31,594 indexed
CVECVE vulnerabilities
31,594 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 3,351–3,400 of 8,314 in Critical · page 68 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2025-67489 | CVE-2025-67489 CVSS 9.8 | @vitejs/plugin-rs provides React Server Components (RSC) support for Vite. Versions 0.5.5 and below are vulnerable to arbitrary remote code execution on the de… |
| CVE-2025-67484 | CVE-2025-67484 CVSS 9.8 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Api/ApiFormatXml.Php. This issue affects MediaWi… |
| CVE-2025-67418 | CVE-2025-67418 CVSS 9.8 | ClipBucket 5.5.2 is affected by an improper access control issue where the product is shipped or deployed with hardcoded default administrative credentials. An… |
| CVE-2025-67397 | CVE-2025-67397 CVSS 9.1 | An issue in Passy v.1.6.3 allows a remote authenticated attacker to execute arbitrary commands via a crafted HTTP request using a specific payload injection. |
| CVE-2025-67325 | CVE-2025-67325 CVSS 9.8 | Unrestricted file upload in the hotel review feature in QloApps versions 1.7.0 and earlier allows remote unauthenticated attackers to achieve remote code execu… |
| CVE-2025-67305 | CVE-2025-67305 CVSS 9.8 | In RUCKUS Network Director (RND) < 4.5.0.56, the OVA appliance contains hardcoded SSH keys for the postgres user. These keys are identical across all deploymen… |
| CVE-2025-67304 | CVE-2025-67304 CVSS 9.8 | In Ruckus Network Director (RND) < 4.5.0.54, the OVA appliance contains hardcoded credentials for the ruckus PostgreSQL database user. In the default configura… |
| CVE-2025-67289 | CVE-2025-67289 CVSS 9.6 | An arbitrary file upload vulnerability in the Attachments module of Frappe Framework v15.89.0 allows attackers to execute arbitrary code via uploading a crafte… |
| CVE-2025-67288 | CVE-2025-67288 CVSS 10.0 | An arbitrary file upload vulnerability in Umbraco CMS v16.3.3 allows attackers to execute arbitrary code by uploading a crafted PDF file. NOTE: this is dispute… |
| CVE-2025-67268 | CVE-2025-67268 CVSS 9.8 | gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2000.c file. The hnd_129540 function, which handle… |
| CVE-2025-67229 | CVE-2025-67229 CVSS 9.8 | An improper certificate validation vulnerability exists in ToDesktop Builder v0.32.1 This vulnerability allows an unauthenticated, on-path attacker to spoof ba… |
| CVE-2025-67188 | CVE-2025-67188 CVSS 9.8 | A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204_B20210112. The issue resides in the setRadvdCfg interface of the /lib/cste_modules/ipv6… |
| CVE-2025-67187 | CVE-2025-67187 CVSS 9.8 | A stack-based buffer overflow vulnerability was identified in TOTOLINK A950RG V4.1.2cu.5204_B20210112. The flaw exists in the setIpQosRules interface of /lib/c… |
| CVE-2025-67186 | CVE-2025-67186 CVSS 9.8 | TOTOLINK A950RG V4.1.2cu.5204_B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cste_modules/firewall.so. The vulne… |
| CVE-2025-67165 | CVE-2025-67165 CVSS 9.8 | An Insecure Direct Object Reference (IDOR) in Pagekit CMS v1.0.18 allows attackers to escalate privileges. |
| CVE-2025-67164 | CVE-2025-67164 CVSS 9.9 | An authenticated arbitrary file upload vulnerability in the /storage/poc.php component of Pagekit CMS v1.0.18 allows attackers to execute arbitrary code via up… |
| CVE-2025-6715 | CVE-2025-6715 CVSS 9.8 | The LatePoint WordPress plugin before 5.1.94 is vulnerable to Local File Inclusion via the layout parameter. This makes it possible for attackers to include a… |
| CVE-2025-67147 | CVE-2025-67147 CVSS 9.8 | Multiple SQL Injection vulnerabilities exist in amansuryawanshi Gym-Management-System-PHP 1.0 via the 'name', 'email', and 'comment' parameters in (1) submit_c… |
| CVE-2025-67146 | CVE-2025-67146 CVSS 9.4 | Multiple SQL Injection vulnerabilities exist in AbhishekMali21 GYM-MANAGEMENT-SYSTEM 1.0 via the 'name' parameter in (1) member_search.php, (2) trainer_search.… |
| CVE-2025-67135 | CVE-2025-67135 CVSS 9.8 | Weak Security in the PF-50 1.2 keyfob of PGST PG107 Alarm System 1.25.05.hf allows attackers to compromise access control via a code replay attack. |
| CVE-2025-67114 | CVE-2025-67114 CVSS 9.8 | Use of a deterministic credential generation algorithm in /ftl/bin/calc_f2 in Small Cell Sercomm SCE4255W (FreedomFi Englewood) firmware before DG3934v3@230804… |
| CVE-2025-67113 | CVE-2025-67113 CVSS 9.8 | OS command injection in the CWMP client (/ftl/bin/cwmp) of Small Cell Sercomm SCE4255W (FreedomFi Englewood) firmware before DG3934v3@2308041842 allows remote … |
| CVE-2025-67112 | CVE-2025-67112 CVSS 9.8 | Use of a hard-coded AES-256-CBC key in the configuration backup/restore implementation of Small Cell Sercomm SCE4255W (FreedomFi Englewood) firmware before DG3… |
| CVE-2025-67109 | CVE-2025-67109 CVSS 10.0 | Improper verification of the time certificate in Eclipse Cyclone DDS before v0.10.5 allows attackers to bypass certificate checks and execute commands with Sys… |
| CVE-2025-67108 | CVE-2025-67108 CVSS 10.0 | eProsima Fast-DDS v3.3 was discovered to contain improper validation for ticket revocation, resulting in insecure communications and connections. |
| CVE-2025-67084 | CVE-2025-67084 CVSS 9.9 | File upload vulnerability in InvoicePlane through 1.6.3 allows authenticated attackers to upload arbitrary PHP files into attachments, which can later be execu… |
| CVE-2025-67079 | CVE-2025-67079 CVSS 9.8 | File upload vulnerability in Omnispace Agora Project before 25.10 allowing attackers to execute code through the MSL engine of the Imagick library via crafted … |
| CVE-2025-67073 | CVE-2025-67073 CVSS 9.8 | A Buffer overflow vulnerability in function fromAdvSetMacMtuWan of bin httpd in Tenda AC10V4.0 V16.03.10.20 allows remote attackers to cause denial of service … |
| CVE-2025-67041 | CVE-2025-67041 CVSS 9.8 | An issue was discovered in Lantronix EDS3000PS 3.1.0.0R2. The host parameter of the TFTP client in the Filesystem Browser page is not properly sanitized. This … |
| CVE-2025-6704 | CVE-2025-6704 CVSS 9.8 | An arbitrary file writing vulnerability in the Secure PDF eXchange (SPX) feature of Sophos Firewall versions older than 21.0 MR2 (21.0.2) can lead to pre-auth … |
| CVE-2025-67039 | CVE-2025-67039 CVSS 9.1 | An issue was discovered in Lantronix EDS3000PS 3.1.0.0R2. The authentication on management pages can be bypassed by appending a specific suffix to the URL and … |
| CVE-2025-67038 | CVE-2025-67038 CVSS 9.8 | An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write logs when user's authantication fails. The userna… |
| CVE-2025-67035 | CVE-2025-67035 CVSS 9.8 | An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The SSH Client and SSH Server pages are affected by multiple OS injection vulnerabilities due to missin… |
| CVE-2025-66956 | CVE-2025-66956 CVSS 9.9 | Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote attackers to access and execute attachments via a … |
| CVE-2025-66945 | CVE-2025-66945 CVSS 9.1 | A path traversal vulnerability exists in the ZIP extraction API of Zdir Pro 4.x. When a crafted ZIP archive is processed by the backend at /api/extract, files … |
| CVE-2025-66944 | CVE-2025-66944 CVSS 9.8 | SQL Injection vulnerability in vran-dev databaseir v.1.0.7 and before allows a remote attacker to execute arbitrary code via the query parameter in the search … |
| CVE-2025-66916 | CVE-2025-66916 CVSS 9.4 | The snailjob component in RuoYi-Vue-Plus versions 5.5.1 and earlier, interface /snail-job/workflow/check-node-expression can execute QLExpress expressions, but… |
| CVE-2025-66913 | CVE-2025-66913 CVSS 9.8 | JimuReport thru version 2.1.3 is vulnerable to remote code execution when processing user-controlled H2 JDBC URLs. The application passes the attacker-supplied… |
| CVE-2025-6688 | CVE-2025-6688 CVSS 9.8 | The Simple Payment plugin for WordPress is vulnerable to Authentication Bypass in versions 1.3.6 to 2.3.8. This is due to the plugin not properly verifying a u… |
| CVE-2025-66848 | CVE-2025-66848 CVSS 9.8 | JD Cloud NAS routers AX1800 (4.3.1.r4308 and earlier), AX3000 (4.3.1.r4318 and earlier), AX6600 (4.5.1.r4533 and earlier), BE6500 (4.4.1.r4308 and earlier), ER… |
| CVE-2025-66844 | CVE-2025-66844 CVSS 9.1 | In grav <1.7.49.5, a SSRF (Server-Side Request Forgery) vector may be triggered via Twig templates when page content is processed by Twig and the configuration… |
| CVE-2025-66802 | CVE-2025-66802 CVSS 9.8 | Sourcecodester Covid-19 Contact Tracing System 1.0 is vulnerable to RCE (Remote Code Execution). The application receives a reverse shell (php) into imagem of … |
| CVE-2025-6679 | CVE-2025-6679 CVSS 9.8 | The Bit Form builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 2.2… |
| CVE-2025-66719 | CVE-2025-66719 CVSS 9.1 | An issue was discovered in Free5gc NRF 1.4.0. In the access-token generation logic of free5GC, the AccessTokenScopeCheck() function in file internal/sbi/proces… |
| CVE-2025-6668 | CVE-2025-6668 CVSS 9.8 | A vulnerability was found in code-projects Inventory Management System 1.0. It has been classified as critical. This affects an unknown part of the file /php_a… |
| CVE-2025-66678 | CVE-2025-66678 CVSS 9.8 | An issue in the HwRwDrv.sys component of Nil Hardware Editor Hardware Read & Write Utility v1.25.11.26 and earlier allows attackers to execute arbitrary read a… |
| CVE-2025-6665 | CVE-2025-6665 CVSS 9.8 | A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functi… |
| CVE-2025-66647 | CVE-2025-66647 CVSS 9.8 | RIOT is an open-source microcontroller operating system, designed to match the requirements of Internet of Things (IoT) devices and other embedded devices. A v… |
| CVE-2025-66644 | Array Networks ArrayOS AG OS Command Injection Vulnerability KEVCVSS 9.8Array Networks | Array Networks ArrayOS AG contains an OS command injection vulnerability that could allow an attacker to execute arbitrary commands. |
| CVE-2025-66631 | CVE-2025-66631 CVSS 9.8 | CSLA .NET is a framework designed for the development of reusable, object-oriented business layers for applications. Versions 5.5.4 and below allow the use of … |