CVE Database

4399+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-9724
3.5 LOW

A vulnerability was determined in Portabilis i-Educar up to 2.10. This impacts an unknown function of the file /intranet/educar_nivel_ensino_cad.php. Executing manipulation of the argument nm_nivel/descricao …

Aug 31, 2025
CVE-2025-9723
3.5 LOW

A vulnerability was found in Portabilis i-Educar up to 2.10. This affects an unknown function of the file /intranet/educar_tipo_regime_cad.php. Performing manipulation of the argument nm_tipo …

Aug 31, 2025
CVE-2025-9722
3.5 LOW

A vulnerability has been found in Portabilis i-Educar up to 2.10. The impacted element is an unknown function of the file /intranet/educar_tipo_ocorrencia_disciplinar_cad.php. Such manipulation of …

Aug 31, 2025
CVE-2025-9721
3.5 LOW

A flaw has been found in Portabilis i-Educar up to 2.10. The affected element is an unknown function of the file /module/FormulaMedia/edit. This manipulation of …

Aug 31, 2025
CVE-2025-9720
3.5 LOW

A vulnerability was detected in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /module/TabelaArredondamento/edit of the component Cadastrar tabela de …

Aug 31, 2025
CVE-2025-9719
3.5 LOW

A weakness has been identified in O2OA up to 10.0-410. This vulnerability affects unknown code of the file /x_processplatform_assemble_designer/jaxrs/script of the component Personal Profile Page. …

Aug 31, 2025
CVE-2025-9718
3.5 LOW

A security flaw has been discovered in O2OA up to 10.0-410. This affects an unknown part of the file /x_processplatform_assemble_designer/jaxrs/process of the component Personal Profile …

Aug 31, 2025
CVE-2025-9717
3.5 LOW

A vulnerability was identified in O2OA up to 10.0-410. Affected by this issue is some unknown functionality of the file /x_organization_assemble_control/jaxrs/unit/ of the component Personal …

Aug 31, 2025
CVE-2025-9716
3.5 LOW

A vulnerability was determined in O2OA up to 10.0-410. Affected by this vulnerability is an unknown functionality of the file /x_processplatform_assemble_designer/jaxrs/form of the component Personal …

Aug 31, 2025
CVE-2025-9715
3.5 LOW

A vulnerability was found in O2OA up to 10.0-410. Affected is an unknown function of the file /x_cms_assemble_control/jaxrs/script of the component Personal Profile Page. The …

Aug 31, 2025
CVE-2025-9683
3.5 LOW

A vulnerability was found in O2OA up to 10.0-410. Affected by this issue is some unknown functionality of the file /x_cms_assemble_control/jaxrs/form of the component Personal …

Aug 30, 2025
CVE-2025-9682
3.5 LOW

A vulnerability has been found in O2OA up to 10.0-410. Affected by this vulnerability is an unknown functionality of the file /x_cms_assemble_control/jaxrs/design/appdict of the component …

Aug 30, 2025
CVE-2025-9681
3.5 LOW

A flaw has been found in O2OA up to 10.0-410. Affected is an unknown function of the file /x_program_center/jaxrs/agent of the component Personal Profile Page. …

Aug 30, 2025
CVE-2025-9680
3.5 LOW

A vulnerability was detected in O2OA up to 10.0-410. This impacts an unknown function of the file /x_portal_assemble_designer/jaxrs/page of the component Personal Profile Page. Performing …

Aug 30, 2025
CVE-2025-58156
1.9 LOW

Centurion ERP is an ERP with a focus on ITSM and automation. In versions starting from 1.12.0 to before 1.21.0, an authenticated user can view …

Aug 29, 2025
CVE-2025-9659
3.5 LOW

A vulnerability has been found in O2OA up to 10.0-410. The affected element is an unknown function of the file /x_portal_assemble_designer/jaxrs/widget of the component Personal …

Aug 29, 2025
CVE-2025-9658
3.5 LOW

A flaw has been found in O2OA up to 10.0-410. Impacted is an unknown function of the file /x_portal_assemble_designer/jaxrs/dict/ of the component Personal Profile Page. …

Aug 29, 2025
CVE-2025-9657
3.5 LOW

A vulnerability was detected in O2OA up to 10.0-410. This issue affects some unknown processing of the file /x_program_center/jaxrs/script of the component Personal Profile Page. …

Aug 29, 2025
CVE-2025-9655
3.5 LOW

A weakness has been identified in O2OA up to 10.0-410. This affects an unknown part of the file /x_organization_assemble_control/jaxrs/person/ of the component Personal Profile Page. …

Aug 29, 2025
CVE-2025-9653
3.5 LOW

A vulnerability was identified in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /intranet/educar_projeto_cad.php of the component …

Aug 29, 2025
CVE-2025-9652
3.5 LOW

A vulnerability was determined in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /intranet/educar_transferencia_tipo_cad.php of the component Cadastrar tipo de …

Aug 29, 2025
CVE-2025-9649
3.3 LOW

A security vulnerability has been detected in appneta tcpreplay 4.5.1. Impacted is the function calc_sleep_time of the file send_packets.c. Such manipulation leads to divide by …

Aug 29, 2025
CVE-2025-9646
3.5 LOW

A security flaw has been discovered in O2OA up to 10.0-410. This vulnerability affects unknown code of the file /x_organization_assemble_personal/jaxrs/definition/calendarConfig. The manipulation of the argument …

Aug 29, 2025
CVE-2025-9604
3.7 LOW

A vulnerability was identified in coze-studio up to 0.2.4. The impacted element is an unknown function of the file backend/domain/plugin/encrypt/aes.go. The manipulation of the argument …

Aug 29, 2025
CVE-2025-43255
3.3 LOW

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app …

Aug 29, 2025
CVE-2024-44271
3.3 LOW

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2. An app may be able to record the screen without …

Aug 29, 2025
CVE-2025-48979
3.4 LOW

An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access.

Aug 29, 2025
CVE-2025-9591
2.4 LOW

A security vulnerability has been detected in ZrLog up to 3.1.5. This vulnerability affects unknown code of the file /api/admin/template/config of the component Theme Configuration …

Aug 28, 2025
CVE-2025-9590
3.5 LOW

A vulnerability was identified in Weaver E-Mobile Mobile Management Platform up to 20250813. Affected by this vulnerability is an unknown functionality. The manipulation of the …

Aug 28, 2025
CVE-2025-9589
2.5 LOW

A vulnerability was determined in Cudy WR1200EA 2.3.7-20250113-121810. Affected is an unknown function of the file /etc/shadow. Executing manipulation can lead to use of default …

Aug 28, 2025
CVE-2025-9577
2.5 LOW

A security flaw has been discovered in TOTOLINK X2000R up to 2.0.0. The affected element is an unknown function of the file /etc/shadow.sample of the …

Aug 28, 2025
CVE-2025-9576
2.5 LOW

A vulnerability was identified in seeedstudio ReSpeaker LinkIt7688. Impacted is an unknown function of the file /etc/shadow of the component Administrative Interface. The manipulation leads …

Aug 28, 2025
CVE-2025-51643
2.4 LOW

Meitrack T366G-L GPS Tracker devices contain an SPI flash chip (Winbond 25Q64JVSIQ) that is accessible without authentication or tamper protection. An attacker with physical access …

Aug 28, 2025
CVE-2025-9514
3.7 LOW

A vulnerability has been found in macrozheng mall up to 1.0.3. This impacts an unknown function of the component Registration. Such manipulation leads to weak …

Aug 27, 2025
CVE-2025-9513
3.7 LOW

A flaw has been found in editso fuso up to 1.0.4-beta.7. This affects the function PenetrateRsaAndAesHandshake of the file src/net/penetrate/handshake/mod.rs. This manipulation of the argument …

Aug 27, 2025
CVE-2025-55212
3.7 LOW

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only …

Aug 26, 2025
CVE-2025-25733
3.5 LOW

Incorrect access control in the SPI Flash Chip of Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 allows physically proximate attackers …

Aug 26, 2025
CVE-2025-8447
3.1 LOW

An improper access control vulnerability was identified in GitHub Enterprise Server that allowed users with access to any repository to retrieve limited code content from …

Aug 26, 2025
CVE-2025-9430
2.4 LOW

A vulnerability was detected in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /admin/options/update. The manipulation of the argument …

Aug 26, 2025
CVE-2025-9429
3.5 LOW

A security vulnerability has been detected in mtons mblog up to 3.5.0. This vulnerability affects unknown code of the file /post/submit of the component Post …

Aug 26, 2025
CVE-2025-9422
2.4 LOW

A vulnerability was found in oitcode samarium up to 0.9.6. This impacts an unknown function of the file /dashboard/team of the component Team Image Handler. …

Aug 25, 2025
CVE-2025-9416
2.4 LOW

A security flaw has been discovered in oitcode samarium up to 0.9.6. This vulnerability affects unknown code of the file /cms/webpage/ of the component Pages …

Aug 25, 2025
CVE-2025-3456
3.8 LOW

On affected platforms running Arista EOS, the global common encryption key configuration may be logged in clear text, in local or remote accounting logs. Knowledge …

Aug 25, 2025
CVE-2025-9407
3.5 LOW

A flaw has been found in mtons mblog up to 3.5.0. Affected by this vulnerability is an unknown functionality of the file /settings/profile. Executing manipulation …

Aug 25, 2025
CVE-2025-9404
2.4 LOW

A vulnerability was identified in Scada-LTS up to 2.7.8.1. The affected element is an unknown function of the file /pointHierarchySLTS of the component Folder Handler. …

Aug 25, 2025
CVE-2025-9403
3.3 LOW

A vulnerability was determined in jqlang jq up to 1.6. Impacted is the function run_jq_tests of the file jq_test.c of the component JSON Parser. Executing …

Aug 25, 2025
CVE-2025-9401
3.7 LOW

A vulnerability has been found in HuangDou UTCMS 9. This vulnerability affects unknown code of the file app/modules/ut-frame/admin/login.php of the component Login. Such manipulation of …

Aug 25, 2025
CVE-2025-9396
3.3 LOW

A security flaw has been discovered in ckolivas lrzip up to 0.651. This impacts the function __GI_____strtol_l_internal of the file strtol_l.c. Performing manipulation results in …

Aug 24, 2025
CVE-2025-9389
3.3 LOW

A vulnerability was identified in vim 9.1.0000. Affected is the function __memmove_avx_unaligned_erms of the file memmove-vec-unaligned-erms.S. The manipulation leads to memory corruption. The attack needs …

Aug 24, 2025
CVE-2025-9388
3.5 LOW

A vulnerability was determined in Scada-LTS up to 2.7.8.1. This impacts an unknown function of the file watch_list.shtm. Executing manipulation of the argument Name can …

Aug 24, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.