-2025-13127)
cross-site scripting in CVE-2025-13127 (CVE-2025-13127). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7073 |
|
Vulnerability in c (CVE-2025-7073)
vulnerability in c (CVE-2025-7073). Successful exploitation can lead to full system takeover.
|
| CVE-2025-1161 |
|
Vulnerability in privilege-escalation (CVE-2025-1161)
vulnerability in privilege-escalation (CVE-2025-1161). Successful exploitation can lead to full system takeover.
|
| CVE-2025-14087 |
|
Vulnerability in dos (CVE-2025-14087)
vulnerability in dos (CVE-2025-14087). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-13954 |
|
Vulnerability in CVE-2025-13954 (CVE-2025-13954)
vulnerability in CVE-2025-13954 (CVE-2025-13954). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-13955 |
|
Vulnerability in CVE-2025-13955 (CVE-2025-13955)
vulnerability in CVE-2025-13955 (CVE-2025-13955). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-64898 |
|
Vulnerability in adobe (CVE-2025-64898)
vulnerability in adobe (CVE-2025-64898). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-61821 |
|
XXE (XML External Entity) in adobe (CVE-2025-61821)
vulnerability in adobe (CVE-2025-61821). Confidential information can be exposed externally.
|
| CVE-2025-61813 |
|
XXE (XML External Entity) in adobe (CVE-2025-61813)
vulnerability in adobe (CVE-2025-61813). Confidential information can be exposed externally.
|
| CVE-2025-65882 |
|
OS Command Injection in c (CVE-2025-65882)
OS command injection in c (CVE-2025-65882). Successful exploitation can lead to full system takeover.
|
| CVE-2025-6924 |
|
Cross-Site Scripting (XSS) in CVE-2025-6924 (CVE-2025-6924)
cross-site scripting in CVE-2025-6924 (CVE-2025-6924). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6923 |
|
Cross-Site Scripting (XSS) in CVE-2025-6923 (CVE-2025-6923)
cross-site scripting in CVE-2025-6923 (CVE-2025-6923). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-12504 |
|
SQL Injection in sqli (CVE-2025-12504)
SQL injection in sqli (CVE-2025-12504). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65594 |
|
Vulnerability in os4ed (CVE-2025-65594)
vulnerability in os4ed (CVE-2025-65594). Confidential information can be exposed externally.
|
| CVE-2025-64667 |
|
Vulnerability in microsoft (CVE-2025-64667)
vulnerability in microsoft (CVE-2025-64667). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-64666 |
|
Vulnerability in microsoft (CVE-2025-64666)
vulnerability in microsoft (CVE-2025-64666). Successful exploitation can lead to full system takeover.
|
| CVE-2025-62557 |
|
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2025-62554 |
|
Vulnerability in microsoft (CVE-2025-62554)
vulnerability in microsoft (CVE-2025-62554). Successful exploitation can lead to full system takeover.
|
| CVE-2025-59719 |
|
Vulnerability in fortinet (CVE-2025-59719)
vulnerability in fortinet (CVE-2025-59719). Successful exploitation can lead to full system takeover.
|
| CVE-2025-61078 |
|
Cross-Site Scripting (XSS) in phpipam (CVE-2025-61078)
cross-site scripting in phpipam (CVE-2025-61078). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-53679 |
|
OS Command Injection in fortinet (CVE-2025-53679)
OS command injection in fortinet (CVE-2025-53679). Successful exploitation can lead to full system takeover.
|
| CVE-2025-56704 |
|
Unrestricted File Upload in lepton-cms (CVE-2025-56704)
vulnerability in lepton-cms (CVE-2025-56704). Successful exploitation can lead to full system takeover.
|
| CVE-2025-11022 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-11022)
vulnerability in csrf (CVE-2025-11022). Successful exploitation can lead to full system takeover.
|
| CVE-2025-10876 |
|
Cross-Site Scripting (XSS) in CVE-2025-10876 (CVE-2025-10876)
cross-site scripting in CVE-2025-10876 (CVE-2025-10876). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-62221 KEV |
|
[KEV] Use-After-Free in Microsoft windows (CVE-2025-62221)
vulnerability in Microsoft windows (CVE-2025-62221). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-6218 KEV |
|
[KEV] Path Traversal in Rarlab winrar (CVE-2025-6218)
path traversal in Rarlab winrar (CVE-2025-6218). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-65795 |
|
Vulnerability in usememos (CVE-2025-65795)
vulnerability in usememos (CVE-2025-65795). Data can be tampered with by attackers.
|
| CVE-2025-65797 |
|
Vulnerability in dos (CVE-2025-65797)
vulnerability in dos (CVE-2025-65797). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65799 |
|
Vulnerability in path-traversal (CVE-2025-65799)
vulnerability in path-traversal (CVE-2025-65799). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65363 |
|
Command Injection in ruijie (CVE-2025-65363)
command injection in ruijie (CVE-2025-65363). Successful exploitation can lead to full system takeover.
|
| CVE-2025-48615 |
|
Vulnerability in google (CVE-2025-48615)
vulnerability in google (CVE-2025-48615). Successful exploitation can lead to full system takeover.
|
| CVE-2025-48600 |
|
Vulnerability in google (CVE-2025-48600)
vulnerability in google (CVE-2025-48600). Confidential information can be exposed externally.
|
| CVE-2025-48612 |
|
Vulnerability in google (CVE-2025-48612)
vulnerability in google (CVE-2025-48612). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65796 |
|
Vulnerability in usememos (CVE-2025-65796)
vulnerability in usememos (CVE-2025-65796). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65798 |
|
Vulnerability in usememos (CVE-2025-65798)
vulnerability in usememos (CVE-2025-65798). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-66329 |
|
Vulnerability in huawei (CVE-2025-66329)
vulnerability in huawei (CVE-2025-66329). Risk of unauthorized operations or information disclosure.
|