Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2024-58130 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2024-58130)
cross-site scripting in misp-project (CVE-2024-58130). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-25612 |
|
Cross-Site Scripting (XSS) in CVE-2025-25612 (CVE-2025-25612)
cross-site scripting in CVE-2025-25612 (CVE-2025-25612). Successful exploitation can lead to full system takeover.
|
| CVE-2025-21862 |
|
Vulnerability in c (CVE-2025-21862)
vulnerability in c (CVE-2025-21862). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21865 |
|
Out-of-Bounds Write in c (CVE-2025-21865)
out-of-bounds write in c (CVE-2025-21865). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21858 |
|
Use-After-Free in c (CVE-2025-21858)
vulnerability in c (CVE-2025-21858). Successful exploitation can lead to full system takeover.
|
| CVE-2025-21846 |
|
Vulnerability in c (CVE-2025-21846)
vulnerability in c (CVE-2025-21846). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21845 |
|
Vulnerability in c (CVE-2025-21845)
vulnerability in c (CVE-2025-21845). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4432 |
|
Vulnerability in ring (CVE-2025-4432)
vulnerability in ring (CVE-2025-4432). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.17.12` or later.
|
| CVE-2024-58071 |
|
Vulnerability in c (CVE-2024-58071)
vulnerability in c (CVE-2024-58071). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-58058 |
|
Vulnerability in c (CVE-2024-58058)
vulnerability in c (CVE-2024-58058). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21806 |
|
Vulnerability in c (CVE-2025-21806)
vulnerability in c (CVE-2025-21806). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21814 |
|
Vulnerability in c (CVE-2025-21814)
vulnerability in c (CVE-2025-21814). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-1686 |
|
Vulnerability in pebbletemplates (CVE-2025-1686)
vulnerability in pebbletemplates (CVE-2025-1686). Confidential information can be exposed externally.
|
| CVE-2025-21796 |
|
Use-After-Free in c (CVE-2025-21796)
vulnerability in c (CVE-2025-21796). Successful exploitation can lead to full system takeover.
|
| CVE-2025-21787 |
|
Vulnerability in c (CVE-2025-21787)
vulnerability in c (CVE-2025-21787). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21767 |
|
Vulnerability in c (CVE-2025-21767)
vulnerability in c (CVE-2025-21767). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21756 |
|
Use-After-Free in c (CVE-2025-21756)
vulnerability in c (CVE-2025-21756). Successful exploitation can lead to full system takeover.
|
| CVE-2025-21753 |
|
Use-After-Free in c (CVE-2025-21753)
vulnerability in c (CVE-2025-21753). Successful exploitation can lead to full system takeover.
|
| CVE-2025-21739 |
|
Use-After-Free in c (CVE-2025-21739)
vulnerability in c (CVE-2025-21739). Successful exploitation can lead to full system takeover.
|
| CVE-2024-58005 |
|
Vulnerability in c (CVE-2024-58005)
vulnerability in c (CVE-2024-58005). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21719 |
|
Out-of-Bounds Read in c (CVE-2025-21719)
vulnerability in c (CVE-2025-21719). Confidential information can be exposed externally.
|
| CVE-2024-57996 |
|
Vulnerability in c (CVE-2024-57996)
vulnerability in c (CVE-2024-57996). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-57979 |
|
Use-After-Free in c (CVE-2024-57979)
vulnerability in c (CVE-2024-57979). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25802 |
|
Command Injection in seacms (CVE-2025-25802)
command injection in seacms (CVE-2025-25802). Data can be tampered with by attackers.
|
| CVE-2025-25827 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-25827)
SSRF in ssrf (CVE-2025-25827). Confidential information can be exposed externally.
|
| CVE-2025-25823 |
|
Cross-Site Scripting (XSS) in emlog (CVE-2025-25823)
cross-site scripting in emlog (CVE-2025-25823). Confidential information can be exposed externally.
|
| CVE-2025-25818 |
|
Cross-Site Scripting (XSS) in emlog (CVE-2025-25818)
cross-site scripting in emlog (CVE-2025-25818). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-25813 |
|
Command Injection in seacms (CVE-2025-25813)
command injection in seacms (CVE-2025-25813). Data can be tampered with by attackers.
|
| CVE-2025-25794 |
|
Command Injection in seacms (CVE-2025-25794)
command injection in seacms (CVE-2025-25794). Data can be tampered with by attackers.
|
| CVE-2025-25796 |
|
Command Injection in seacms (CVE-2025-25796)
command injection in seacms (CVE-2025-25796). Data can be tampered with by attackers.
|
| CVE-2025-25797 |
|
Command Injection in seacms (CVE-2025-25797)
command injection in seacms (CVE-2025-25797). Data can be tampered with by attackers.
|
| CVE-2025-25799 |
|
Vulnerability in seacms (CVE-2025-25799)
vulnerability in seacms (CVE-2025-25799). Confidential information can be exposed externally.
|
| CVE-2025-25800 |
|
Path Traversal in seacms (CVE-2025-25800)
path traversal in seacms (CVE-2025-25800). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-25793 |
|
Command Injection in seacms (CVE-2025-25793)
command injection in seacms (CVE-2025-25793). Data can be tampered with by attackers.
|
| CVE-2025-25792 |
|
Command Injection in seacms (CVE-2025-25792)
command injection in seacms (CVE-2025-25792). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-25783 |
|
Unrestricted File Upload in emlog (CVE-2025-25783)
vulnerability in emlog (CVE-2025-25783). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25784 |
|
Unrestricted File Upload in c (CVE-2025-25784)
vulnerability in c (CVE-2025-25784). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25785 |
|
SSRF (Server-Side Request Forgery) in c (CVE-2025-25785)
SSRF in c (CVE-2025-25785). Confidential information can be exposed externally.
|
| CVE-2025-25789 |
|
Code Injection in foxcms (CVE-2025-25789)
code injection in foxcms (CVE-2025-25789). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25790 |
|
Unrestricted File Upload in foxcms (CVE-2025-25790)
vulnerability in foxcms (CVE-2025-25790). Successful exploitation can lead to full system takeover.
|
| CVE-2022-49158 |
|
Vulnerability in c (CVE-2022-49158)
vulnerability in c (CVE-2022-49158). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45777 |
|
Out-of-Bounds Write in c (CVE-2024-45777)
out-of-bounds write in c (CVE-2024-45777). Successful exploitation can lead to full system takeover.
|
| CVE-2025-1376 |
|
Vulnerability in c (CVE-2025-1376)
vulnerability in c (CVE-2025-1376). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-1352 |
|
Buffer Overflow in c (CVE-2025-1352)
vulnerability in c (CVE-2025-1352). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-57969 |
|
app/Model/Attribute.php in MISP before 2.4.198 ignores an ACL during a GUI attribute search.
app/Model/Attribute.php in MISP before 2.4.198 ignores an ACL during a GUI attribute search.
|
| CVE-2025-21701 |
|
Vulnerability in c (CVE-2025-21701)
vulnerability in c (CVE-2025-21701). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21692 |
|
Vulnerability in c (CVE-2025-21692)
vulnerability in c (CVE-2025-21692). Successful exploitation can lead to full system takeover.
|
| CVE-2024-11831 |
|
Cross-Site Scripting (XSS) in CVE-2024-11831 (CVE-2024-11831)
cross-site scripting in CVE-2024-11831 (CVE-2024-11831). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-57523 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2024-57523)
vulnerability in csrf (CVE-2024-57523). Data can be tampered with by attackers.
|
| CVE-2024-57598 |
|
Vulnerability in cpp (CVE-2024-57598)
vulnerability in cpp (CVE-2024-57598). Risk of unauthorized operations or information disclosure.
|