Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Circl
Circladded 2026/04/17 10:35 a.m.0 views

CVE-2025-15625

creationtimestamp| type| source ---|---|--- 2026-04-17 10:35:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjoq2j2jxn26 2026-04-17 11:17:26+00:00| seen| Telegram/Gicxpbsei5vwZhhkOJEP5kItUnFZEzNYMMsg3c4t0xeHr7Q...

9.8CVSS4.8AI score0.00039EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/17 8:38 a.m.0 views

CVE-2025-15625

Unauthenticated user is able to execute arbitrary SQL commands in Sparx Pro Cloud Server database in certain cases...

9.5CVSS5.9AI score0.00039EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVEadded 2025/02/05 2:58 p.m.3 views

CVE-2020-15625

This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxaddmailbox.php. When parsing the username parameter, the...

7.8CVSS6.6AI score0.00571EPSS
Exploits0
CVE
CVEadded 2020/07/28 5:1 p.m.38 views

CVE-2020-15625

CVE-2020-15625 affects CentOS Web Panel (cwp-e17.0.9.8.923). The vulnerability resides in the ajax_add_mailbox.php component, where the username parameter is used to construct SQL queries without proper validation, enabling an unauthenticated attacker to disclose sensitive information in the cont...

7.8CVSS7.5AI score0.00571EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2020/01/17 11:45 p.m.10 views

CVE-2019-15625

A memory usage vulnerability exists in Trend Micro Password Manager 3.8 that could allow an attacker with access and permissions to the victim's memory processes to extract sensitive information...

5.4AI score0.00211EPSS
Exploits0References4
CVE
CVEadded 2020/01/17 11:45 p.m.151 views

CVE-2019-15625

CVE-2019-15625 concerns a memory disclosure in Trend Micro Password Manager. The JVN/NVD details indicate an information disclosure vulnerability (CWE-200) where sensitive data such as IDs and passwords can reside in memory in plaintext under certain conditions, allowing memory scans to retrieve ...

5.5CVSS5.3AI score0.00211EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2019/03/05 8:0 p.m.27 views

CVE-2018-15625

CVE-2018-15625 is rejected/not used per the initial description.

7.4AI score
Exploits0
CVE
CVEadded 2018/01/11 4:0 p.m.54 views

CVE-2017-15625

CVE-2017-15625 affects TP-Link WVR, WAR and ER devices. The issue is a command injection in the pptp_client.lua file via the new-olmode variable, exploitable by remote authenticated administrators to execute arbitrary commands. The description indicates a high-severity impact with potential confi...

9CVSS7.4AI score0.0139EPSS
Exploits2References2Affected Software1
Packet Storm
Packet Stormadded 2018/01/11 12:0 a.m.103 views

TP-Link Remote Command Injection

Introduction: ================ The WVR-, WAR- and ER- products are the SOHO/WIFI routers of TP-Link. These issues allow remote authenticated administrators to execute arbitrary commands via command injection through different variables of different lua files. If the attacker obtains the account a...

6.9AI score0.0139EPSS
Exploits26
Rows per page
Query Builder