Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2025-45953 Vulnerability in phpgurukul (CVE-2025-45953)
vulnerability in phpgurukul (CVE-2025-45953). Confidential information can be exposed externally.
CVE-2025-45949 Vulnerability in phpgurukul (CVE-2025-45949)
vulnerability in phpgurukul (CVE-2025-45949). Successful exploitation can lead to full system takeover.
CVE-2025-45947 Code Injection in phpgurukul (CVE-2025-45947)
code injection in phpgurukul (CVE-2025-45947). Successful exploitation can lead to full system takeover.
CVE-2025-1782 Code Injection in CVE-2025-1782 (CVE-2025-1782)
code injection in CVE-2025-1782 (CVE-2025-1782). Successful exploitation can lead to full system takeover.
CVE-2024-51139 Vulnerability in draytek (CVE-2024-51139)
vulnerability in draytek (CVE-2024-51139). Successful exploitation can lead to full system takeover.
CVE-2024-51138 Vulnerability in draytek (CVE-2024-51138)
vulnerability in draytek (CVE-2024-51138). Successful exploitation can lead to full system takeover.
CVE-2025-25790 Unrestricted File Upload in foxcms (CVE-2025-25790)
vulnerability in foxcms (CVE-2025-25790). Successful exploitation can lead to full system takeover.
CVE-2025-25789 Code Injection in foxcms (CVE-2025-25789)
code injection in foxcms (CVE-2025-25789). Successful exploitation can lead to full system takeover.
CVE-2025-25785 SSRF (Server-Side Request Forgery) in c (CVE-2025-25785)
SSRF in c (CVE-2025-25785). Confidential information can be exposed externally.
CVE-2025-25784 Unrestricted File Upload in c (CVE-2025-25784)
vulnerability in c (CVE-2025-25784). Successful exploitation can lead to full system takeover.
CVE-2025-25783 Unrestricted File Upload in emlog (CVE-2025-25783)
vulnerability in emlog (CVE-2025-25783). Successful exploitation can lead to full system takeover.
CVE-2025-22916 Vulnerability in edimax (CVE-2025-22916)
vulnerability in edimax (CVE-2025-22916). Successful exploitation can lead to full system takeover.
CVE-2025-22912 Command Injection in edimax (CVE-2025-22912)
command injection in edimax (CVE-2025-22912). Successful exploitation can lead to full system takeover.
CVE-2025-22907 Vulnerability in edimax (CVE-2025-22907)
vulnerability in edimax (CVE-2025-22907). Successful exploitation can lead to full system takeover.
CVE-2025-22906 Code Injection in edimax (CVE-2025-22906)
code injection in edimax (CVE-2025-22906). Successful exploitation can lead to full system takeover.
CVE-2025-22905 Code Injection in edimax (CVE-2025-22905)
code injection in edimax (CVE-2025-22905). Successful exploitation can lead to full system takeover.
CVE-2025-22904 Vulnerability in edimax (CVE-2025-22904)
vulnerability in edimax (CVE-2025-22904). Successful exploitation can lead to full system takeover.
CVE-2024-12084 Vulnerability in samba (CVE-2024-12084)
vulnerability in samba (CVE-2024-12084). Successful exploitation can lead to full system takeover.
CVE-2024-57483 Tenda i24 V2.0.0.5 is vulnerable to Buffer Overflow in the addWifiMacFilter function.
Tenda i24 V2.0.0.5 is vulnerable to Buffer Overflow in the addWifiMacFilter function.
CVE-2024-55591 KEV [KEV] Vulnerability in Fortinet fortios-and-fortiproxy (CVE-2024-55591)
vulnerability in Fortinet fortios-and-fortiproxy (CVE-2024-55591). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2024-53480 SQL Injection in sqli (CVE-2024-53480)
SQL injection in sqli (CVE-2024-53480). Successful exploitation can lead to full system takeover. Exploitable via ``login.php``.
CVE-2024-52714 Vulnerability in tenda (CVE-2024-52714)
vulnerability in tenda (CVE-2024-52714). Successful exploitation can lead to full system takeover.
CVE-2024-51065 SQL Injection in sqli (CVE-2024-51065)
SQL injection in sqli (CVE-2024-51065). Successful exploitation can lead to full system takeover.
CVE-2024-51064 SQL Injection in sqli (CVE-2024-51064)
SQL injection in sqli (CVE-2024-51064). Successful exploitation can lead to full system takeover.
CVE-2024-51063 SQL Injection in sqli (CVE-2024-51063)
SQL injection in sqli (CVE-2024-51063). Confidential information can be exposed externally.
CVE-2024-51060 SQL Injection in sqli (CVE-2024-51060)
SQL injection in sqli (CVE-2024-51060). Confidential information can be exposed externally.
CVE-2024-47685 Vulnerability in c (CVE-2024-47685)
vulnerability in c (CVE-2024-47685). Confidential information can be exposed externally.
CVE-2024-46532 SQL Injection in sqli (CVE-2024-46532)
SQL injection in sqli (CVE-2024-46532). Successful exploitation can lead to full system takeover.
CVE-2024-7593 KEV [KEV] Authentication Bypass in Ivanti virtual-traffic-manager (CVE-2024-7593)
authentication bypass in Ivanti virtual-traffic-manager (CVE-2024-7593). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2024-33109 Path Traversal in path-traversal (CVE-2024-33109)
path traversal in path-traversal (CVE-2024-33109). Confidential information can be exposed externally.
CVE-2024-44902 Unsafe Deserialization in deserialization (CVE-2024-44902)
vulnerability in deserialization (CVE-2024-44902). Successful exploitation can lead to full system takeover.
CVE-2024-37858 SQL Injection in sqli (CVE-2024-37858)
SQL injection in sqli (CVE-2024-37858). Successful exploitation can lead to full system takeover.
CVE-2023-48194 Out-of-Bounds Write in tenda (CVE-2023-48194)
out-of-bounds write in tenda (CVE-2023-48194). Successful exploitation can lead to full system takeover.
CVE-2024-3596 Vulnerability in freeradius (CVE-2024-3596)
vulnerability in freeradius (CVE-2024-3596). Successful exploitation can lead to full system takeover.
CVE-2024-38612 Use-After-Free in linux (CVE-2024-38612)
vulnerability in linux (CVE-2024-38612). Successful exploitation can lead to full system takeover.
CVE-2024-35960 Vulnerability in linux (CVE-2024-35960)
vulnerability in linux (CVE-2024-35960). Data can be tampered with by attackers.
CVE-2024-35845 Vulnerability in linux (CVE-2024-35845)
vulnerability in linux (CVE-2024-35845). Confidential information can be exposed externally.
CVE-2024-27053 Vulnerability in c (CVE-2024-27053)
vulnerability in c (CVE-2024-27053). Confidential information can be exposed externally.
CVE-2024-25343 Privilege Escalation in tenda (CVE-2024-25343)
vulnerability in tenda (CVE-2024-25343). Confidential information can be exposed externally.
CVE-2024-3566 Command Injection in node (CVE-2024-3566)
command injection in node (CVE-2024-3566). Successful exploitation can lead to full system takeover. Exploitable via ``cmd.exe``. Mitigation: upgrade to `18.19.0` or later.
CVE-2024-29859 Unrestricted File Upload in misp-project (CVE-2024-29859)
vulnerability in misp-project (CVE-2024-29859). Successful exploitation can lead to full system takeover.
CVE-2024-29858 Vulnerability in misp-project (CVE-2024-29858)
vulnerability in misp-project (CVE-2024-29858). Successful exploitation can lead to full system takeover.
CVE-2024-25294 SSRF (Server-Side Request Forgery) in ssrf (CVE-2024-25294)
SSRF in ssrf (CVE-2024-25294). Confidential information can be exposed externally.
CVE-2023-42789 Out-of-Bounds Write in fortinet (CVE-2023-42789)
out-of-bounds write in fortinet (CVE-2023-42789). Successful exploitation can lead to full system takeover.
CVE-2024-25675 Vulnerability in misp-project (CVE-2024-25675)
vulnerability in misp-project (CVE-2024-25675). Successful exploitation can lead to full system takeover.
CVE-2024-22922 Privilege Escalation in projectworlds (CVE-2024-22922)
vulnerability in projectworlds (CVE-2024-22922). Successful exploitation can lead to full system takeover.
CVE-2023-51947 Vulnerability in actidata (CVE-2023-51947)
vulnerability in actidata (CVE-2023-51947). Confidential information can be exposed externally.
CVE-2023-50988 Out-of-Bounds Write in tenda (CVE-2023-50988)
out-of-bounds write in tenda (CVE-2023-50988). Successful exploitation can lead to full system takeover.
CVE-2023-50992 Out-of-Bounds Write in tenda (CVE-2023-50992)
out-of-bounds write in tenda (CVE-2023-50992). Successful exploitation can lead to full system takeover.
CVE-2023-50989 Command Injection in tenda (CVE-2023-50989)
command injection in tenda (CVE-2023-50989). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →