CVE Database

4399+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-8812
2.4 LOW

A vulnerability, which was classified as problematic, was found in atjiu pybbs up to 6.0.0. This affects an unknown part of the file /api/settings of …

Aug 10, 2025
CVE-2025-52136
3.0 LOW

In EMQX before 5.8.6, administrators can install arbitrary novel plugins via the Dashboard web interface. NOTE: the Supplier's position is that this is the intended …

Aug 10, 2025
CVE-2025-8788
3.5 LOW

A vulnerability was found in Portabilis i-Diario up to 1.5.0 and classified as problematic. Affected by this issue is some unknown functionality of the file …

Aug 10, 2025
CVE-2025-8787
3.5 LOW

A vulnerability has been found in Portabilis i-Diario up to 1.5.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the …

Aug 10, 2025
CVE-2025-8786
3.5 LOW

A vulnerability, which was classified as problematic, was found in Portabilis i-Diario up to 1.5.0. Affected is an unknown function of the file /registros-de-conteudos-por-areas-de-conhecimento/ of …

Aug 10, 2025
CVE-2025-8785
3.5 LOW

A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar up to 2.9. This issue affects some unknown processing of the file …

Aug 10, 2025
CVE-2025-8784
3.5 LOW

A vulnerability classified as problematic was found in Portabilis i-Educar up to 2.9. This vulnerability affects unknown code of the file /intranet/funcionario_vinculo_cad.php of the component …

Aug 9, 2025
CVE-2025-8774
2.5 LOW

A vulnerability has been found in riscv-boom SonicBOOM up to 2.2.3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the …

Aug 9, 2025
CVE-2025-8765
3.5 LOW

A vulnerability classified as problematic was found in Datacom DM955 5GT 1200 825.8010.00. Affected by this vulnerability is an unknown functionality of the component Wireless …

Aug 9, 2025
CVE-2025-8763
3.7 LOW

A vulnerability was found in Ruijie EG306MG 3.0(1)B11P309. It has been rated as problematic. This issue affects some unknown processing of the file /etc/strongswan.conf of …

Aug 9, 2025
CVE-2025-8759
3.7 LOW

A vulnerability was found in TRENDnet TN-200 1.02b02. It has been declared as problematic. This vulnerability affects unknown code of the component Lighttpd. The manipulation …

Aug 9, 2025
CVE-2025-8751
3.1 LOW

A vulnerability was found in Protected Total WebShield Extension up to 3.2.0 on Chrome. It has been classified as problematic. This affects an unknown part …

Aug 9, 2025
CVE-2025-8750
2.4 LOW

A vulnerability has been found in macrozheng mall up to 1.0.3 and classified as problematic. Affected by this vulnerability is the function Upload of the …

Aug 9, 2025
CVE-2025-8746
3.3 LOW

A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function __strstr_sse2. The manipulation leads to memory …

Aug 9, 2025
CVE-2025-54999
3.7 LOW

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 0.1.0 through 2.3.1, when …

Aug 9, 2025
CVE-2025-8743
3.5 LOW

A vulnerability classified as problematic has been found in Scada-LTS up to 2.7.8.1. This affects an unknown part of the file /data_source_edit.shtm of the component …

Aug 8, 2025
CVE-2025-8742
3.7 LOW

A vulnerability was found in macrozheng mall 1.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component …

Aug 8, 2025
CVE-2025-8741
3.7 LOW

A vulnerability was found in macrozheng mall up to 1.0.3. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of …

Aug 8, 2025
CVE-2025-8740
2.4 LOW

A vulnerability was found in zhenfeng13 My-Blog up to 1.0.0. It has been classified as problematic. Affected is an unknown function of the file /admin/categories/save …

Aug 8, 2025
CVE-2025-55188
3.6 LOW

7-Zip before 25.01 does not always properly handle symbolic links during extraction.

Aug 8, 2025
CVE-2025-8737
3.5 LOW

A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The …

Aug 8, 2025
CVE-2025-8735
3.3 LOW

A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c …

Aug 8, 2025
CVE-2025-8732
3.3 LOW

A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. …

Aug 8, 2025
CVE-2025-54940
3.4 LOW

An HTML injection vulnerability exists in WordPress plugin "Advanced Custom Fields" prior to 6.4.3. If this vulnerability is exploited, crafted HTML code may be rendered …

Aug 8, 2025
CVE-2025-54787
3.7 LOW

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. There is a vulnerability in SuiteCRM version 7.14.6 which allows unauthenticated downloads of any …

Aug 7, 2025
CVE-2025-8698
3.3 LOW

A vulnerability was found in Open5GS up to 2.7.5. It has been classified as problematic. Affected is the function amf_nsmf_pdusession_handle_release_sm_context of the file src/amf/nsmf-handler.c of …

Aug 7, 2025
CVE-2025-48709
3.8 LOW

BMC Control-M/Server 9.0.21.300 displays cleartext database credentials in process lists and logs. An authenticated attacker with shell access could observe these credentials and use them …

Aug 7, 2025
CVE-2024-56339
3.7 LOW

IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 could allow a remote attacker to bypass security restrictions caused by a …

Aug 7, 2025
CVE-2025-54798
2.5 LOW

tmp is a temporary file and directory creator for node.js. In versions 0.2.3 and below, tmp is vulnerable to an arbitrary temporary file / directory …

Aug 7, 2025
CVE-2025-45764
3.2 LOW

jsrsasign v11.1.0 was discovered to contain weak encryption. NOTE: this issue has been disputed by a third party who believes that CVE IDs can be …

Aug 6, 2025
CVE-2025-38746
3.5 LOW

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. An unauthenticated attacker with physical access …

Aug 6, 2025
CVE-2024-8244
3.7 LOW

The filepath.Walk and filepath.WalkDir functions are documented as not following symbolic links, but both functions are susceptible to a TOCTOU (time of check/time of use) …

Aug 6, 2025
CVE-2025-8556
3.7 LOW

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection …

Aug 6, 2025
CVE-2025-21024
3.3 LOW

Use of Implicit Intent for Sensitive Communication in Smart View prior to Android 16 allows local attackers to access sensitive information.

Aug 6, 2025
CVE-2025-21023
3.3 LOW

Improper access control in WcsExtension for Galaxy Watch prior to Android Watch 16 allows local attackers to access sensitive information.

Aug 6, 2025
CVE-2025-21022
3.3 LOW

Improper access control in Galaxy Wearable prior to version 2.2.63.25042861 allows local attackers to access sensitive information.

Aug 6, 2025
CVE-2025-8586
3.3 LOW

A vulnerability, which was classified as problematic, was found in libav up to 12.3. This affects the function ff_seek_frame_binary of the file /libavformat/utils.c of the …

Aug 5, 2025
CVE-2025-8584
3.3 LOW

A vulnerability classified as problematic was found in libav up to 12.3. Affected by this vulnerability is the function av_buffer_unref of the file libavutil/buffer.c of …

Aug 5, 2025
CVE-2025-44964
3.9 LOW

A lack of SSL certificate validation in BlueStacks v5.20 allows attackers to execute a man-it-the-middle attack and obtain sensitive information.

Aug 5, 2025
CVE-2025-8555
3.5 LOW

A vulnerability, which was classified as problematic, was found in atjiu pybbs up to 6.0.0. Affected is an unknown function of the file /search. The …

Aug 5, 2025
CVE-2025-8554
2.4 LOW

A vulnerability, which was classified as problematic, has been found in atjiu pybbs up to 6.0.0. This issue affects some unknown processing of the file …

Aug 5, 2025
CVE-2025-8553
2.4 LOW

A vulnerability classified as problematic was found in atjiu pybbs up to 6.0.0. This vulnerability affects unknown code of the file /admin/sensitive_word/list. The manipulation of …

Aug 5, 2025
CVE-2025-8552
2.4 LOW

A vulnerability classified as problematic has been found in atjiu pybbs up to 6.0.0. This affects an unknown part of the file /admin/tag/list. The manipulation …

Aug 5, 2025
CVE-2025-8551
3.5 LOW

A vulnerability was found in atjiu pybbs up to 6.0.0. It has been rated as problematic. Affected by this issue is some unknown functionality of …

Aug 5, 2025
CVE-2025-8550
2.4 LOW

A vulnerability was found in atjiu pybbs up to 6.0.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of …

Aug 5, 2025
CVE-2025-8549
3.7 LOW

A vulnerability was found in atjiu pybbs up to 6.0.0. It has been classified as critical. Affected is the function update of the file src/main/java/co/yiiu/pybbs/controller/admin/UserAdminController.java. …

Aug 5, 2025
CVE-2025-8548
3.7 LOW

A vulnerability was found in atjiu pybbs up to 6.0.0 and classified as problematic. This issue affects the function sendEmailCode of the file src/main/java/co/yiiu/pybbs/controller/api/SettingsApiController.java of …

Aug 5, 2025
CVE-2025-8545
2.4 LOW

A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar 2.10. Affected by this issue is some unknown functionality of the file …

Aug 5, 2025
CVE-2025-8544
2.4 LOW

A vulnerability classified as problematic was found in Portabilis i-Educar 2.10. Affected by this vulnerability is an unknown functionality of the file /module/RegraAvaliacao/edit. The manipulation …

Aug 5, 2025
CVE-2025-8543
2.4 LOW

A vulnerability classified as problematic has been found in Portabilis i-Educar 2.10. Affected is an unknown function of the file /intranet/educar_raca_cad.php. The manipulation of the …

Aug 5, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.