31,594 indexed
CVECVE vulnerabilities
31,594 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 2,601–2,650 of 8,314 in Critical · page 53 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2025-9476 | CVE-2025-9476 CVSS 9.8 | A vulnerability has been found in SourceCodester Human Resource Information System 1.0. Affected by this issue is some unknown functionality of the file /Super… |
| CVE-2025-9475 | CVE-2025-9475 CVSS 9.8 | A flaw has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /Admin_Da… |
| CVE-2025-9473 | CVE-2025-9473 CVSS 9.8 | A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The… |
| CVE-2025-9472 | CVE-2025-9472 CVSS 9.8 | A vulnerability was found in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /owner_utility/add_owner_util… |
| CVE-2025-9471 | CVE-2025-9471 CVSS 9.8 | A vulnerability has been found in itsourcecode Apartment Management System 1.0. This vulnerability affects unknown code of the file /maintenance/add_maintenanc… |
| CVE-2025-9470 | CVE-2025-9470 CVSS 9.8 | A flaw has been found in itsourcecode Apartment Management System 1.0. This affects an unknown part of the file /management/add_m_committee.php. Executing mani… |
| CVE-2025-9469 | CVE-2025-9469 CVSS 9.8 | A vulnerability was detected in itsourcecode Apartment Management System 1.0. Affected by this issue is some unknown functionality of the file /fund/add_fund.p… |
| CVE-2025-9468 | CVE-2025-9468 CVSS 9.8 | A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. Affected by this vulnerability is an unknown functionality of the f… |
| CVE-2025-9444 | CVE-2025-9444 CVSS 9.8 | A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown processing of the fi… |
| CVE-2025-9426 | CVE-2025-9426 CVSS 9.8 | A weakness has been identified in itsourcecode Online Tour and Travel Management System 1.0. This affects an unknown part of the file /package.php. Executing m… |
| CVE-2025-9425 | CVE-2025-9425 CVSS 9.8 | A security flaw has been discovered in itsourcecode Online Tour and Travel Management System 1.0. Affected by this issue is some unknown functionality of the f… |
| CVE-2025-9424 | CVE-2025-9424 CVSS 9.8 | A vulnerability was identified in Ruijie WS7204-A 2017.06.15. Affected by this vulnerability is an unknown functionality of the file /itbox_pi/branch_import.ph… |
| CVE-2025-9423 | CVE-2025-9423 CVSS 9.8 | A vulnerability was determined in Campcodes Online Water Billing System 1.0. Affected is an unknown function of the file /editecex.php. This manipulation of th… |
| CVE-2025-9421 | CVE-2025-9421 CVSS 9.8 | A vulnerability has been found in itsourcecode Apartment Management System 1.0. This affects an unknown function of the file /complain/addcomplain.php. The man… |
| CVE-2025-9420 | CVE-2025-9420 CVSS 9.8 | A flaw has been found in itsourcecode Apartment Management System 1.0. The impacted element is an unknown function of the file /floor/addfloor.php. Executing m… |
| CVE-2025-9419 | CVE-2025-9419 CVSS 9.8 | A vulnerability was detected in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /unit/addunit.php. Perfor… |
| CVE-2025-9418 | CVE-2025-9418 CVSS 9.8 | A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. Impacted is an unknown function of the file /owner/addowner.php. Su… |
| CVE-2025-9415 | CVE-2025-9415 CVSS 9.8 | A vulnerability was identified in GreenCMS up to 2.3.0603. This affects an unknown part of the file /index.php?m=admin&c=media&a=fileconnect. The manipulation … |
| CVE-2025-9413 | CVE-2025-9413 CVSS 9.8 | A flaw has been found in lostvip-com ruoyi-go up to 2.1. This impacts the function SelectListByPage of the file modules/system/system_router.go. This manipulat… |
| CVE-2025-9412 | CVE-2025-9412 CVSS 9.8 | A vulnerability was detected in lostvip-com ruoyi-go up to 2.1. This affects the function SelectListByPage of the file modules/system/dao/DictDataDao.go. The m… |
| CVE-2025-9411 | CVE-2025-9411 CVSS 9.8 | A security vulnerability has been detected in lostvip-com ruoyi-go up to 2.1. The impacted element is the function SelectPageList of the file modules/system/se… |
| CVE-2025-9410 | CVE-2025-9410 CVSS 9.8 | A weakness has been identified in lostvip-com ruoyi-go up to 2.1. The affected element is the function SelectListByPage of the file modules/system/dao/GenTable… |
| CVE-2025-9406 | CVE-2025-9406 CVSS 9.8 | A weakness has been identified in xuhuisheng lemon up to 1.13.0. This affects the function uploadImage of the file CmsArticleController.java of the component c… |
| CVE-2025-9397 | CVE-2025-9397 CVSS 9.8 | A weakness has been identified in givanz Vvveb up to 1.0.7.2. Affected is an unknown function of the file /system/traits/media.php. Executing manipulation of t… |
| CVE-2025-9391 | CVE-2025-9391 CVSS 9.8 | A weakness has been identified in Bjskzy Zhiyou ERP up to 11.0. Affected by this issue is the function getFieldValue of the component com.artery.workflow.Servi… |
| CVE-2025-9387 | CVE-2025-9387 CVSS 9.8 | A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ip_block.php of th… |
| CVE-2025-9321 | CVE-2025-9321 CVSS 9.8 | The WPCasa plugin for WordPress is vulnerable to Code Injection in all versions up to, and including, 1.4.1. This is due to insufficient input validation and r… |
| CVE-2025-9312 | CVE-2025-9312 CVSS 9.8 | A missing authentication enforcement vulnerability exists in the mutual TLS (mTLS) implementation used by System REST APIs and SOAP services in multiple WSO2 p… |
| CVE-2025-9311 | CVE-2025-9311 CVSS 9.8 | A vulnerability was identified in itsourcecode Apartment Management System 1.0. Affected by this issue is some unknown functionality of the file /fair/addfair.… |
| CVE-2025-9307 | CVE-2025-9307 CVSS 9.8 | A flaw has been found in PHPGurukul Online Course Registration 3.1. This affects an unknown function of the file /admin/session.php. This manipulation of the a… |
| CVE-2025-9305 | CVE-2025-9305 CVSS 9.8 | A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. The affected element is an unknown function of the file /bank/m… |
| CVE-2025-9304 | CVE-2025-9304 CVSS 9.8 | A weakness has been identified in SourceCodester Online Bank Management System 1.0. Impacted is an unknown function of the file /bank/show.php. Executing manip… |
| CVE-2025-9303 | CVE-2025-9303 CVSS 9.8 | A security flaw has been discovered in TOTOLINK A720R 4.1.5cu.630_B20250509. This issue affects the function setParentalRules of the file /cgi-bin/cstecgi.cgi.… |
| CVE-2025-9302 | CVE-2025-9302 CVSS 9.8 | A vulnerability was identified in PHPGurukul User Management System 1.0. This vulnerability affects unknown code of the file /signup.php. Such manipulation of … |
| CVE-2025-9299 | CVE-2025-9299 CVSS 9.8 | A vulnerability has been found in Tenda M3 1.0.0.12. Affected by this vulnerability is the function formGetMasterPassengerAnalyseData of the file /goform/getMa… |
| CVE-2025-9298 | CVE-2025-9298 CVSS 9.8 | A flaw has been found in Tenda M3 1.0.0.12. Affected is the function formQuickIndex of the file /goform/QuickIndex. Executing manipulation of the argument PPPO… |
| CVE-2025-9296 | CVE-2025-9296 CVSS 9.8 | A security vulnerability has been detected in Emlog Pro up to 2.5.18. This affects an unknown function of the file /admin/blogger.php?action=update_avatar. Suc… |
| CVE-2025-9288 | CVE-2025-9288 CVSS 9.1 | Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11. |
| CVE-2025-9287 | CVE-2025-9287 CVSS 9.1 | Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4. |
| CVE-2025-9286 | CVE-2025-9286 CVSS 9.8 | The Appy Pie Connect for WooCommerce plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization within the reset_user_password() R… |
| CVE-2025-9276 | CVE-2025-9276 CVSS 9.8 | Cockroach Labs cockroach-k8s-request-cert Empty Root Password Authentication Bypass Vulnerability. This vulnerability could allow remote attackers to bypass au… |
| CVE-2025-9254 | CVE-2025-9254 CVSS 9.8 | WebITR developed by Uniong has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to log into the system as arbitrary users by e… |
| CVE-2025-9242 | WatchGuard Firebox Out-of-Bounds Write Vulnerability KEVCVSS 9.8WatchGuard | WatchGuard Firebox contains an out-of-bounds write vulnerability in the OS iked process that may allow a remote unauthenticated attacker to execute arbitrary c… |
| CVE-2025-9209 | CVE-2025-9209 CVSS 9.8 | The RestroPress – Online Food Ordering System plugin for WordPress is vulnerable to Authentication Bypass in versions 3.0.0 to 3.1.9.2. This is due to the plug… |
| CVE-2025-9187 | CVE-2025-9187 CVSS 9.8 | Memory safety bugs present in Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort s… |
| CVE-2025-9179 | CVE-2025-9179 CVSS 9.8 | An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents sl… |
| CVE-2025-9156 | CVE-2025-9156 CVSS 9.8 | A vulnerability was found in itsourcecode Sports Management System 1.0. The affected element is an unknown function of the file /Admin/sports.php. Performing m… |
| CVE-2025-9155 | CVE-2025-9155 CVSS 9.8 | A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Impacted is an unknown function of the file /user/forget_password.… |
| CVE-2025-9154 | CVE-2025-9154 CVSS 9.8 | A flaw has been found in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /user/page-login.php… |
| CVE-2025-9152 | CVE-2025-9152 CVSS 9.8 | An improper privilege management vulnerability exists in WSO2 API Manager due to missing authentication and authorization checks in the keymanager-operations D… |