Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-57105 |
|
Command Injection in dlink (CVE-2025-57105)
command injection in dlink (CVE-2025-57105). Successful exploitation can lead to full system takeover.
|
| CVE-2025-50674 |
|
Vulnerability in openmediavault (CVE-2025-50674)
vulnerability in openmediavault (CVE-2025-50674). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38670 |
|
Vulnerability in linux (CVE-2025-38670)
vulnerability in linux (CVE-2025-38670). Confidential information can be exposed externally.
|
| CVE-2025-38659 |
|
Vulnerability in linux (CVE-2025-38659)
vulnerability in linux (CVE-2025-38659). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38627 |
|
Use-After-Free in c (CVE-2025-38627)
vulnerability in c (CVE-2025-38627). Successful exploitation can lead to full system takeover.
|
| CVE-2025-51989 |
|
Vulnerability in CVE-2025-51989 (CVE-2025-51989)
vulnerability in CVE-2025-51989 (CVE-2025-51989). Confidential information can be exposed externally.
|
| CVE-2025-55371 |
|
Vulnerability in jishenghua (CVE-2025-55371)
vulnerability in jishenghua (CVE-2025-55371). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-55564 |
|
Vulnerability in tenda (CVE-2025-55564)
vulnerability in tenda (CVE-2025-55564). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-55366 |
|
Vulnerability in privilege-escalation (CVE-2025-55366)
vulnerability in privilege-escalation (CVE-2025-55366). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-55367 |
|
Vulnerability in jishenghua (CVE-2025-55367)
vulnerability in jishenghua (CVE-2025-55367). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-55368 |
|
Vulnerability in jishenghua (CVE-2025-55368)
vulnerability in jishenghua (CVE-2025-55368). Successful exploitation can lead to full system takeover.
|
| CVE-2025-43300 KEV |
|
[KEV] Out-of-Bounds Write in Apple ios (CVE-2025-43300)
out-of-bounds write in Apple ios (CVE-2025-43300). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2011-10023 |
|
Vulnerability in CVE-2011-10023 (CVE-2011-10023)
vulnerability in CVE-2011-10023 (CVE-2011-10023). Risk of unauthorized operations or information disclosure.
|
| CVE-2010-20042 |
|
Vulnerability in CVE-2010-20042 (CVE-2010-20042)
vulnerability in CVE-2010-20042 (CVE-2010-20042). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-50864 |
|
Vulnerability in csharp (CVE-2025-50864)
vulnerability in csharp (CVE-2025-50864). Data can be tampered with by attackers.
|
| CVE-2025-4877 |
|
Out-of-Bounds Write in CVE-2025-4877 (CVE-2025-4877)
out-of-bounds write in CVE-2025-4877 (CVE-2025-4877). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5260 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-5260)
SSRF in ssrf (CVE-2025-5260). Confidential information can be exposed externally.
|
| CVE-2025-51543 |
|
Vulnerability in CVE-2025-51543 (CVE-2025-51543)
vulnerability in CVE-2025-51543 (CVE-2025-51543). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38585 |
|
Out-of-Bounds Write in linux (CVE-2025-38585)
out-of-bounds write in linux (CVE-2025-38585). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38584 |
|
Use-After-Free in linux (CVE-2025-38584)
vulnerability in linux (CVE-2025-38584). Successful exploitation can lead to full system takeover.
|
| CVE-2025-51529 |
|
Vulnerability in dos (CVE-2025-51529)
vulnerability in dos (CVE-2025-51529). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-50567 |
|
SQL Injection in CVE-2025-50567 (CVE-2025-50567)
SQL injection in CVE-2025-50567 (CVE-2025-50567). Successful exploitation can lead to full system takeover.
|
| CVE-2025-54948 KEV |
|
[KEV] OS Command Injection in Trend micro trend-micro (CVE-2025-54948)
OS command injection in Trend micro trend-micro (CVE-2025-54948). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-38502 |
|
Out-of-Bounds Read in linux (CVE-2025-38502)
vulnerability in linux (CVE-2025-38502). Confidential information can be exposed externally.
|
| CVE-2025-1929 |
|
SQL Injection in sqli (CVE-2025-1929)
SQL injection in sqli (CVE-2025-1929). Successful exploitation can lead to full system takeover.
|
| CVE-2025-51965 |
|
Cross-Site Scripting (XSS) in CVE-2025-51965 (CVE-2025-51965)
cross-site scripting in CVE-2025-51965 (CVE-2025-51965). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-50862 |
|
Information Disclosure in CVE-2025-50862 (CVE-2025-50862)
vulnerability in CVE-2025-50862 (CVE-2025-50862). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-50861 |
|
Vulnerability in dos (CVE-2025-50861)
vulnerability in dos (CVE-2025-50861). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52335 |
|
Cross-Site Scripting (XSS) in eyoucms (CVE-2025-52335)
cross-site scripting in eyoucms (CVE-2025-52335). Risk of unauthorized operations or information disclosure.
|
| CVE-2012-10060 |
|
Vulnerability in sysax (CVE-2012-10060)
vulnerability in sysax (CVE-2012-10060). Successful exploitation can lead to full system takeover.
|
| CVE-2025-45313 |
|
Cross-Site Scripting (XSS) in hortusfox (CVE-2025-45313)
cross-site scripting in hortusfox (CVE-2025-45313). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-45314 |
|
Cross-Site Scripting (XSS) in hortusfox (CVE-2025-45314)
cross-site scripting in hortusfox (CVE-2025-45314). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-45315 |
|
Cross-Site Scripting (XSS) in hortusfox (CVE-2025-45315)
cross-site scripting in hortusfox (CVE-2025-45315). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51451 |
|
Authentication Bypass in totolink (CVE-2025-51451)
authentication bypass in totolink (CVE-2025-51451). Successful exploitation can lead to full system takeover.
|
| CVE-2025-51452 |
|
Vulnerability in totolink (CVE-2025-51452)
vulnerability in totolink (CVE-2025-51452). Successful exploitation can lead to full system takeover.
|
| CVE-2025-48989 |
|
Vulnerability in org.apache.tomcat:tomcat-coyote (CVE-2025-48989)
vulnerability in org.apache.tomcat:tomcat-coyote (CVE-2025-48989). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.0.108` or later.
|
| CVE-2025-8916 |
|
Vulnerability in org.bouncycastle:bcpkix-fips (CVE-2025-8916)
vulnerability in org.bouncycastle:bcpkix-fips (CVE-2025-8916). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.0.8` or later.
|
| CVE-2025-25248 |
|
Vulnerability in fortinet (CVE-2025-25248)
vulnerability in fortinet (CVE-2025-25248). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-53766 |
|
Vulnerability in microsoft (CVE-2025-53766)
vulnerability in microsoft (CVE-2025-53766). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53732 |
|
Vulnerability in microsoft (CVE-2025-53732)
vulnerability in microsoft (CVE-2025-53732). Successful exploitation can lead to full system takeover.
|
| CVE-2025-33051 |
|
Information Disclosure in microsoft (CVE-2025-33051)
vulnerability in microsoft (CVE-2025-33051). Confidential information can be exposed externally.
|
| CVE-2025-25005 |
|
Vulnerability in microsoft (CVE-2025-25005)
vulnerability in microsoft (CVE-2025-25005). Confidential information can be exposed externally.
|
| CVE-2025-38500 |
|
Use-After-Free in c (CVE-2025-38500)
vulnerability in c (CVE-2025-38500). Successful exploitation can lead to full system takeover.
|
| CVE-2024-54678 |
|
Unsafe Deserialization in CVE-2024-54678 (CVE-2024-54678)
vulnerability in CVE-2024-54678 (CVE-2024-54678). Successful exploitation can lead to full system takeover.
|
| CVE-2025-8088 KEV |
|
[KEV] Vulnerability in Rarlab winrar (CVE-2025-8088)
vulnerability in Rarlab winrar (CVE-2025-8088). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-3893 KEV |
|
[KEV] Vulnerability in Microsoft internet-explorer (CVE-2013-3893)
vulnerability in Microsoft internet-explorer (CVE-2013-3893). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-8852 |
|
Information Disclosure in 5kcrm (CVE-2025-8852)
vulnerability in 5kcrm (CVE-2025-8852). Risk of unauthorized operations or information disclosure.
|
| CVE-2012-10047 |
|
SQL Injection in sqli (CVE-2012-10047)
SQL injection in sqli (CVE-2012-10047). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-8732 |
|
Vulnerability in xmlsoft (CVE-2025-8732)
vulnerability in xmlsoft (CVE-2025-8732). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7195 |
|
Vulnerability in CVE-2025-7195 (CVE-2025-7195)
vulnerability in CVE-2025-7195 (CVE-2025-7195). Successful exploitation can lead to full system takeover.
|