Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-44141 |
|
A Cross-Site Scripting (XSS) vulnerability exists in the node creation form of Backdrop CMS 1.30.
A Cross-Site Scripting (XSS) vulnerability exists in the node creation form of Backdrop CMS 1.30.
|
| CVE-2023-44915 |
|
Cross-Site Scripting (XSS) in CVE-2023-44915 (CVE-2023-44915)
cross-site scripting in CVE-2023-44915 (CVE-2023-44915). Confidential information can be exposed externally.
|
| CVE-2019-6693 KEV |
|
[KEV] Vulnerability in Fortinet fortios (CVE-2019-6693)
vulnerability in Fortinet fortios (CVE-2019-6693). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-54085 KEV |
|
[KEV] Vulnerability in Ami megarac-spx (CVE-2024-54085)
vulnerability in Ami megarac-spx (CVE-2024-54085). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-0769 KEV |
|
[KEV] Path Traversal in D-link dir-859-router (CVE-2024-0769)
path traversal in D-link dir-859-router (CVE-2024-0769). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-4378 |
|
Vulnerability in CVE-2025-4378 (CVE-2025-4378)
vulnerability in CVE-2025-4378 (CVE-2025-4378). Confidential information can be exposed externally.
|
| CVE-2025-44531 |
|
Vulnerability in dos (CVE-2025-44531)
vulnerability in dos (CVE-2025-44531). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6032 |
|
Vulnerability in CVE-2025-6032 (CVE-2025-6032)
vulnerability in CVE-2025-6032 (CVE-2025-6032). Successful exploitation can lead to full system takeover.
|
| CVE-2025-5318 |
|
Out-of-Bounds Read in redhat (CVE-2025-5318)
vulnerability in redhat (CVE-2025-5318). Confidential information can be exposed externally.
|
| CVE-2025-44528 |
|
Vulnerability in dos (CVE-2025-44528)
vulnerability in dos (CVE-2025-44528). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-47031 |
|
Vulnerability in ncr (CVE-2023-47031)
vulnerability in ncr (CVE-2023-47031). Successful exploitation can lead to full system takeover.
|
| CVE-2025-44203 |
|
Vulnerability in dos (CVE-2025-44203)
vulnerability in dos (CVE-2025-44203). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38083 |
|
Vulnerability in linux (CVE-2025-38083)
vulnerability in linux (CVE-2025-38083). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4738 |
|
SQL Injection in sqli (CVE-2025-4738)
SQL injection in sqli (CVE-2025-4738). Successful exploitation can lead to full system takeover.
|
| CVE-2025-6019 |
|
Vulnerability in privilege-escalation (CVE-2025-6019)
vulnerability in privilege-escalation (CVE-2025-6019). Successful exploitation can lead to full system takeover.
|
| CVE-2025-46157 |
|
Unrestricted File Upload in efrotech (CVE-2025-46157)
vulnerability in efrotech (CVE-2025-46157). Successful exploitation can lead to full system takeover.
|
| CVE-2022-50116 |
|
Vulnerability in linux (CVE-2022-50116)
vulnerability in linux (CVE-2022-50116). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-50073 |
|
Vulnerability in c (CVE-2022-50073)
vulnerability in c (CVE-2022-50073). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-49961 |
|
Out-of-Bounds Read in linux (CVE-2022-49961)
vulnerability in linux (CVE-2022-49961). Confidential information can be exposed externally.
|
| CVE-2025-38079 |
|
Vulnerability in linux (CVE-2025-38079)
vulnerability in linux (CVE-2025-38079). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38058 |
|
Vulnerability in linux (CVE-2025-38058)
vulnerability in linux (CVE-2025-38058). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-49848 |
|
Out-of-Bounds Write in CVE-2025-49848 (CVE-2025-49848)
out-of-bounds write in CVE-2025-49848 (CVE-2025-49848). Successful exploitation can lead to full system takeover.
|
| CVE-2025-6199 |
|
Information Disclosure in gnome (CVE-2025-6199)
vulnerability in gnome (CVE-2025-6199). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-49179 |
|
Vulnerability in c (CVE-2025-49179)
vulnerability in c (CVE-2025-49179). Confidential information can be exposed externally.
|
| CVE-2025-49180 |
|
Vulnerability in CVE-2025-49180 (CVE-2025-49180)
vulnerability in CVE-2025-49180 (CVE-2025-49180). Successful exploitation can lead to full system takeover.
|
| CVE-2025-49175 |
|
Out-of-Bounds Read in CVE-2025-49175 (CVE-2025-49175)
vulnerability in CVE-2025-49175 (CVE-2025-49175). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-49176 |
|
Vulnerability in c (CVE-2025-49176)
vulnerability in c (CVE-2025-49176). Data can be tampered with by attackers.
|
| CVE-2025-49178 |
|
Vulnerability in dos (CVE-2025-49178)
vulnerability in dos (CVE-2025-49178). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-49177 |
|
Information Disclosure in CVE-2025-49177 (CVE-2025-49177)
vulnerability in CVE-2025-49177 (CVE-2025-49177). Confidential information can be exposed externally.
|
| CVE-2025-4404 |
|
Vulnerability in privilege-escalation (CVE-2025-4404)
vulnerability in privilege-escalation (CVE-2025-4404). Successful exploitation can lead to full system takeover. Exploitable via ``krbCanonicalName``.
|
| CVE-2025-6020 |
|
Path Traversal in CVE-2025-6020 (CVE-2025-6020)
path traversal in CVE-2025-6020 (CVE-2025-6020). Successful exploitation can lead to full system takeover.
|
| CVE-2023-0386 KEV |
|
[KEV] Vulnerability in Linux kernel (CVE-2023-0386)
vulnerability in Linux kernel (CVE-2023-0386). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-6141 |
|
Buffer Overflow in c (CVE-2025-6141)
vulnerability in c (CVE-2025-6141). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6170 |
|
Vulnerability in redhat (CVE-2025-6170)
vulnerability in redhat (CVE-2025-6170). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-49796 |
|
Out-of-Bounds Read in dos (CVE-2025-49796)
vulnerability in dos (CVE-2025-49796). Data can be tampered with by attackers.
|
| CVE-2023-33538 KEV |
|
[KEV] Command Injection in Tp-link multiple-routers (CVE-2023-33538)
command injection in Tp-link multiple-routers (CVE-2023-33538). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-6035 |
|
Vulnerability in dos (CVE-2025-6035)
vulnerability in dos (CVE-2025-6035). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-46060 |
|
Vulnerability in totolink (CVE-2025-46060)
vulnerability in totolink (CVE-2025-46060). Successful exploitation can lead to full system takeover.
|
| CVE-2025-46035 |
|
Vulnerability in dos (CVE-2025-46035)
vulnerability in dos (CVE-2025-46035). Confidential information can be exposed externally.
|
| CVE-2025-6021 |
|
Out-of-Bounds Write in java (CVE-2025-6021)
out-of-bounds write in java (CVE-2025-6021). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481` or later.
|
| CVE-2024-41502 |
|
Cross-Site Scripting (XSS) in jetimob (CVE-2024-41502)
cross-site scripting in jetimob (CVE-2024-41502). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-41503 |
|
Cross-Site Scripting (XSS) in jetimob (CVE-2024-41503)
cross-site scripting in jetimob (CVE-2024-41503). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-41504 |
|
Cross-Site Scripting (XSS) in jetimob (CVE-2024-41504)
cross-site scripting in jetimob (CVE-2024-41504). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-41505 |
|
Cross-Site Scripting (XSS) in jetimob (CVE-2024-41505)
cross-site scripting in jetimob (CVE-2024-41505). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-47953 |
|
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2025-47167 |
|
Vulnerability in microsoft (CVE-2025-47167)
vulnerability in microsoft (CVE-2025-47167). Successful exploitation can lead to full system takeover.
|
| CVE-2025-47164 |
|
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2025-47162 |
|
Vulnerability in microsoft (CVE-2025-47162)
vulnerability in microsoft (CVE-2025-47162). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25250 |
|
Information Disclosure in fortinet (CVE-2025-25250)
vulnerability in fortinet (CVE-2025-25250). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-24471 |
|
Vulnerability in fortinet (CVE-2025-24471)
vulnerability in fortinet (CVE-2025-24471). Data can be tampered with by attackers.
|