CVE Vulnerabilities
CVE vulnerability database enriched with CISA KEV and NVD data
| CVE ID | CVSS | Severity | KEV | Sightings |
|---|---|---|---|---|
| CVE-2025-5128 A vulnerability, which was classified as critical, was found in ScriptAndTools Real-Estate-website-in-PHP 1.0. Affected is an unknown function of the file /admin/ of the component Admin Login Panel. T... | 7.3 | HIGH | β | 0 |
| CVE-2025-5058 The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_image() function in all versions up to, and incl... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-35003 Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack (HCI and UART components) t... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-5196 A vulnerability has been found in Wing FTP Server up to 7.4.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Lua Admin Console. The manipulatio... | 6.6 | MEDIUM | β | 0 |
| CVE-2025-4683 The MStore API β Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the create_blog function in ... | 4.3 | MEDIUM | β | 0 |
| CVE-2025-5221 A vulnerability was found in FreeFloat FTP Server 1.0.0. It has been classified as critical. This affects an unknown part of the component QUOTE Command Handler. The manipulation leads to buffer overf... | 7.3 | HIGH | β | 0 |
| CVE-2025-26211 Gibbon before 29.0.00 allows CSRF. | 3.7 | LOW | β | 0 |
| CVE-2025-48827 vBulletin 5.0.0 through 5.7.5 and 6.0.0 through 6.0.3 allows unauthenticated users to invoke protected API controllers' methods when running on PHP 8.1 or later, as demonstrated by the /api.php?method... | 10.0 | CRITICAL | β | 0 |
| CVE-2025-48828 Certain vBulletin versions might allow attackers to execute arbitrary PHP code by abusing Template Conditionals in the template engine. By crafting template code in an alternative PHP function invocat... | 9.0 | CRITICAL | β | 0 |
| CVE-2025-5228 A vulnerability was found in D-Link DI-8100 up to 20250523. It has been classified as critical. Affected is the function httpd_get_parm of the file /login.cgi of the component jhttpd. The manipulation... | 8.8 | HIGH | β | 0 |
| CVE-2025-22377 An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300... | 6.5 | MEDIUM | β | 0 |
| CVE-2025-5249 A vulnerability has been found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-category.php. The man... | 7.3 | HIGH | β | 0 |
| CVE-2024-49197 An issue was discovered in Wi-Fi in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, W920, W930, and W1000. Lack of a boundary check in STOP_KEEP_ALIVE_OF... | 6.5 | MEDIUM | β | 0 |
| CVE-2025-45475 maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery (SSRF) in Friend Link Management. | 5.4 | MEDIUM | β | 0 |
| CVE-2025-37091 A command injection remote code execution vulnerabilityΒ exists in HPE StoreOnce Software. | 7.2 | HIGH | β | 0 |
| CVE-2025-5063 Use after free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) | 8.8 | HIGH | β | 0 |
| CVE-2025-32440 NetAlertX is a network, presence scanner and alert framework. Prior to version 25.4.14, it is possible to bypass the authentication mechanism of NetAlertX to update settings without authentication. An... | 10.0 | CRITICAL | β | 0 |
| CVE-2025-4947 libcurl accidentally skips the certificate verification for QUIC connections when connecting to a host specified as an IP address in the URL. Therefore, it does not detect impostors or man-in-the-midd... | 6.5 | MEDIUM | β | 0 |
| CVE-2025-5295 A vulnerability classified as critical was found in FreeFloat FTP Server 1.0.0. This vulnerability affects unknown code of the component PORT Command Handler. The manipulation leads to buffer overflow... | 7.3 | HIGH | β | 0 |
| CVE-2025-4493 Improper privilege assignment in PAM JIT privilege sets in Devolutions Server allows a PAM user to perform PAM JIT requests on unauthorized groups by exploiting a user interface issue. This issue ... | 6.5 | MEDIUM | β | 0 |
| CVE-2025-48746 Netwrix Directory Manager (formerly Imanami GroupID) v.11.0.0.0 and before, as well as after v.11.1.25134.03 lacks Authentication for a Critical Function. | 6.5 | MEDIUM | β | 0 |
| CVE-2024-52588 Strapi is an open-source content management system. Prior to version 4.25.2, inputting a local domain into the Webhooks URL field leads to the application fetching itself, resulting in a server side r... | 4.9 | MEDIUM | β | 0 |
| CVE-2025-37092 A command injection remote code execution vulnerability exists in HPE StoreOnce Software. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-48388 FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.178, the application performs insufficient validation of user-supplied data, which is used as arguments to string for... | 6.5 | MEDIUM | β | 0 |
| CVE-2025-5334 Exposure of private personal information to an unauthorized actor in the user vaults component of Devolutions Remote Desktop Manager allows an authenticated user to gain unauthorized access to private... | 7.5 | HIGH | β | 0 |
| CVE-2025-48389 FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.178, FreeScout is vulnerable to deserialization of untrusted data due to insufficient validation. Through the set fun... | 7.2 | HIGH | β | 0 |
| CVE-2025-48390 FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.178, FreeScout is vulnerable to code injection due to insufficient validation of user input in the php_path parameter... | 7.2 | HIGH | β | 0 |
| CVE-2025-48473 FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.179, when creating a conversation from a message in another conversation, there is no check to ensure that the user h... | 4.3 | MEDIUM | β | 0 |
| CVE-2025-48474 FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application incorrectly checks user access rights for conversations. Users with show_only_assigned_conversat... | 8.1 | HIGH | β | 0 |
| CVE-2025-46570 vLLM is an inference and serving engine for large language models (LLMs). Prior to version 0.9.0, when a new prompt is processed, if the PageAttention mechanism finds a matching prefix chunk, the pref... | 2.6 | LOW | β | 0 |
| CVE-2025-46722 vLLM is an inference and serving engine for large language models (LLMs). In versions starting from 0.7.0 to before 0.9.0, in the file vllm/multimodal/hasher.py, the MultiModalHasher class has a secur... | 4.2 | MEDIUM | β | 0 |
| CVE-2025-48475 FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the System does not provide a check on which "clients" of the System an authorized user can view and edit, and w... | 8.1 | HIGH | β | 0 |
| CVE-2025-29632 Buffer Overflow vulnerability in Free5gc v.4.0.0 allows a remote attacker to cause a denial of service via the AMF, NGAP, security.go, handler_generated.go, handleInitialUEMessageMain, DecodePlainNasN... | 5.4 | MEDIUM | β | 0 |
| CVE-2025-32752 Dell ThinOS 2502 and prior contain a Cleartext Storage of Sensitive Information vulnerability. A high privileged attacker with physical access could potentially exploit this vulnerability, leading to ... | 5.7 | MEDIUM | β | 0 |
| CVE-2024-54952 MikroTik RouterOS 6.40.5, the SMB service contains a memory corruption vulnerability. Remote, unauthenticated attackers can exploit this issue by sending specially crafted packets, triggering a null p... | 7.5 | HIGH | β | 0 |
| CVE-2024-12224 Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while ano... | 8.8 | HIGH | β | 0 |
| CVE-2025-44612 Tinxy WiFi Lock Controller v1 RF was discovered to transmit sensitive information in plaintext, including control information and device credentials, allowing attackers to possibly intercept and acces... | 5.9 | MEDIUM | β | 0 |
| CVE-2025-44614 Tinxy WiFi Lock Controller v1 RF was discovered to store users' sensitive information, including credentials and mobile phone numbers, in plaintext. | 7.5 | HIGH | β | 0 |
| CVE-2025-44619 Tinxy WiFi Lock Controller v1 RF was discovered to be configured to transmit on an open Wi-Fi network, allowing attackers to join the network without authentication. | 9.1 | CRITICAL | β | 0 |
| CVE-2025-3611 Mattermost versions 10.7.x <= 10.7.0, 10.5.x <= 10.5.3, 9.11.x <= 9.11.12 fails to properly enforce access control restrictions for System Manager roles, allowing authenticated users with System Manag... | 3.1 | LOW | β | 0 |
| CVE-2025-5356 A vulnerability was found in FreeFloat FTP Server 1.0. It has been classified as critical. Affected is an unknown function of the component BYE Command Handler. The manipulation leads to buffer overfl... | 7.3 | HIGH | β | 0 |
| CVE-2025-48942 vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8.0 up to but excluding 0.9.0, hitting the /v1/completions API with a invalid json_schema as a Guided Param kil... | 6.5 | MEDIUM | β | 0 |
| CVE-2025-37093 An authentication bypass vulnerabilityΒ exists in HPE StoreOnce Software. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-48943 vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 up to but excluding 0.9.0 have a Denial of Service (ReDoS) that causes the vLLM server to crash if an invalid re... | 6.5 | MEDIUM | β | 0 |
| CVE-2025-48944 vLLM is an inference and serving engine for large language models (LLMs). In version 0.8.0 up to but excluding 0.9.0, the vLLM backend used with the /v1/chat/completions OpenAPI endpoint fails to vali... | 6.5 | MEDIUM | β | 0 |
| CVE-2025-3813 The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the β_elementor_dataβ parameter in all versions up to, and including, 1.7.1020 due to ins... | 6.4 | MEDIUM | β | 0 |
| CVE-2025-4857 The Newsletters plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.9.9.9 via the 'file' parameter. This makes it possible for authenticated attackers, w... | 7.2 | HIGH | β | 0 |
| CVE-2025-40908 YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified | 9.1 | CRITICAL | β | 0 |
| CVE-2025-20672 In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction ... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-20673 In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for ... | 5.5 | MEDIUM | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.