CVE Database

9241+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-64657
9.8 CRITICAL

Stack-based buffer overflow in Azure Application Gateway allows an unauthorized attacker to elevate privileges over a network.

Nov 26, 2025
CVE-2025-64656
9.4 CRITICAL

Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges over a network.

Nov 26, 2025
CVE-2025-13597
9.8 CRITICAL

The AI Feeds plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check in the 'actualizador_git.php' file in all versions up …

Nov 25, 2025
CVE-2025-13595
9.8 CRITICAL

The CIBELES AI plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check in the 'actualizador_git.php' file in all versions up …

Nov 25, 2025
CVE-2025-51746
9.8 CRITICAL

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /serialNumber/addSerialNumber endpoint is vulnerable to fastjson deserialization attacks.

Nov 25, 2025
CVE-2025-51745
9.8 CRITICAL

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /role/addcan endpoint is vulnerable to fastjson deserialization attacks.

Nov 25, 2025
CVE-2025-51744
9.8 CRITICAL

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /user/addUser endpoint is vulnerable to fastjson deserialization attacks.

Nov 25, 2025
CVE-2025-51743
9.8 CRITICAL

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /materialCategory/addMaterialCategory endpoint is vulnerable to fastjson deserialization attacks.

Nov 25, 2025
CVE-2025-51742
9.8 CRITICAL

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /material/getMaterialEnableSerialNumberList endpoint passes the search query parameter directly to parseObject(), introducing a Fastjson deserialization vulnerability that …

Nov 25, 2025
CVE-2025-64063
9.8 CRITICAL

Primakon Pi Portal 1.0.18 API endpoints fail to enforce sufficient authorization checks when processing requests. Specifically, a standard user can exploit this flaw by sending …

Nov 25, 2025
CVE-2025-61168
9.8 CRITICAL

An issue in the cms_rest.php component of SIGB PMB v8.0.1.14 allows attackers to execute arbitrary code via unserializing an arbitrary file.

Nov 25, 2025
CVE-2025-65085
9.8 CRITICAL

A Heap-based Buffer Overflow vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker …

Nov 25, 2025
CVE-2025-65084
9.8 CRITICAL

An Out-of-Bounds Write vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to …

Nov 25, 2025
CVE-2025-33187
9.3 CRITICAL

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT, where an attacker could use privileged access to gain access to SoC protected areas. A successful …

Nov 25, 2025
CVE-2025-63729
9.0 CRITICAL

An issue was discovered in Syrotech SY-GPON-1110-WDONT SYRO_3.7L_3.1.02-240517 allowing attackers to exctract the SSL Private Key, CA Certificate, SSL Certificate, and Client Certificates in .pem …

Nov 25, 2025
CVE-2025-60739
9.6 CRITICAL

Cross Site Request Forgery (CSRF) vulnerability in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before, Logic Version v6.00 - 2025_07_21 allows a remote attacker …

Nov 25, 2025
CVE-2025-64693
9.8 CRITICAL

Security Point (Windows) of MaLion and MaLionCloud contains a heap-based buffer overflow vulnerability in processing Content-Length. Receiving a specially crafted request from a remote unauthenticated …

Nov 25, 2025
CVE-2025-62691
9.8 CRITICAL

Security Point (Windows) of MaLion and MaLionCloud contains a stack-based buffer overflow vulnerability in processing HTTP headers. Receiving a specially crafted request from a remote …

Nov 25, 2025
CVE-2025-13559
9.8 CRITICAL

The EduKart Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.3. This is due to the 'edukart_pro_register_user_front_end' …

Nov 25, 2025
CVE-2025-6389
9.8 CRITICAL

The Sneeit Framework plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 8.3 via the sneeit_articles_pagination_callback() function. This …

Nov 25, 2025
CVE-2025-54347
9.9 CRITICAL

A Directory Traversal vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to write arbitrary …

Nov 24, 2025
CVE-2024-47856
9.8 CRITICAL

In RSA Authentication Agent before 7.4.7, service paths and shortcut paths may be vulnerable to path interception if the path has one or more spaces …

Nov 24, 2025
CVE-2025-63958
9.8 CRITICAL

MILLENSYS Vision Tools Workspace 6.5.0.2585 exposes a sensitive configuration endpoint (/MILLENSYS/settings) that is accessible without authentication. This page leaks plaintext database credentials, file share paths, …

Nov 24, 2025
CVE-2025-12977
9.1 CRITICAL

Fluent Bit in_http, in_splunk, and in_elasticsearch input plugins fail to sanitize tag_key inputs. An attacker with network access or the ability to write records into …

Nov 24, 2025
CVE-2025-65108
10.0 CRITICAL

md-to-pdf is a CLI tool for converting Markdown files to PDF using Node.js and headless Chrome. Prior to version 5.2.5, a Markdown front-matter block that …

Nov 21, 2025
CVE-2025-64767
9.1 CRITICAL

hpke-js is a Hybrid Public Key Encryption (HPKE) module built on top of Web Cryptography API. Prior to version 1.7.5, the public SenderContext Seal() API …

Nov 21, 2025
CVE-2025-62608
9.1 CRITICAL

MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a heap buffer overflow in mlx::core::load() when parsing …

Nov 21, 2025
CVE-2025-41115
10.0 CRITICAL

SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations manage users and teams in Grafana by introducing automated …

Nov 21, 2025
CVE-2025-11127
9.8 CRITICAL

The Mstoreapp Mobile App WordPress plugin through 2.08 and Mstoreapp Mobile Multivendor through 9.0.1 do not properly verify users identify when using an AJAX action, …

Nov 21, 2025
CVE-2025-11456
9.8 CRITICAL

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the …

Nov 21, 2025
CVE-2025-64310
9.8 CRITICAL

EPSON WebConfig and Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts. An administrative user's password may be identified through …

Nov 21, 2025
CVE-2025-64762
9.1 CRITICAL

The AuthKit library for Next.js provides convenient helpers for authentication and session management using WorkOS & AuthKit with Next.js. In authkit-nextjs version 2.11.0 and below, …

Nov 21, 2025
CVE-2025-64755
9.8 CRITICAL

Claude Code is an agentic coding tool. Prior to version 2.0.31, due to an error in sed command parsing, it was possible to bypass the …

Nov 21, 2025
CVE-2025-59245
9.8 CRITICAL

Microsoft SharePoint Online Elevation of Privilege Vulnerability

Nov 20, 2025
CVE-2025-49752
10.0 CRITICAL

Azure Bastion Elevation of Privilege Vulnerability

Nov 20, 2025
CVE-2025-63807
9.8 CRITICAL

An issue was discovered in weijiang1994 university-bbs (aka Blogin) in commit 9e06bab430bfc729f27b4284ba7570db3b11ce84 (2025-01-13). A weak verification code generation mechanism combined with missing rate limiting allows …

Nov 20, 2025
CVE-2025-63685
9.8 CRITICAL

Quark Cloud Drive v3.23.2 has a DLL Hijacking vulnerability. This vulnerability stems from the insecure loading of system libraries. Specifically, the application does not validate …

Nov 20, 2025
CVE-2025-10571
9.6 CRITICAL

Authentication Bypass Using an Alternate Path or Channel vulnerability in ABB ABB Ability Edgenius.This issue affects ABB Ability Edgenius: 3.2.0.0, 3.2.1.1.

Nov 20, 2025
CVE-2025-63888
9.8 CRITICAL

The read function in file thinkphp\library\think\template\driver\File.php in ThinkPHP 5.0.24 contains a remote code execution vulnerability.

Nov 20, 2025
CVE-2025-64428
9.8 CRITICAL

Dataease is an open source data visualization analysis tool. Versions prior to 2.10.17 are vulnerable to JNDI injection. A blacklist was added in the patch …

Nov 20, 2025
CVE-2025-52410
9.8 CRITICAL

Institute-of-Current-Students v1.0 contains a time-based blind SQL injection vulnerability in the mydetailsstudent.php endpoint. The `myds` GET parameter is not adequately sanitized before being used in …

Nov 20, 2025
CVE-2025-60738
9.8 CRITICAL

An issue in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before Logic Version v6.00 - 2025_07_21 and before allows a remote attacker to execute …

Nov 20, 2025
CVE-2025-40604
9.8 CRITICAL

Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifying signatures, allowing attackers with VMDK or …

Nov 20, 2025
CVE-2025-63213
9.8 CRITICAL

The QVidium Opera11 device (firmware version 2.9.0-Ax4x-opera11) is vulnerable to Remote Code Execution (RCE) due to improper input validation on the /cgi-bin/net_ping.cgi endpoint. An attacker …

Nov 19, 2025
CVE-2025-65099
9.8 CRITICAL

Claude Code is an agentic coding tool. Prior to version 1.0.39, when running on a machine with Yarn 3.0 or above, Claude Code could have …

Nov 19, 2025
CVE-2025-65021
9.1 CRITICAL

Rallly is an open-source scheduling and collaboration tool. Prior to version 4.5.4, an Insecure Direct Object Reference (IDOR) vulnerability exists in the poll finalization feature …

Nov 19, 2025
CVE-2025-63210
9.8 CRITICAL

The Newtec Celox UHD (models: CELOXA504, CELOXA820) running firmware version celox-21.6.13 is vulnerable to an authentication bypass. An attacker can exploit this issue by modifying …

Nov 19, 2025
CVE-2025-63207
9.8 CRITICAL

The R.V.R Elettronica TEX product (firmware TEXL-000400, Web GUI TLAN-000400) is vulnerable to broken access control due to improper authentication checks on the /_Passwd.html endpoint. …

Nov 19, 2025
CVE-2025-63206
9.8 CRITICAL

An authentication bypass issue was discovered in Dasan Switch DS2924 web based interface, firmware versions 1.01.18 and 1.02.00, allowing attackers to gain escalated privileges via …

Nov 19, 2025
CVE-2025-13315
9.8 CRITICAL

Twonky Server 8.5.2 on Linux and Windows is vulnerable to an access control flaw. An unauthenticated attacker can bypass web service API authentication controls to …

Nov 19, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.