CVE Database

37604+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-48466
8.1 HIGH

Successful exploitation of the vulnerability could allow an unauthenticated, remote attacker to send Modbus TCP packets to manipulate Digital Outputs, potentially allowing remote control of …

Jun 24, 2025
CVE-2025-34038
7.5 HIGH

A SQL injection vulnerability exists in Weaver E-cology 8.0 via the getdata.jsp endpoint. The application directly passes unsanitized user input from the sql parameter into …

Jun 24, 2025
CVE-2025-34034
8.8 HIGH

A hardcoded credential vulnerability exists in the Blue Angel Software Suite deployed on embedded Linux systems. The application contains multiple known default and hardcoded user …

Jun 24, 2025
CVE-2025-34033
8.8 HIGH

An OS command injection vulnerability exists in the Blue Angel Software Suite running on embedded Linux devices via the ping_addr parameter in the webctrl.cgi script. …

Jun 24, 2025
CVE-2025-34031
7.5 HIGH

A path traversal vulnerability exists in the Moodle LMS Jmol plugin version 6.1 and prior via the query parameter in jsmol.php. The script directly passes …

Jun 24, 2025
CVE-2025-6529
8.8 HIGH

A vulnerability was found in 70mai M300 up to 20250611 and classified as critical. Affected by this issue is some unknown functionality of the component …

Jun 23, 2025
CVE-2025-23092
7.2 HIGH

Mitel OpenScape Accounting Management through V5 R1.1.0 could allow an authenticated attacker with administrative privileges to conduct a path traversal attack due to insufficient sanitization …

Jun 23, 2025
CVE-2025-48026
7.5 HIGH

A vulnerability in the WebApl component of Mitel OpenScape Xpressions through V7R1 FR5 HF43 P913 could allow an unauthenticated attacker to conduct a path traversal …

Jun 23, 2025
CVE-2025-44528
7.5 HIGH

An issue in Texas Instruments LP-CC2652RB SimpleLink CC13XX CC26XX SDK 7.41.00.17 allows attackers to cause a Denial of Service (DoS) via sending a crafted LL_Pause_Enc_Req …

Jun 23, 2025
CVE-2025-50349
7.5 HIGH

PHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-teacher-pic.php.

Jun 23, 2025
CVE-2025-50348
7.5 HIGH

PHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-class-pic.php.

Jun 23, 2025
CVE-2025-49144
7.3 HIGH

Notepad++ is a free and open-source source code editor. In versions 8.8.1 and prior, a privilege escalation vulnerability exists in the Notepad++ v8.8.1 installer that …

Jun 23, 2025
CVE-2025-49126
8.8 HIGH

Visionatrix is an AI Media processing tool using ComfyUI. In versions 1.5.0 to before 2.5.1, the /docs/flows endpoint is vulnerable to a Reflected XSS (Cross-Site …

Jun 23, 2025
CVE-2025-6511
8.8 HIGH

A vulnerability classified as critical has been found in Netgear EX6150 1.0.0.46_1.0.76. This affects the function sub_410090. The manipulation leads to stack-based buffer overflow. It …

Jun 23, 2025
CVE-2025-6510
8.8 HIGH

A vulnerability was found in Netgear EX6100 1.0.2.28_1.1.138. It has been rated as critical. Affected by this issue is the function sub_415EF8. The manipulation leads …

Jun 23, 2025
CVE-2023-50450
8.4 HIGH

An issue was discovered in Sensopart VISOR Vision Sensors before 2.10.0.2 allows local users to perform unspecified actions with elevated privileges.

Jun 23, 2025
CVE-2023-47294
8.1 HIGH

An issue in NCR Terminal Handler v1.5.1 allows low-level privileged authenticated attackers to arbitrarily deactivate, lock, and delete user accounts via a crafted session cookie.

Jun 23, 2025
CVE-2025-52922
7.4 HIGH

Innoshop through 0.4.1 allows directory traversal via FileManager API endpoints. An authenticated attacker with access to the admin panel could abuse this to: (1) fully …

Jun 23, 2025
CVE-2025-27387
7.4 HIGH

OPPO Clone Phone uses a weak password WiFi hotspot to transfer files, resulting in Information disclosure.

Jun 23, 2025
CVE-2025-6503
7.3 HIGH

A vulnerability was found in code-projects Inventory Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /php_action/fetchSelectedCategories.php. The …

Jun 23, 2025
CVE-2025-6502
7.3 HIGH

A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /php_action/changePassword.php. The …

Jun 23, 2025
CVE-2025-6501
7.3 HIGH

A vulnerability, which was classified as critical, was found in code-projects Inventory Management System 1.0. This affects an unknown part of the file /php_action/createCategories.php. The …

Jun 23, 2025
CVE-2025-6500
7.3 HIGH

A vulnerability, which was classified as critical, has been found in code-projects Inventory Management System 1.0. Affected by this issue is some unknown functionality of …

Jun 23, 2025
CVE-2025-6489
7.3 HIGH

A vulnerability has been found in itsourcecode Agri-Trading Online Shopping System 1.0 and classified as critical. This vulnerability affects unknown code of the file /transactionsave.php. …

Jun 22, 2025
CVE-2025-6487
8.8 HIGH

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been rated as critical. This issue affects the function formRoute of the file /boafrm/formRoute. The …

Jun 22, 2025
CVE-2025-6486
8.8 HIGH

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been declared as critical. This vulnerability affects the function formWlanMultipleAP of the file /boafrm/formWlanMultipleAP. The …

Jun 22, 2025
CVE-2025-6483
7.3 HIGH

A vulnerability has been found in code-projects Simple Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of …

Jun 22, 2025
CVE-2025-6482
7.3 HIGH

A vulnerability, which was classified as critical, was found in code-projects Simple Pizza Ordering System 1.0. Affected is an unknown function of the file /edituser-exec.php. …

Jun 22, 2025
CVE-2025-6481
7.3 HIGH

A vulnerability, which was classified as critical, has been found in code-projects Simple Pizza Ordering System 1.0. This issue affects some unknown processing of the …

Jun 22, 2025
CVE-2025-6480
7.3 HIGH

A vulnerability classified as critical was found in code-projects Simple Pizza Ordering System 1.0. This vulnerability affects unknown code of the file /addcatexec.php. The manipulation …

Jun 22, 2025
CVE-2025-6479
7.3 HIGH

A vulnerability classified as critical has been found in code-projects Simple Pizza Ordering System 1.0. This affects an unknown part of the file /salesreport.php. The …

Jun 22, 2025
CVE-2025-6474
7.3 HIGH

A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /changeUsername.php. The …

Jun 22, 2025
CVE-2025-6472
7.3 HIGH

A vulnerability, which was classified as critical, has been found in code-projects Online Bidding System 1.0. Affected by this issue is some unknown functionality of …

Jun 22, 2025
CVE-2025-6471
7.3 HIGH

A vulnerability classified as critical was found in code-projects Online Bidding System 1.0. Affected by this vulnerability is an unknown functionality of the file /administrator. …

Jun 22, 2025
CVE-2025-6470
7.3 HIGH

A vulnerability classified as critical has been found in code-projects Online Bidding System 1.0. Affected is an unknown function of the file /bidlog.php. The manipulation …

Jun 22, 2025
CVE-2025-6469
7.3 HIGH

A vulnerability was found in code-projects Online Bidding System 1.0. It has been rated as critical. This issue affects some unknown processing of the file …

Jun 22, 2025
CVE-2025-6468
7.3 HIGH

A vulnerability was found in code-projects Online Bidding System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /bidnow.php. …

Jun 22, 2025
CVE-2025-6467
7.3 HIGH

A vulnerability was found in code-projects Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /login.php. …

Jun 22, 2025
CVE-2025-6458
7.3 HIGH

A vulnerability has been found in code-projects Online Hotel Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/execedituser.php. …

Jun 22, 2025
CVE-2025-6457
7.3 HIGH

A vulnerability, which was classified as critical, was found in code-projects Online Hotel Reservation System 1.0. This affects an unknown part of the file /reservation/demo.php. …

Jun 22, 2025
CVE-2025-6456
7.3 HIGH

A vulnerability, which was classified as critical, has been found in code-projects Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality …

Jun 22, 2025
CVE-2025-6455
7.3 HIGH

A vulnerability classified as critical was found in code-projects Online Hotel Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file …

Jun 22, 2025
CVE-2025-6451
7.3 HIGH

A vulnerability was found in code-projects Simple Online Hotel Reservation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the …

Jun 22, 2025
CVE-2025-6450
7.3 HIGH

A vulnerability was found in code-projects Simple Online Hotel Reservation System 1.0. It has been classified as critical. This affects an unknown part of the …

Jun 22, 2025
CVE-2025-6449
7.3 HIGH

A vulnerability was found in code-projects Simple Online Hotel Reservation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of …

Jun 22, 2025
CVE-2025-6448
7.3 HIGH

A vulnerability has been found in code-projects Simple Online Hotel Reservation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality …

Jun 22, 2025
CVE-2025-6447
7.3 HIGH

A vulnerability, which was classified as critical, was found in code-projects Simple Online Hotel Reservation System 1.0. Affected is an unknown function of the file …

Jun 22, 2025
CVE-2025-6446
7.3 HIGH

A vulnerability, which was classified as critical, has been found in code-projects Client Details System 1.0. This issue affects some unknown processing of the file …

Jun 21, 2025
CVE-2025-6421
7.3 HIGH

A vulnerability was found in code-projects Simple Online Hotel Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of …

Jun 21, 2025
CVE-2025-6420
7.3 HIGH

A vulnerability was found in code-projects Simple Online Hotel Reservation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the …

Jun 21, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.