Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-32988 |
|
Vulnerability in dos (CVE-2025-32988)
vulnerability in dos (CVE-2025-32988). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-32989 |
|
Vulnerability in gnu (CVE-2025-32989)
vulnerability in gnu (CVE-2025-32989). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5777 KEV |
|
[KEV] Out-of-Bounds Read in Citrix netscaler-adc-and-gateway (CVE-2025-5777)
vulnerability in Citrix netscaler-adc-and-gateway (CVE-2025-5777). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-44525 |
|
Vulnerability in dos (CVE-2025-44525)
vulnerability in dos (CVE-2025-44525). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-44526 |
|
Vulnerability in dos (CVE-2025-44526)
vulnerability in dos (CVE-2025-44526). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38250 |
|
Use-After-Free in c (CVE-2025-38250)
vulnerability in c (CVE-2025-38250). Successful exploitation can lead to full system takeover.
|
| CVE-2025-49702 |
|
Vulnerability in microsoft (CVE-2025-49702)
vulnerability in microsoft (CVE-2025-49702). Successful exploitation can lead to full system takeover.
|
| CVE-2025-49697 |
|
Vulnerability in microsoft (CVE-2025-49697)
vulnerability in microsoft (CVE-2025-49697). Successful exploitation can lead to full system takeover.
|
| CVE-2025-49696 |
|
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2025-49695 |
|
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2025-29267 |
|
SQL Injection in sqli (CVE-2025-29267)
SQL injection in sqli (CVE-2025-29267). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-55599 |
|
Vulnerability in fortinet (CVE-2024-55599)
vulnerability in fortinet (CVE-2024-55599). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7345 |
|
Vulnerability in c (CVE-2025-7345)
vulnerability in c (CVE-2025-7345). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38236 |
|
Use-After-Free in c (CVE-2025-38236)
vulnerability in c (CVE-2025-38236). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10033 KEV |
|
[KEV] Command Injection in php (CVE-2016-10033)
command injection in php (CVE-2016-10033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-9621 KEV |
|
[KEV] SSRF (Server-Side Request Forgery) in Synacor zimbra-collaboration-suite-zcs (CVE-2019-9621)
SSRF in Synacor zimbra-collaboration-suite-zcs (CVE-2019-9621). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-5418 KEV |
|
[KEV] Path Traversal in rails (CVE-2019-5418)
path traversal in rails (CVE-2019-5418). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-3931 KEV |
|
[KEV] Buffer Overflow in Looking glass looking-glass (CVE-2014-3931)
vulnerability in Looking glass looking-glass (CVE-2014-3931). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-49601 |
|
Out-of-Bounds Read in trustedfirmware (CVE-2025-49601)
vulnerability in trustedfirmware (CVE-2025-49601). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38231 |
|
Vulnerability in linux (CVE-2025-38231)
vulnerability in linux (CVE-2025-38231). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38232 |
|
Vulnerability in linux (CVE-2025-38232)
vulnerability in linux (CVE-2025-38232). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38222 |
|
Vulnerability in c (CVE-2025-38222)
vulnerability in c (CVE-2025-38222). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38212 |
|
Use-After-Free in linux (CVE-2025-38212)
vulnerability in linux (CVE-2025-38212). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38214 |
|
Vulnerability in c (CVE-2025-38214)
vulnerability in c (CVE-2025-38214). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38215 |
|
Vulnerability in c (CVE-2025-38215)
vulnerability in c (CVE-2025-38215). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38192 |
|
Vulnerability in c (CVE-2025-38192)
vulnerability in c (CVE-2025-38192). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5351 |
|
Vulnerability in libssh (CVE-2025-5351)
vulnerability in libssh (CVE-2025-5351). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38167 |
|
Vulnerability in linux (CVE-2025-38167)
vulnerability in linux (CVE-2025-38167). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38129 |
|
Use-After-Free in c (CVE-2025-38129)
vulnerability in c (CVE-2025-38129). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38124 |
|
Vulnerability in c (CVE-2025-38124)
vulnerability in c (CVE-2025-38124). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38111 |
|
Out-of-Bounds Read in linux (CVE-2025-38111)
vulnerability in linux (CVE-2025-38111). Confidential information can be exposed externally.
|
| CVE-2025-38100 |
|
Vulnerability in linux (CVE-2025-38100)
vulnerability in linux (CVE-2025-38100). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-45029 |
|
Vulnerability in CVE-2025-45029 (CVE-2025-45029)
vulnerability in CVE-2025-45029 (CVE-2025-45029). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6554 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2025-6554)
vulnerability in Google chromium-v8 (CVE-2025-6554). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-6297 |
|
Vulnerability in dos (CVE-2025-6297)
vulnerability in dos (CVE-2025-6297). Confidential information can be exposed externally.
|
| CVE-2025-48927 KEV |
|
[KEV] Vulnerability in Telemessage tm-sgnl (CVE-2025-48927)
vulnerability in Telemessage tm-sgnl (CVE-2025-48927). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-48928 KEV |
|
[KEV] Vulnerability in Telemessage tm-sgnl (CVE-2025-48928)
vulnerability in Telemessage tm-sgnl (CVE-2025-48928). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-32462 |
|
Authorization Flaw in sudo-project (CVE-2025-32462)
vulnerability in sudo-project (CVE-2025-32462). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-12915 |
|
Cross-Site Scripting (XSS) in CVE-2024-12915 (CVE-2024-12915)
cross-site scripting in CVE-2024-12915 (CVE-2024-12915). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52904 |
|
Command Injection in github.com/filebrowser/filebrowser/v2 (CVE-2025-52904)
command injection in github.com/filebrowser/filebrowser/v2 (CVE-2025-52904). Successful exploitation can lead to full system takeover. Exploitable via ``grep``. Mitigation: upgrade to `2.33.8` or later.
|
| CVE-2025-45931 |
|
Command Injection in dlink (CVE-2025-45931)
command injection in dlink (CVE-2025-45931). Successful exploitation can lead to full system takeover.
|
| CVE-2025-6543 KEV |
|
[KEV] Buffer Overflow in Citrix netscaler-adc-and-gateway (CVE-2025-6543)
vulnerability in Citrix netscaler-adc-and-gateway (CVE-2025-6543). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-12150 |
|
SQL Injection in sqli (CVE-2024-12150)
SQL injection in sqli (CVE-2024-12150). Successful exploitation can lead to full system takeover.
|
| CVE-2024-12364 |
|
SQL Injection in sqli (CVE-2024-12364)
SQL injection in sqli (CVE-2024-12364). Successful exploitation can lead to full system takeover.
|
| CVE-2024-12143 |
|
SQL Injection in sqli (CVE-2024-12143)
SQL injection in sqli (CVE-2024-12143). Successful exploitation can lead to full system takeover.
|
| CVE-2025-44559 |
|
Vulnerability in dos (CVE-2025-44559)
vulnerability in dos (CVE-2025-44559). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-11739 |
|
SQL Injection in sqli (CVE-2024-11739)
SQL injection in sqli (CVE-2024-11739). Successful exploitation can lead to full system takeover.
|
| CVE-2025-45729 |
|
Vulnerability in dlink (CVE-2025-45729)
vulnerability in dlink (CVE-2025-45729). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52903 |
|
Vulnerability in github.com/filebrowser/filebrowser/v2 (CVE-2025-52903)
vulnerability in github.com/filebrowser/filebrowser/v2 (CVE-2025-52903). Successful exploitation can lead to full system takeover. Exploitable via ``find``. Mitigation: upgrade to `2.33.10` or later.
|
| CVE-2025-40910 |
|
Vulnerability in CVE-2025-40910 (CVE-2025-40910)
vulnerability in CVE-2025-40910 (CVE-2025-40910). Risk of unauthorized operations or information disclosure.
|