33,897 indexed
CVECVE vulnerabilities
33,897 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 7,851–7,900 of 8,314 in Critical · page 158 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2025-11558 | CVE-2025-11558 CVSS 9.8 | A vulnerability was found in code-projects E-Commerce Website 1.0. Impacted is an unknown function of the file /pages/user_index_search.php. Performing manipul… |
| CVE-2025-11557 | CVE-2025-11557 CVSS 9.8 | A vulnerability has been found in projectworlds Gate Pass Management System 1.0. This issue affects some unknown processing of the file /add-pass.php. Such man… |
| CVE-2025-11556 | CVE-2025-11556 CVSS 9.8 | A flaw has been found in code-projects Simple Leave Manager 1.0. This vulnerability affects unknown code of the file /user.php. This manipulation of the argume… |
| CVE-2025-11555 | CVE-2025-11555 CVSS 9.8 | A vulnerability was detected in Campcodes Online Learning Management System 1.0. This affects an unknown part of the file /admin/calendar_of_events.php. The ma… |
| CVE-2025-11553 | CVE-2025-11553 CVSS 9.8 | A weakness has been identified in code-projects Courier Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-cour… |
| CVE-2025-11551 | CVE-2025-11551 CVSS 9.8 | A vulnerability was determined in code-projects Student Result Manager 1.0. This affects an unknown function of the file src/students/Database.java. This manip… |
| CVE-2025-11549 | CVE-2025-11549 CVSS 9.8 | A vulnerability has been found in Tenda W12 3.0.0.6(3948). The affected element is the function wifiMacFilterSet of the file /goform/modules of the component H… |
| CVE-2025-11543 | CVE-2025-11543 CVSS 9.8 | Improper Validation of Integrity Check Value vulnerability in Sharp Display Solutions projectors allows a attacker may create and run unauthorized firmware. |
| CVE-2025-11542 | CVE-2025-11542 CVSS 9.8 | Stack-based Buffer Overflow vulnerability in Sharp Display Solutions projectors allows a attacker may execute arbitrary commands and programs. |
| CVE-2025-11541 | CVE-2025-11541 CVSS 9.8 | Stack-based Buffer Overflow vulnerability in Sharp Display Solutions projectors allows a attacker may execute arbitrary commands and programs. |
| CVE-2025-11539 | CVE-2025-11539 CVSS 9.9 | Grafana Image Renderer is vulnerable to remote code execution due to an arbitrary file write vulnerability. This is due to the fact that the /render/csv endpoi… |
| CVE-2025-11533 | CVE-2025-11533 CVSS 9.8 | The WP Freeio plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.21. This is due to the process_register() fu… |
| CVE-2025-11529 | CVE-2025-11529 CVSS 9.8 | A security flaw has been discovered in ChurchCRM up to 5.18.0. This impacts the function AuthMiddleware of the file src/ChurchCRM/Slim/Middleware/AuthMiddlewar… |
| CVE-2025-11522 | CVE-2025-11522 CVSS 9.8 | The Search & Go - Directory WordPress Theme theme for WordPress is vulnerable to Authentication Bypass via account takeover in all versions up to, and includin… |
| CVE-2025-11513 | CVE-2025-11513 CVSS 9.8 | A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplier_update.php. This manipulation … |
| CVE-2025-11511 | CVE-2025-11511 CVSS 9.8 | A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplier_add.php. Executing manipulation of t… |
| CVE-2025-11509 | CVE-2025-11509 CVSS 9.8 | A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/product_add.php. Performing manipulat… |
| CVE-2025-11508 | CVE-2025-11508 CVSS 9.8 | A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/voters_add.php. Such manipul… |
| CVE-2025-11507 | CVE-2025-11507 CVSS 9.8 | A weakness has been identified in PHPGurukul Beauty Parlour Management System 1.1. The impacted element is an unknown function of the file /admin/search-invoic… |
| CVE-2025-11506 | CVE-2025-11506 CVSS 9.8 | A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. The affected element is an unknown function of the file /admin/search-a… |
| CVE-2025-11505 | CVE-2025-11505 CVSS 9.8 | A vulnerability was identified in PHPGurukul Beauty Parlour Management System 1.1. Impacted is an unknown function of the file /admin/new-appointment.php. The … |
| CVE-2025-11503 | CVE-2025-11503 CVSS 9.8 | A vulnerability was determined in PHPGurukul Beauty Parlour Management System 1.1. This issue affects some unknown processing of the file /admin/manage-service… |
| CVE-2025-11499 | CVE-2025-11499 CVSS 9.8 | The Tablesome Table – Contact Form DB – WPForms, CF7, Gravity, Forminator, Fluent plugin for WordPress is vulnerable to arbitrary file uploads due to missing f… |
| CVE-2025-11491 | CVE-2025-11491 CVSS 9.8 | A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The impacted element is the function CommandManager of the file src/command-manager… |
| CVE-2025-11490 | CVE-2025-11490 CVSS 9.8 | A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected element is the function extractBaseCommand of the file src/comman… |
| CVE-2025-11487 | CVE-2025-11487 CVSS 9.8 | A security flaw has been discovered in SourceCodester Farm Management System 1.0. Affected by this issue is some unknown functionality of the file /uploadProdu… |
| CVE-2025-11486 | CVE-2025-11486 CVSS 9.8 | A vulnerability was identified in SourceCodester Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /buyNow.php… |
| CVE-2025-11481 | CVE-2025-11481 CVSS 9.8 | A flaw has been found in varunsardana004 Blood-Bank-And-Donation-Management-System up to dc9e0393d826fbc85fad9755b5bc12cba1919df2. The impacted element is an u… |
| CVE-2025-11480 | CVE-2025-11480 CVSS 9.8 | A vulnerability was detected in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /register.php. Performi… |
| CVE-2025-11479 | CVE-2025-11479 CVSS 9.8 | A security vulnerability has been detected in SourceCodester Wedding Reservation Management System 1.0. Impacted is the function insertReservation of the file … |
| CVE-2025-11477 | CVE-2025-11477 CVSS 9.8 | A security flaw has been discovered in SourceCodester Wedding Reservation Management System 1.0. This vulnerability affects unknown code of the file /global.ph… |
| CVE-2025-11476 | CVE-2025-11476 CVSS 9.8 | A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the … |
| CVE-2025-11475 | CVE-2025-11475 CVSS 9.8 | A vulnerability was determined in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /view_… |
| CVE-2025-11474 | CVE-2025-11474 CVSS 9.8 | A vulnerability was found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit… |
| CVE-2025-11473 | CVE-2025-11473 CVSS 9.8 | A vulnerability has been found in SourceCodester Hotel and Lodge Management System 1.0. Affected is an unknown function of the file /edit_curr.php. Such manipu… |
| CVE-2025-11472 | CVE-2025-11472 CVSS 9.8 | A flaw has been found in SourceCodester Hotel and Lodge Management System 1.0. This impacts an unknown function of the file /edit_room.php. This manipulation o… |
| CVE-2025-11471 | CVE-2025-11471 CVSS 9.8 | A vulnerability was detected in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown function of the file /edit_customer.php. The mani… |
| CVE-2025-11469 | CVE-2025-11469 CVSS 9.8 | A weakness has been identified in SourceCodester Hotel and Lodge Management System 1.0. The affected element is an unknown function of the file /pages/save_cus… |
| CVE-2025-11457 | CVE-2025-11457 CVSS 9.8 | The EasyCommerce – AI-Powered, Fast & Beautiful WordPress Ecommerce Plugin plugin for WordPress is vulnerable to Privilege Escalation in versions 0.9.0-beta2 t… |
| CVE-2025-11456 | CVE-2025-11456 CVSS 9.8 | The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the… |
| CVE-2025-1144 | CVE-2025-1144 CVSS 9.8 | School Affairs System from Quanxun has an Exposure of Sensitive Information, allowing unauthenticated attackers to view specific pages and obtain database info… |
| CVE-2025-11434 | CVE-2025-11434 CVSS 9.8 | A weakness has been identified in itsourcecode Student Transcript Processing System 1.0. Affected is an unknown function of the file /login.php. Executing a ma… |
| CVE-2025-11432 | CVE-2025-11432 CVSS 9.8 | A vulnerability was identified in itsourcecode Leave Management System 1.0. This affects an unknown function of the file /reset.php. Such manipulation of the a… |
| CVE-2025-11431 | CVE-2025-11431 CVSS 9.8 | A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. The impacted element is an unknown function of the file /transaction.ph… |
| CVE-2025-11430 | CVE-2025-11430 CVSS 9.8 | A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulatio… |
| CVE-2025-11424 | CVE-2025-11424 CVSS 9.8 | A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing mani… |
| CVE-2025-11423 | CVE-2025-11423 CVSS 9.8 | A vulnerability was found in Tenda CH22 1.0.0.1. This affects the function formSafeEmailFilter of the file /goform/SafeEmailFilter. Performing a manipulation o… |
| CVE-2025-11422 | CVE-2025-11422 CVSS 9.8 | A vulnerability has been found in Campcodes Advanced Online Voting Management System 1.0. The impacted element is an unknown function of the file /admin/login.… |
| CVE-2025-11420 | CVE-2025-11420 CVSS 9.8 | A vulnerability was detected in code-projects E-Commerce Website 1.0. Impacted is an unknown function of the file /pages/edit_order_details.php. The manipulati… |
| CVE-2025-11418 | CVE-2025-11418 CVSS 9.8 | A security vulnerability has been detected in Tenda CH22 up to 1.0.0.1. This issue affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of … |