CVE Database

36759+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-9791
8.8 HIGH

A weakness has been identified in Tenda AC20 16.03.08.05. This vulnerability affects unknown code of the file /goform/fromAdvSetMacMtuWan. This manipulation of the argument wanMTU causes …

Sep 1, 2025
CVE-2025-9790
7.3 HIGH

A security flaw has been discovered in SourceCodester Hotel Reservation System 1.0. This affects an unknown part of the file /admin/updateabout.php. The manipulation of the …

Sep 1, 2025
CVE-2025-9789
7.3 HIGH

A vulnerability was identified in SourceCodester Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality of the file /admin/edituser.php. The manipulation …

Sep 1, 2025
CVE-2025-9788
7.3 HIGH

A vulnerability was determined in SourceCodester/Campcodes School Log Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin_class.php. Executing manipulation …

Sep 1, 2025
CVE-2025-3586
7.2 HIGH

In Liferay Portal 7.4.3.27 through 7.4.3.42, and Liferay DXP 2024.Q1.1 through 2024.Q1.20, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 27 through update 42 (Liferay …

Sep 1, 2025
CVE-2025-9786
7.3 HIGH

A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /teacher_signup.php. Performing manipulation of the argument …

Sep 1, 2025
CVE-2025-9783
8.8 HIGH

A vulnerability was determined in TOTOLINK A702R 4.0.0-B20211108.1423. This issue affects the function sub_418030 of the file /boafrm/formParentControl. Executing manipulation of the argument submit-url can …

Sep 1, 2025
CVE-2025-9782
8.8 HIGH

A vulnerability was found in TOTOLINK A702R 4.0.0-B20211108.1423. This vulnerability affects the function sub_4466F8 of the file /boafrm/formOneKeyAccessButton. Performing manipulation of the argument submit-url results …

Sep 1, 2025
CVE-2025-9781
8.8 HIGH

A vulnerability has been found in TOTOLINK A702R 4.0.0-B20211108.1423. This affects the function sub_4162DC of the file /boafrm/formFilter. Such manipulation of the argument ip6addr leads …

Sep 1, 2025
CVE-2025-9780
8.8 HIGH

A flaw has been found in TOTOLINK A702R 4.0.0-B20211108.1423. Affected by this issue is the function sub_419BE0 of the file /boafrm/formIpQoS. This manipulation of the …

Sep 1, 2025
CVE-2025-9779
8.8 HIGH

A vulnerability was detected in TOTOLINK A702R 4.0.0-B20211108.1423. Affected by this vulnerability is the function sub_4162DC of the file /boafrm/formFilter. The manipulation of the argument …

Sep 1, 2025
CVE-2025-2412
8.6 HIGH

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft QR Menu allows Authentication Bypass.This issue affects QR Menu: from s1.05.07 before v1.05.12.

Sep 1, 2025
CVE-2025-0610
8.6 HIGH

Cross-Site Request Forgery (CSRF) vulnerability in Akınsoft QR Menü allows Cross Site Request Forgery.This issue affects QR Menü: from s1.05.06 before v1.05.12.

Sep 1, 2025
CVE-2024-12925
7.3 HIGH

Improper Validation of Certificate with Host Mismatch vulnerability in Akınsoft QR Menü allows HTTP Response Splitting.This issue affects QR Menü: from s1.05.05 before v1.05.12.

Sep 1, 2025
CVE-2025-9775
7.3 HIGH

A vulnerability was found in RemoteClinic up to 2.0. Impacted is an unknown function of the file /staff/edit-my-profile.php. The manipulation of the argument image results …

Sep 1, 2025
CVE-2025-9772
7.3 HIGH

A vulnerability was detected in RemoteClinic up to 2.0. This affects an unknown part of the file /staff/edit.php. Performing manipulation of the argument image results …

Sep 1, 2025
CVE-2025-9771
7.3 HIGH

A security vulnerability has been detected in SourceCodester Eye Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file /main/search_index_Diagnosis.php. …

Sep 1, 2025
CVE-2025-9770
7.3 HIGH

A weakness has been identified in Campcodes Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ of the …

Sep 1, 2025
CVE-2022-38695
7.8 HIGH

In BootRom, there's a possible unchecked command index. This could lead to local escalation of privilege with no additional execution privileges needed.

Sep 1, 2025
CVE-2022-38694
7.8 HIGH

In BootRom, there is a possible unchecked write address. This could lead to local escalation of privilege with no additional execution privileges needed.

Sep 1, 2025
CVE-2022-38691
7.8 HIGH

In BootROM, there is a possible missing validation for Certificate Type 0. This could lead to local escalation of privilege with no additional execution privileges …

Sep 1, 2025
CVE-2025-9767
7.3 HIGH

A vulnerability was determined in itsourcecode Sports Management System 1.0. This affects an unknown function of the file /Admin/sporttype.php. Executing manipulation of the argument code …

Sep 1, 2025
CVE-2025-9766
7.3 HIGH

A vulnerability was found in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/facilitator.php. Performing manipulation of the …

Sep 1, 2025
CVE-2025-9765
7.3 HIGH

A vulnerability has been found in itsourcecode Sports Management System 1.0. The affected element is an unknown function of the file /Admin/tournament_details.php. Such manipulation of …

Sep 1, 2025
CVE-2025-9764
7.3 HIGH

A flaw has been found in itsourcecode Sports Management System 1.0. Impacted is an unknown function of the file /Admin/resultdetails.php. This manipulation of the argument …

Sep 1, 2025
CVE-2025-20708
8.8 HIGH

In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if …

Sep 1, 2025
CVE-2025-20706
7.8 HIGH

In mbrain, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor …

Sep 1, 2025
CVE-2025-20705
7.8 HIGH

In monitor_hang, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor …

Sep 1, 2025
CVE-2025-20704
8.0 HIGH

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if …

Sep 1, 2025
CVE-2025-9763
7.3 HIGH

A vulnerability was detected in Campcodes Online Learning Management System 1.0. This issue affects some unknown processing of the file /student_signup.php. The manipulation of the …

Sep 1, 2025
CVE-2025-9761
7.3 HIGH

A security vulnerability has been detected in Campcodes Online Feeds Product Inventory System 1.0. This vulnerability affects unknown code of the file /feeds/index.php of the …

Sep 1, 2025
CVE-2025-9759
7.3 HIGH

A security flaw has been discovered in Campcodes/SourceCodester Courier Management System 1.0. Affected by this issue is the function Signup of the file /ajax.php. Performing …

Sep 1, 2025
CVE-2025-7731
7.5 HIGH

Cleartext Transmission of Sensitive Information vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to obtain credential information by …

Sep 1, 2025
CVE-2025-7405
7.3 HIGH

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to read or write the …

Sep 1, 2025
CVE-2025-9757
7.3 HIGH

A vulnerability was determined in Campcodes/SourceCodester Courier Management System 1.0. Affected is the function Login of the file /ajax.php. This manipulation of the argument email …

Sep 1, 2025
CVE-2025-9752
7.3 HIGH

A security vulnerability has been detected in D-Link DIR-852 1.00CN B09. Impacted is the function soapcgi_main of the file soap.cgi of the component SOAP Service. …

Sep 1, 2025
CVE-2025-9751
7.3 HIGH

A weakness has been identified in Campcodes Online Learning Management System 1.0. This issue affects some unknown processing of the file /login.php. This manipulation of …

Sep 1, 2025
CVE-2025-9750
7.3 HIGH

A security flaw has been discovered in Campcodes Online Learning Management System 1.0. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of …

Aug 31, 2025
CVE-2025-9749
7.3 HIGH

A vulnerability was identified in HKritesh009 Grocery List Management Web App up to f491b681eb70d465f445c9a721415c965190f83b. This affects an unknown part of the file /src/update.php. The manipulation …

Aug 31, 2025
CVE-2025-9748
8.8 HIGH

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected by this issue is the function fromIpsecitem of the file /goform/IPSECsave of the component httpd. Executing …

Aug 31, 2025
CVE-2025-9744
7.3 HIGH

A weakness has been identified in Campcodes Online Loan Management System 1.0. The affected element is an unknown function of the file /ajax.php?action=login. Executing manipulation …

Aug 31, 2025
CVE-2025-9743
7.3 HIGH

A security flaw has been discovered in code-projects Human Resource Integrated System 1.0. Impacted is an unknown function of the file login_attendance2.php. Performing manipulation of …

Aug 31, 2025
CVE-2025-9742
7.3 HIGH

A vulnerability was identified in code-projects Human Resource Integrated System 1.0. This issue affects some unknown processing of the file /login.php. Such manipulation of the …

Aug 31, 2025
CVE-2025-9741
7.3 HIGH

A vulnerability was determined in code-projects Human Resource Integrated System 1.0. This vulnerability affects unknown code of the file /login_query12.php. This manipulation of the argument …

Aug 31, 2025
CVE-2025-9740
7.3 HIGH

A vulnerability was found in code-projects Human Resource Integrated System 1.0. This affects an unknown part of the file /log_query.php. The manipulation of the argument …

Aug 31, 2025
CVE-2025-9739
7.3 HIGH

A vulnerability has been found in Campcodes Online Water Billing System 1.0. Affected by this issue is some unknown functionality of the file /process.php. The …

Aug 31, 2025
CVE-2025-9733
7.3 HIGH

A security flaw has been discovered in code-projects Human Resource Integrated System 1.0. This impacts an unknown function of the file /login_timeee.php. Performing manipulation of …

Aug 31, 2025
CVE-2025-9730
7.3 HIGH

A vulnerability was found in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /ajax/updateProfile.php. The manipulation of the …

Aug 31, 2025
CVE-2025-9729
7.3 HIGH

A vulnerability was detected in PHPGurukul Online Course Registration 3.1. This vulnerability affects unknown code of the file /admin/student-registration.php. Performing manipulation of the argument studentname …

Aug 31, 2025
CVE-2025-9726
7.3 HIGH

A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /review.php. The …

Aug 31, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.