Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

38 matches found

Nuclei
Nucleiadded 12 hours ago22 views

TP-Link TL-WR840N - Command Injection

The TP-Link TL-WR840NESV6.20180709 router contains a command injection vulnerability in the oalsetIp6DefaultRoute component. This vulnerability allows authenticated attackers to execute arbitrary system commands, leading to complete device compromise. id: CVE-2022-25061 info: name: TP-Link...

9.8CVSS8.1AI score0.86026EPSS
Exploits1References5
OSV
OSVadded 2026/05/07 5:6 a.m.3 views

MGASA-2026-0113 Updated tcpflow packages fix security vulnerability

tcpflow has TIM Element OOB Write in wifipcap. CVE-2026-25061...

7.5CVSS5.8AI score0.00085EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.0 views

Fedora 44 : tcpflow (2026-3efb70d4da)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3efb70d4da advisory. The update fixes CVS-2026-25061 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

7.5CVSS5.5AI score0.00085EPSS
Exploits1References2
OpenVAS
OpenVASadded 2026/04/06 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2026-2f6fa1b6a1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.9AI score0.00085EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2026/04/05 12:0 a.m.1 views

Fedora 42 : tcpflow (2026-2f6fa1b6a1)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-2f6fa1b6a1 advisory. The update fixes CVS-2026-25061 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

7.5CVSS5.8AI score0.00085EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2026/02/10 12:0 a.m.2 views

Debian dla-4478 : tcpflow - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4478 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4478-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS5.9AI score0.00085EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2026/01/30 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-25061

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcpflow is a TCP/IP packet demultiplexer. In versions up to and including 1.61, wifipcap parses 802.11 management frame elements and performs a length check on...

7.5CVSS6.2AI score0.00085EPSS
Exploits1References3
Circl
Circladded 2026/01/29 11:27 p.m.4 views

CVE-2026-25061

creationtimestamp| type| source ---|---|--- 2026-01-29 23:27:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdlwug72qa2c...

7.5CVSS5.8AI score0.00085EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 9:32 a.m.1 views

CVE-2023-25061

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin = 2.7.1.1 versions...

6.5CVSS5.2AI score0.00181EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 12:4 a.m.6 views

CVE-2022-25061

TP-LINK TL-WR840NESV6.20180709 was discovered to contain a command injection vulnerability via the component oalsetIp6DefaultRoute...

9.8CVSS7.9AI score0.86026EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 8:35 a.m.5 views

CVE-2019-25061

The randompasswordgenerator aka RandomPasswordGenerator gem through 1.0.0 for Ruby uses Kernelrand to generate passwords, which, due to its cyclic nature, can facilitate password prediction...

7.5CVSS7AI score0.00338EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 3:46 a.m.5 views

CVE-2018-25061

A vulnerability was found in rgb2hex up to 0.1.5. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. Upgrading to version 0.1.6 is able to address this issue. The...

7.5CVSS6.9AI score0.00483EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/04/06 2:30 a.m.11 views

CVE-2025-25061

Unintended proxy or intermediary 'Confused Deputy' issue exists in HMI ViewJet C-more series and HMI GC-A2 series, which may allow a remote unauthenticated attacker to use the product as an intermediary for FTP bounce attack...

5.8CVSS7.1AI score0.00834EPSS
Exploits0References1
NVD
NVDadded 2025/04/04 2:15 a.m.4 views

CVE-2025-25061

Unintended proxy or intermediary 'Confused Deputy' issue exists in HMI ViewJet C-more series and HMI GC-A2 series, which may allow a remote unauthenticated attacker to use the product as an intermediary for FTP bounce attack...

5.8CVSS0.00834EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/04/04 2:10 a.m.4 views

CVE-2025-25061

Unintended proxy or intermediary 'Confused Deputy' issue exists in HMI ViewJet C-more series and HMI GC-A2 series, which may allow a remote unauthenticated attacker to use the product as an intermediary for FTP bounce attack...

5.8CVSS7.3AI score0.00834EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/04/04 2:10 a.m.6 views

CVE-2025-25061

Unintended proxy or intermediary 'Confused Deputy' issue exists in HMI ViewJet C-more series and HMI GC-A2 series, which may allow a remote unauthenticated attacker to use the product as an intermediary for FTP bounce attack...

5.8CVSS0.00834EPSS
Exploits0References3
Circl
Circladded 2023/04/07 12:27 p.m.1 views

CVE-2023-25061

creationtimestamp| type| source ---|---|--- 2023-04-07 12:27:46+00:00| seen| https://t.me/cibsecurity/61644...

6.5CVSS5.5AI score0.00181EPSS
Exploits0References1
NVD
NVDadded 2023/04/07 9:15 a.m.9 views

CVE-2023-25061

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin = 2.7.1.1 versions...

6.5CVSS5.8AI score0.00181EPSS
Exploits0References1
OSV
OSVadded 2023/04/07 9:15 a.m.1 views

CVE-2023-25061

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin = 2.7.1.1 versions...

5.4CVSS6.1AI score
Exploits0References1
CVE
CVEadded 2023/04/07 8:35 a.m.49 views

CVE-2023-25061

CVE-2023-25061 affects Kiboko Labs Arigato Autoresponder and Newsletter plugin for WordPress (versions

6.5CVSS5.4AI score0.00181EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder