Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-2775 KEV |
|
[KEV] XXE (XML External Entity) in sysaid (CVE-2025-2775)
vulnerability in sysaid (CVE-2025-2775). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-2776 KEV |
|
[KEV] XXE (XML External Entity) in sysaid (CVE-2025-2776)
vulnerability in sysaid (CVE-2025-2776). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-54309 KEV |
|
[KEV] Vulnerability in crushftp (CVE-2025-54309)
vulnerability in crushftp (CVE-2025-54309). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-53770 KEV |
|
[KEV] Unsafe Deserialization in Microsoft sharepoint (CVE-2025-53770)
vulnerability in Microsoft sharepoint (CVE-2025-53770). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-38350 |
|
Use-After-Free in linux (CVE-2025-38350)
vulnerability in linux (CVE-2025-38350). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25257 KEV |
|
[KEV] SQL Injection in Fortinet fortiweb (CVE-2025-25257)
SQL injection in Fortinet fortiweb (CVE-2025-25257). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-53816 |
|
Vulnerability in dos (CVE-2025-53816)
vulnerability in dos (CVE-2025-53816). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-20272 |
|
SQL Injection in sqli (CVE-2025-20272)
SQL injection in sqli (CVE-2025-20272). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6965 |
|
Vulnerability in SQLitePCLRaw.lib.e_sqlite3 (CVE-2025-6965)
vulnerability in SQLitePCLRaw.lib.e_sqlite3 (CVE-2025-6965). Data can be tampered with by attackers.
|
| CVE-2025-51655 |
|
SQL Injection in sqli (CVE-2025-51655)
SQL injection in sqli (CVE-2025-51655). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51656 |
|
SQL Injection in sqli (CVE-2025-51656)
SQL injection in sqli (CVE-2025-51656). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51657 |
|
SQL Injection in sqli (CVE-2025-51657)
SQL injection in sqli (CVE-2025-51657). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51658 |
|
SQL Injection in sqli (CVE-2025-51658)
SQL injection in sqli (CVE-2025-51658). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51659 |
|
SQL Injection in sqli (CVE-2025-51659)
SQL injection in sqli (CVE-2025-51659). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51660 |
|
SQL Injection in sqli (CVE-2025-51660)
SQL injection in sqli (CVE-2025-51660). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51652 |
|
SQL Injection in sqli (CVE-2025-51652)
SQL injection in sqli (CVE-2025-51652). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51653 |
|
SQL Injection in sqli (CVE-2025-51653)
SQL injection in sqli (CVE-2025-51653). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-51654 |
|
SQL Injection in sqli (CVE-2025-51654)
SQL injection in sqli (CVE-2025-51654). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-47812 KEV |
|
[KEV] Vulnerability in Wing ftp server wing-ftp-server (CVE-2025-47812)
vulnerability in Wing ftp server wing-ftp-server (CVE-2025-47812). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-7546 |
|
Buffer Overflow in c (CVE-2025-7546)
vulnerability in c (CVE-2025-7546). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7545 |
|
Buffer Overflow in c (CVE-2025-7545)
vulnerability in c (CVE-2025-7545). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-32990 |
|
Vulnerability in dos (CVE-2025-32990)
vulnerability in dos (CVE-2025-32990). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38342 |
|
Out-of-Bounds Read in linux (CVE-2025-38342)
vulnerability in linux (CVE-2025-38342). Confidential information can be exposed externally.
|
| CVE-2025-38347 |
|
Vulnerability in c (CVE-2025-38347)
vulnerability in c (CVE-2025-38347). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38322 |
|
Vulnerability in linux (CVE-2025-38322)
vulnerability in linux (CVE-2025-38322). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38312 |
|
Vulnerability in linux (CVE-2025-38312)
vulnerability in linux (CVE-2025-38312). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38280 |
|
Vulnerability in c (CVE-2025-38280)
vulnerability in c (CVE-2025-38280). Successful exploitation can lead to full system takeover. Exploitable via ``__bpf_prog_ret0_warn``.
|
| CVE-2025-38285 |
|
Vulnerability in c (CVE-2025-38285)
vulnerability in c (CVE-2025-38285). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-32988 |
|
Vulnerability in dos (CVE-2025-32988)
vulnerability in dos (CVE-2025-32988). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-32989 |
|
Vulnerability in gnu (CVE-2025-32989)
vulnerability in gnu (CVE-2025-32989). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5777 KEV |
|
[KEV] Out-of-Bounds Read in Citrix netscaler-adc-and-gateway (CVE-2025-5777)
vulnerability in Citrix netscaler-adc-and-gateway (CVE-2025-5777). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-44526 |
|
Vulnerability in dos (CVE-2025-44526)
vulnerability in dos (CVE-2025-44526). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38250 |
|
Use-After-Free in c (CVE-2025-38250)
vulnerability in c (CVE-2025-38250). Successful exploitation can lead to full system takeover.
|
| CVE-2025-49702 |
|
Vulnerability in microsoft (CVE-2025-49702)
vulnerability in microsoft (CVE-2025-49702). Successful exploitation can lead to full system takeover.
|
| CVE-2025-49697 |
|
Vulnerability in microsoft (CVE-2025-49697)
vulnerability in microsoft (CVE-2025-49697). Successful exploitation can lead to full system takeover.
|
| CVE-2025-49695 |
|
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2025-49696 |
|
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2024-55599 |
|
Vulnerability in fortinet (CVE-2024-55599)
vulnerability in fortinet (CVE-2024-55599). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38236 |
|
Use-After-Free in c (CVE-2025-38236)
vulnerability in c (CVE-2025-38236). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10033 KEV |
|
[KEV] Command Injection in php (CVE-2016-10033)
command injection in php (CVE-2016-10033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-5418 KEV |
|
[KEV] Path Traversal in rails (CVE-2019-5418)
path traversal in rails (CVE-2019-5418). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-9621 KEV |
|
[KEV] SSRF (Server-Side Request Forgery) in Synacor zimbra-collaboration-suite-zcs (CVE-2019-9621)
SSRF in Synacor zimbra-collaboration-suite-zcs (CVE-2019-9621). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-3931 KEV |
|
[KEV] Buffer Overflow in Looking glass looking-glass (CVE-2014-3931)
vulnerability in Looking glass looking-glass (CVE-2014-3931). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-38231 |
|
Vulnerability in linux (CVE-2025-38231)
vulnerability in linux (CVE-2025-38231). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38222 |
|
Vulnerability in c (CVE-2025-38222)
vulnerability in c (CVE-2025-38222). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38212 |
|
Use-After-Free in linux (CVE-2025-38212)
vulnerability in linux (CVE-2025-38212). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38214 |
|
Vulnerability in c (CVE-2025-38214)
vulnerability in c (CVE-2025-38214). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38215 |
|
Vulnerability in c (CVE-2025-38215)
vulnerability in c (CVE-2025-38215). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38198 |
|
Vulnerability in c (CVE-2025-38198)
vulnerability in c (CVE-2025-38198). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38192 |
|
Vulnerability in c (CVE-2025-38192)
vulnerability in c (CVE-2025-38192). Risk of unauthorized operations or information disclosure.
|