CVE Database

36304+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-69112
8.1 HIGH

Unauthenticated Local File Inclusion in Planty <= 1.14.0 versions.

Jun 17, 2026
CVE-2025-69110
8.1 HIGH

Unauthenticated Local File Inclusion in AirSupply <= 2.0.0 versions.

Jun 17, 2026
CVE-2025-69109
8.1 HIGH

Unauthenticated Local File Inclusion in Raider Spirit <= 1.1.2 versions.

Jun 17, 2026
CVE-2025-69107
8.1 HIGH

Unauthenticated Local File Inclusion in Rosaleen <= 2.8 versions.

Jun 17, 2026
CVE-2025-69105
8.1 HIGH

Unauthenticated Local File Inclusion in Modernee <= 1.6.0 versions.

Jun 17, 2026
CVE-2025-69104
7.1 HIGH

Unauthenticated Cross Site Scripting (XSS) in Qreatix <= 1.9.4 versions.

Jun 17, 2026
CVE-2025-69103
7.5 HIGH

Subscriber Arbitrary Content Deletion in Brikk <= 3.0.0 versions.

Jun 17, 2026
CVE-2025-60223
7.7 HIGH

Subscriber Arbitrary File Deletion in WPBot Pro Wordpress Chatbot <= 13.6.5 versions.

Jun 17, 2026
CVE-2025-60085
8.1 HIGH

Unauthenticated Local File Inclusion in Learnify <= 1.15.0 versions.

Jun 17, 2026
CVE-2025-59563
8.8 HIGH

Subscriber Privilege Escalation in Sonaar <= 4.27.4 versions.

Jun 17, 2026
CVE-2025-59560
7.1 HIGH

Unauthenticated Cross Site Scripting (XSS) in Sonaar <= 4.27.4 versions.

Jun 17, 2026
CVE-2025-58954
8.1 HIGH

Unauthenticated Local File Inclusion in HomeRoofer <= 2.11.0 versions.

Jun 17, 2026
CVE-2025-58953
8.1 HIGH

Unauthenticated Local File Inclusion in Joly <= 1.22.0 versions.

Jun 17, 2026
CVE-2025-58952
8.1 HIGH

Unauthenticated Local File Inclusion in Neuronet < 1.14.0 versions.

Jun 17, 2026
CVE-2025-58924
8.1 HIGH

Unauthenticated Local File Inclusion in Geya <= 1.15 versions.

Jun 17, 2026
CVE-2025-49403
7.5 HIGH

Unauthenticated Arbitrary File Download in Premium Age Verification / Restriction for WordPress <= 3.0.2 versions.

Jun 17, 2026
CVE-2025-48643
7.8 HIGH

In multiple locations there is a possible provisioning bypass due to improper input validation. This could lead to local escalation of privilege with no additional …

Jun 17, 2026
CVE-2025-48640
8.0 HIGH

In multiple locations, there is a possible 3rd party passkey entry pairing approval due to a missing permission check. This could lead to remote (proximal/adjacent) …

Jun 17, 2026
CVE-2025-48617
7.8 HIGH

In overrideConfig of CarrierConfigLoader.java, there is a possible way to bypass UID check due to a permissions bypass. This could lead to local escalation of …

Jun 17, 2026
CVE-2025-31013
7.1 HIGH

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themify Folo allows Reflected XSS. This issue affects Themify Folo: from n/a through …

Jun 17, 2026
CVE-2024-49269
7.1 HIGH

Unauthenticated Cross Site Scripting (XSS) in my flatonica <= 0.0.8 versions.

Jun 17, 2026
CVE-2024-32949
8.3 HIGH

Missing Authorization vulnerability in Prince Integrate Google Drive allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Integrate Google Drive: from n/a through …

Jun 17, 2026
CVE-2024-32729
7.5 HIGH

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in QuantumCloud Conversational Forms for ChatBot allows Path Traversal. This issue affects Conversational …

Jun 17, 2026
CVE-2026-48294
7.4 HIGH

Adobe Acrobat PDF Extension (Chrome) versions 26.5.2.2 and earlier are affected by a UXSS-class cross-origin data disclosure vulnerability. An attacker could exploit this vulnerability to …

Jun 17, 2026
CVE-2026-46976
7.2 HIGH

Vulnerability in the Oracle Public Sector Payroll product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability …

Jun 17, 2026
CVE-2026-46974
7.5 HIGH

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is 7.2.8. Difficult to exploit vulnerability allows …

Jun 17, 2026
CVE-2026-46973
8.8 HIGH

Vulnerability in the Oracle Outsourced Mfg for Discrete Industries product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily …

Jun 17, 2026
CVE-2026-46972
8.8 HIGH

Vulnerability in the Oracle Outsourced Mfg for Discrete Industries product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily …

Jun 17, 2026
CVE-2026-46971
7.5 HIGH

Vulnerability in the Oracle HR Intelligence product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability …

Jun 17, 2026
CVE-2026-46970
7.2 HIGH

Vulnerability in the Oracle HR Intelligence product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows …

Jun 17, 2026
CVE-2026-46969
7.2 HIGH

Vulnerability in the Oracle Financials for EMEA product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability …

Jun 17, 2026
CVE-2026-46967
8.8 HIGH

Vulnerability in the Oracle Public Sector Financials (International) product of Oracle E-Business Suite (component: Authorization). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability …

Jun 17, 2026
CVE-2026-46966
7.5 HIGH

Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (component: Work Provider Site Level Administration). Supported versions that are affected are 12.2.3-12.2.15. …

Jun 17, 2026
CVE-2026-46965
8.8 HIGH

Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (component: Work Provider Site Level Administration). Supported versions that are affected are 12.2.3-12.2.15. …

Jun 17, 2026
CVE-2026-46962
8.8 HIGH

Vulnerability in the Oracle Project Portfolio Analysis product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability …

Jun 17, 2026
CVE-2026-46961
8.8 HIGH

Vulnerability in the Oracle Project Portfolio Analysis product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability …

Jun 17, 2026
CVE-2026-46960
7.2 HIGH

Vulnerability in the Oracle Project Portfolio Analysis product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability …

Jun 17, 2026
CVE-2026-46959
7.5 HIGH

Vulnerability in the Oracle Subledger Accounting product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability …

Jun 17, 2026
CVE-2026-46958
7.5 HIGH

Vulnerability in the Oracle Subledger Accounting product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability …

Jun 17, 2026
CVE-2026-46957
7.5 HIGH

Vulnerability in the Oracle iSupplier Portal product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability …

Jun 17, 2026
CVE-2026-46956
7.2 HIGH

Vulnerability in the Oracle Property Manager product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows …

Jun 17, 2026
CVE-2026-46955
7.5 HIGH

Vulnerability in the Oracle Human Resources product of Oracle E-Business Suite (component: Person). Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability allows …

Jun 17, 2026
CVE-2026-46953
7.2 HIGH

Vulnerability in the Oracle HRMS (UK) product of Oracle E-Business Suite (component: UK Payroll). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows …

Jun 17, 2026
CVE-2026-46952
8.8 HIGH

Vulnerability in the Oracle Quality product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low …

Jun 17, 2026
CVE-2026-46951
8.8 HIGH

Vulnerability in the Oracle Quality product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low …

Jun 17, 2026
CVE-2026-46950
8.8 HIGH

Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability …

Jun 17, 2026
CVE-2026-46947
8.8 HIGH

Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability …

Jun 17, 2026
CVE-2026-46942
8.8 HIGH

Vulnerability in the Oracle Process Manufacturing Process Planning product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable …

Jun 17, 2026
CVE-2026-46940
8.8 HIGH

Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows …

Jun 17, 2026
CVE-2026-46939
8.1 HIGH

Vulnerability in the Oracle Configure to Order product of Oracle E-Business Suite (component: Supply to Order Workbench). Supported versions that are affected are 12.2.3-12.2.15. Easily …

Jun 17, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.