Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-6175 |
|
Vulnerability in CVE-2025-6175 (CVE-2025-6175)
vulnerability in CVE-2025-6175 (CVE-2025-6175). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6060 |
|
Cross-Site Scripting (XSS) in CVE-2025-6060 (CVE-2025-6060)
cross-site scripting in CVE-2025-6060 (CVE-2025-6060). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-29534 |
|
OS Command Injection in CVE-2025-29534 (CVE-2025-29534)
OS command injection in CVE-2025-29534 (CVE-2025-29534). Successful exploitation can lead to full system takeover.
|
| CVE-2025-50492 |
|
Vulnerability in phpgurukul (CVE-2025-50492)
vulnerability in phpgurukul (CVE-2025-50492). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-50489 |
|
Vulnerability in phpgurukul (CVE-2025-50489)
vulnerability in phpgurukul (CVE-2025-50489). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-50490 |
|
Vulnerability in phpgurukul (CVE-2025-50490)
vulnerability in phpgurukul (CVE-2025-50490). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-50493 |
|
Vulnerability in phpgurukul (CVE-2025-50493)
vulnerability in phpgurukul (CVE-2025-50493). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-50494 |
|
Vulnerability in phpgurukul (CVE-2025-50494)
vulnerability in phpgurukul (CVE-2025-50494). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4056 |
|
Code Injection in dos (CVE-2025-4056)
code injection in dos (CVE-2025-4056). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5997 |
|
Vulnerability in CVE-2025-5997 (CVE-2025-5997)
vulnerability in CVE-2025-5997 (CVE-2025-5997). Successful exploitation can lead to full system takeover.
|
| CVE-2025-6918 |
|
SQL Injection in sqli (CVE-2025-6918)
SQL injection in sqli (CVE-2025-6918). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38491 |
|
Vulnerability in c (CVE-2025-38491)
vulnerability in c (CVE-2025-38491). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38477 |
|
Vulnerability in linux (CVE-2025-38477)
vulnerability in linux (CVE-2025-38477). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38468 |
|
Vulnerability in linux (CVE-2025-38468)
vulnerability in linux (CVE-2025-38468). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38471 |
|
Use-After-Free in c (CVE-2025-38471)
vulnerability in c (CVE-2025-38471). Successful exploitation can lead to full system takeover.
|
| CVE-2025-20337 KEV |
|
[KEV] Vulnerability in Cisco identity-services-engine (CVE-2025-20337)
vulnerability in Cisco identity-services-engine (CVE-2025-20337). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-20281 KEV |
|
[KEV] Vulnerability in Cisco identity-services-engine (CVE-2025-20281)
vulnerability in Cisco identity-services-engine (CVE-2025-20281). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-2533 KEV |
|
[KEV] Cross-Site Request Forgery (CSRF) in Papercut ngmf (CVE-2023-2533)
vulnerability in Papercut ngmf (CVE-2023-2533). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-8224 |
|
Vulnerability in c (CVE-2025-8224)
vulnerability in c (CVE-2025-8224). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5449 |
|
Vulnerability in dos (CVE-2025-5449)
vulnerability in dos (CVE-2025-5449). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-45960 |
|
Cross-Site Scripting (XSS) in tawk (CVE-2025-45960)
cross-site scripting in tawk (CVE-2025-45960). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38465 |
|
Vulnerability in linux (CVE-2025-38465)
vulnerability in linux (CVE-2025-38465). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5243 |
|
OS Command Injection in CVE-2025-5243 (CVE-2025-5243)
OS command injection in CVE-2025-5243 (CVE-2025-5243). Successful exploitation can lead to full system takeover.
|
| CVE-2025-44608 |
|
SQL Injection in sqli (CVE-2025-44608)
SQL injection in sqli (CVE-2025-44608). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-48729 |
|
Privilege Escalation in CVE-2024-48729 (CVE-2024-48729)
vulnerability in CVE-2024-48729 (CVE-2024-48729). Confidential information can be exposed externally.
|
| CVE-2025-45939 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-45939)
SSRF in ssrf (CVE-2025-45939). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38415 |
|
Out-of-Bounds Write in c (CVE-2025-38415)
out-of-bounds write in c (CVE-2025-38415). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38393 |
|
Vulnerability in linux (CVE-2025-38393)
vulnerability in linux (CVE-2025-38393). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38364 |
|
Vulnerability in linux (CVE-2025-38364)
vulnerability in linux (CVE-2025-38364). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5253 |
|
Vulnerability in dos (CVE-2025-5253)
vulnerability in dos (CVE-2025-5253). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5254 |
|
Cross-Site Scripting (XSS) in CVE-2025-5254 (CVE-2025-5254)
cross-site scripting in CVE-2025-5254 (CVE-2025-5254). Confidential information can be exposed externally.
|
| CVE-2025-8114 |
|
Vulnerability in libssh (CVE-2025-8114)
vulnerability in libssh (CVE-2025-8114). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51089 |
|
Vulnerability in tenda (CVE-2025-51089)
vulnerability in tenda (CVE-2025-51089). Risk of unauthorized operations or information disclosure. Exploitable via ``mac``.
|
| CVE-2025-51082 |
|
Vulnerability in tenda (CVE-2025-51082)
vulnerability in tenda (CVE-2025-51082). Risk of unauthorized operations or information disclosure. Exploitable via ``timeZone``.
|
| CVE-2025-51085 |
|
Vulnerability in tenda (CVE-2025-51085)
vulnerability in tenda (CVE-2025-51085). Risk of unauthorized operations or information disclosure. Exploitable via ``timeZone``.
|
| CVE-2025-51087 |
|
Vulnerability in tenda (CVE-2025-51087)
vulnerability in tenda (CVE-2025-51087). Confidential information can be exposed externally.
|
| CVE-2025-51088 |
|
Vulnerability in tenda (CVE-2025-51088)
vulnerability in tenda (CVE-2025-51088). Risk of unauthorized operations or information disclosure. Exploitable via ``shareSpeed``.
|
| CVE-2025-4784 |
|
SQL Injection in sqli (CVE-2025-4784)
SQL injection in sqli (CVE-2025-4784). Successful exploitation can lead to full system takeover.
|
| CVE-2025-4822 |
|
SQL Injection in sqli (CVE-2025-4822)
SQL injection in sqli (CVE-2025-4822). Successful exploitation can lead to full system takeover.
|
| CVE-2025-46171 |
|
Vulnerability in vbulletin (CVE-2025-46171)
vulnerability in vbulletin (CVE-2025-46171). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6018 |
|
Authorization Flaw in privilege-escalation (CVE-2025-6018)
vulnerability in privilege-escalation (CVE-2025-6018). Successful exploitation can lead to full system takeover.
|
| CVE-2025-46099 |
|
Unrestricted File Upload in pluck-cms (CVE-2025-46099)
vulnerability in pluck-cms (CVE-2025-46099). Successful exploitation can lead to full system takeover.
|
| CVE-2025-4411 |
|
Cross-Site Scripting (XSS) in CVE-2025-4411 (CVE-2025-4411)
cross-site scripting in CVE-2025-4411 (CVE-2025-4411). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4296 |
|
Open Redirect in CVE-2025-4296 (CVE-2025-4296)
vulnerability in CVE-2025-4296 (CVE-2025-4296). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4878 |
|
Use-After-Free in CVE-2025-4878 (CVE-2025-4878)
vulnerability in CVE-2025-4878 (CVE-2025-4878). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4294 |
|
Cross-Site Scripting (XSS) in CVE-2025-4294 (CVE-2025-4294)
cross-site scripting in CVE-2025-4294 (CVE-2025-4294). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4285 |
|
SQL Injection in sqli (CVE-2025-4285)
SQL injection in sqli (CVE-2025-4285). Successful exploitation can lead to full system takeover.
|
| CVE-2025-4284 |
|
Cross-Site Scripting (XSS) in CVE-2025-4284 (CVE-2025-4284)
cross-site scripting in CVE-2025-4284 (CVE-2025-4284). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6558 KEV |
|
[KEV] Vulnerability in Google chromium (CVE-2025-6558)
vulnerability in Google chromium (CVE-2025-6558). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-2775 KEV |
|
[KEV] XXE (XML External Entity) in sysaid (CVE-2025-2775)
vulnerability in sysaid (CVE-2025-2775). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|