Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-45953 |
|
Vulnerability in phpgurukul (CVE-2025-45953)
vulnerability in phpgurukul (CVE-2025-45953). Confidential information can be exposed externally.
|
| CVE-2025-45949 |
|
Vulnerability in phpgurukul (CVE-2025-45949)
vulnerability in phpgurukul (CVE-2025-45949). Successful exploitation can lead to full system takeover.
|
| CVE-2025-45947 |
|
Code Injection in phpgurukul (CVE-2025-45947)
code injection in phpgurukul (CVE-2025-45947). Successful exploitation can lead to full system takeover.
|
| CVE-2025-1782 |
|
Code Injection in CVE-2025-1782 (CVE-2025-1782)
code injection in CVE-2025-1782 (CVE-2025-1782). Successful exploitation can lead to full system takeover.
|
| CVE-2024-51139 |
|
Vulnerability in draytek (CVE-2024-51139)
vulnerability in draytek (CVE-2024-51139). Successful exploitation can lead to full system takeover.
|
| CVE-2024-51138 |
|
Vulnerability in draytek (CVE-2024-51138)
vulnerability in draytek (CVE-2024-51138). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25790 |
|
Unrestricted File Upload in foxcms (CVE-2025-25790)
vulnerability in foxcms (CVE-2025-25790). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25789 |
|
Code Injection in foxcms (CVE-2025-25789)
code injection in foxcms (CVE-2025-25789). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25785 |
|
SSRF (Server-Side Request Forgery) in c (CVE-2025-25785)
SSRF in c (CVE-2025-25785). Confidential information can be exposed externally.
|
| CVE-2025-25784 |
|
Unrestricted File Upload in c (CVE-2025-25784)
vulnerability in c (CVE-2025-25784). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25783 |
|
Unrestricted File Upload in emlog (CVE-2025-25783)
vulnerability in emlog (CVE-2025-25783). Successful exploitation can lead to full system takeover.
|
| CVE-2025-22916 |
|
Vulnerability in edimax (CVE-2025-22916)
vulnerability in edimax (CVE-2025-22916). Successful exploitation can lead to full system takeover.
|
| CVE-2025-22912 |
|
Command Injection in edimax (CVE-2025-22912)
command injection in edimax (CVE-2025-22912). Successful exploitation can lead to full system takeover.
|
| CVE-2025-22907 |
|
Vulnerability in edimax (CVE-2025-22907)
vulnerability in edimax (CVE-2025-22907). Successful exploitation can lead to full system takeover.
|
| CVE-2025-22906 |
|
Code Injection in edimax (CVE-2025-22906)
code injection in edimax (CVE-2025-22906). Successful exploitation can lead to full system takeover.
|
| CVE-2025-22905 |
|
Code Injection in edimax (CVE-2025-22905)
code injection in edimax (CVE-2025-22905). Successful exploitation can lead to full system takeover.
|
| CVE-2025-22904 |
|
Vulnerability in edimax (CVE-2025-22904)
vulnerability in edimax (CVE-2025-22904). Successful exploitation can lead to full system takeover.
|
| CVE-2024-12084 |
|
Vulnerability in samba (CVE-2024-12084)
vulnerability in samba (CVE-2024-12084). Successful exploitation can lead to full system takeover.
|
| CVE-2024-57483 |
|
Tenda i24 V2.0.0.5 is vulnerable to Buffer Overflow in the addWifiMacFilter function.
Tenda i24 V2.0.0.5 is vulnerable to Buffer Overflow in the addWifiMacFilter function.
|
| CVE-2024-55591 KEV |
|
[KEV] Vulnerability in Fortinet fortios-and-fortiproxy (CVE-2024-55591)
vulnerability in Fortinet fortios-and-fortiproxy (CVE-2024-55591). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2024-53480 |
|
SQL Injection in sqli (CVE-2024-53480)
SQL injection in sqli (CVE-2024-53480). Successful exploitation can lead to full system takeover. Exploitable via ``login.php``.
|
| CVE-2024-52714 |
|
Vulnerability in tenda (CVE-2024-52714)
vulnerability in tenda (CVE-2024-52714). Successful exploitation can lead to full system takeover.
|
| CVE-2024-51065 |
|
SQL Injection in sqli (CVE-2024-51065)
SQL injection in sqli (CVE-2024-51065). Successful exploitation can lead to full system takeover.
|
| CVE-2024-51064 |
|
SQL Injection in sqli (CVE-2024-51064)
SQL injection in sqli (CVE-2024-51064). Successful exploitation can lead to full system takeover.
|
| CVE-2024-51063 |
|
SQL Injection in sqli (CVE-2024-51063)
SQL injection in sqli (CVE-2024-51063). Confidential information can be exposed externally.
|
| CVE-2024-51060 |
|
SQL Injection in sqli (CVE-2024-51060)
SQL injection in sqli (CVE-2024-51060). Confidential information can be exposed externally.
|
| CVE-2024-47685 |
|
Vulnerability in c (CVE-2024-47685)
vulnerability in c (CVE-2024-47685). Confidential information can be exposed externally.
|
| CVE-2024-46532 |
|
SQL Injection in sqli (CVE-2024-46532)
SQL injection in sqli (CVE-2024-46532). Successful exploitation can lead to full system takeover.
|
| CVE-2024-7593 KEV |
|
[KEV] Authentication Bypass in Ivanti virtual-traffic-manager (CVE-2024-7593)
authentication bypass in Ivanti virtual-traffic-manager (CVE-2024-7593). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2024-33109 |
|
Path Traversal in path-traversal (CVE-2024-33109)
path traversal in path-traversal (CVE-2024-33109). Confidential information can be exposed externally.
|
| CVE-2024-44902 |
|
Unsafe Deserialization in deserialization (CVE-2024-44902)
vulnerability in deserialization (CVE-2024-44902). Successful exploitation can lead to full system takeover.
|
| CVE-2024-37858 |
|
SQL Injection in sqli (CVE-2024-37858)
SQL injection in sqli (CVE-2024-37858). Successful exploitation can lead to full system takeover.
|
| CVE-2023-48194 |
|
Out-of-Bounds Write in tenda (CVE-2023-48194)
out-of-bounds write in tenda (CVE-2023-48194). Successful exploitation can lead to full system takeover.
|
| CVE-2024-3596 |
|
Vulnerability in freeradius (CVE-2024-3596)
vulnerability in freeradius (CVE-2024-3596). Successful exploitation can lead to full system takeover.
|
| CVE-2024-38612 |
|
Use-After-Free in linux (CVE-2024-38612)
vulnerability in linux (CVE-2024-38612). Successful exploitation can lead to full system takeover.
|
| CVE-2024-35960 |
|
Vulnerability in linux (CVE-2024-35960)
vulnerability in linux (CVE-2024-35960). Data can be tampered with by attackers.
|
| CVE-2024-35845 |
|
Vulnerability in linux (CVE-2024-35845)
vulnerability in linux (CVE-2024-35845). Confidential information can be exposed externally.
|
| CVE-2024-27053 |
|
Vulnerability in c (CVE-2024-27053)
vulnerability in c (CVE-2024-27053). Confidential information can be exposed externally.
|
| CVE-2024-25343 |
|
Privilege Escalation in tenda (CVE-2024-25343)
vulnerability in tenda (CVE-2024-25343). Confidential information can be exposed externally.
|
| CVE-2024-3566 |
|
Command Injection in node (CVE-2024-3566)
command injection in node (CVE-2024-3566). Successful exploitation can lead to full system takeover. Exploitable via ``cmd.exe``. Mitigation: upgrade to `18.19.0` or later.
|
| CVE-2024-29859 |
|
Unrestricted File Upload in misp-project (CVE-2024-29859)
vulnerability in misp-project (CVE-2024-29859). Successful exploitation can lead to full system takeover.
|
| CVE-2024-29858 |
|
Vulnerability in misp-project (CVE-2024-29858)
vulnerability in misp-project (CVE-2024-29858). Successful exploitation can lead to full system takeover.
|
| CVE-2024-25294 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2024-25294)
SSRF in ssrf (CVE-2024-25294). Confidential information can be exposed externally.
|
| CVE-2023-42789 |
|
Out-of-Bounds Write in fortinet (CVE-2023-42789)
out-of-bounds write in fortinet (CVE-2023-42789). Successful exploitation can lead to full system takeover.
|
| CVE-2024-25675 |
|
Vulnerability in misp-project (CVE-2024-25675)
vulnerability in misp-project (CVE-2024-25675). Successful exploitation can lead to full system takeover.
|
| CVE-2024-22922 |
|
Privilege Escalation in projectworlds (CVE-2024-22922)
vulnerability in projectworlds (CVE-2024-22922). Successful exploitation can lead to full system takeover.
|
| CVE-2023-51947 |
|
Vulnerability in actidata (CVE-2023-51947)
vulnerability in actidata (CVE-2023-51947). Confidential information can be exposed externally.
|
| CVE-2023-50988 |
|
Out-of-Bounds Write in tenda (CVE-2023-50988)
out-of-bounds write in tenda (CVE-2023-50988). Successful exploitation can lead to full system takeover.
|
| CVE-2023-50992 |
|
Out-of-Bounds Write in tenda (CVE-2023-50992)
out-of-bounds write in tenda (CVE-2023-50992). Successful exploitation can lead to full system takeover.
|
| CVE-2023-50989 |
|
Command Injection in tenda (CVE-2023-50989)
command injection in tenda (CVE-2023-50989). Successful exploitation can lead to full system takeover.
|