Lucene search
K

110 matches found

Circl
Circl
added 2025/09/24 6:52 p.m.4 views

CVE-2025-23248

creationtimestamp| type| source ---|---|--- 2025-09-24 18:52:48+00:00| seen| Telegram/VqUDLFvxCi1tZZNX6jAkSFBW6t89j1eZPUR1NSIY6RjLAOg...

3.3CVSS4.7AI score0.00146EPSS
Exploits0
Circl
Circl
added 2025/09/24 3:52 p.m.5 views

CVE-2025-57971

creationtimestamp| type| source ---|---|--- 2025-09-24 15:52:47+00:00| seen| Telegram/Mf5ZzbFrwBc0zhQhV5HHZ9w0RKRuqK61Tvmq7zxG2kpvM...

5.3CVSS4.8AI score0.00258EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/09/24 12:0 a.m.12 views

PT-2025-39339

CVE-2025-00123 UNDER DEVELOPMENT - USE AT YOUR OWN RISK!!! Enhanced Incident Summary Report Executive Summary On September 18, 2025, a medium-severity incident Risk Score https://t.co/mYu56R5gA4...

6.9AI score
Exploits0References1
CVE
CVE
added 2025/09/18 11:2 a.m.17 views

CVE-2025-10663

CVE-2025-10663 affects PHPGurukul Online Course Registration 3.1, specifically the /my-profile.php cgpa parameter. The root cause is input manipulation that enables SQL injection, with a remote attack surface and a publicly disclosed exploit. Multiple sources confirm the vulnerability and its exp...

9.8CVSS7.2AI score0.00398EPSS
Exploits1References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/09/17 12:0 a.m.3 views

RHEL 8 : udisks2 (RHSA-2025:16121)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:16121 advisory. The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies. Security Fixes: udisks...

8.5CVSS6AI score0.0065EPSS
Exploits1References4
Circl
Circl
added 2025/09/09 4:22 p.m.4 views

CVE-2025-54111

creationtimestamp| type| source ---|---|--- 2025-09-09 16:22:30+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2025-0277 2025-09-09 17:06:15+00:00| seen| https://www.thezdi.com/blog/2025/9/9/the-september-2025-security-update-review...

7.8CVSS5.7AI score0.0035EPSS
Exploits0References2
Circl
Circl
added 2025/09/09 1:28 a.m.11 views

CVE-2025-58454

creationtimestamp| type| source ---|---|--- 2025-09-09 01:28:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyekwrqsb32h 2025-09-09 10:14:09+00:00| seen| https://gist.github.com/Darkcrai86/e3e15a376b16e1b5609b303224583ca3...

9.3CVSS4.8AI score0.00336EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/09/05 9:36 p.m.0 views

CVE-2025-39698

In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...

7.3CVSS5.5AI score0.00179EPSS
Exploits0References4
CNVD
CNVD
added 2025/09/04 12:0 a.m.4 views

Foxit PDF Reader Buffer Overflow Vulnerability (CNVD-2025-27456)

Foxit PDF Reader is a Chinese Foxit Foxit company's a PDF reader. A security vulnerability exists in Foxit PDF Reader, which can be exploited by attackers to cause information leakage...

5.5CVSS4.2AI score0.00218EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-37932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - schhtb: make htbqlennotify idempotent htbqlennotify always deactivates the HTB class and in fact could trigger a warning if it is already deactivated. Therefore...

5.5CVSS6.8AI score0.00174EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/27 2:32 a.m.12 views

CVE-2025-9502 Campcodes Online Loan Management System ajax.php sql injection

A weakness has been identified in Campcodes Online Loan Management System 1.0. This impacts an unknown function of the file /ajax.php?action=savepayment. Executing manipulation of the argument loanid can lead to sql injection. The attack may be launched remotely. The exploit has been made availab...

7.5CVSS0.00387EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/08/25 5:5 p.m.4 views

CVE-2025-6737

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions...

7.2CVSS7.2AI score0.00244EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/08/22 1:53 p.m.7 views

WordPress Accessibility Checker by Equalize Digital Plugin <= 1.30.0 - Insecure Direct Object References (IDOR) Vulnerability

Insecure Direct Object References IDOR Vulnerability discovered by n0arafatn0 in WordPress Plugin Accessibility Checker by Equalize Digital versions = 1.30.0...

5.4CVSS6.7AI score0.0022EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/22 12:0 a.m.8 views

WordPress Spacious Theme <= 1.9.11 is vulnerable to Broken Access Control

Software Spacious Type Theme Vulnerable versions = 1.9.11 Fixed in 1.9.12 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2025-9331 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID bca30fd3c674 Credits Dmitrii Ignatyev Required privilege...

4.3CVSS6.9AI score0.00283EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2025/08/21 6:18 p.m.10 views

CVE-2025-57754

creationtimestamp| type| source ---|---|--- 2025-08-21 18:18:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwwkjgkgq227 2025-08-22 06:03:49+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lwxrw3cuim24...

9.8CVSS4.8AI score0.00338EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.5 views

Photon OS 4.0: Linux PHSA-2025-4.0-0844

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0844. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.8CVSS6.8AI score0.00478EPSS
Exploits0References49
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.3 views

CVE-2025-38554

In the Linux kernel, the following vulnerability has been resolved: mm: fix a UAF when vma-mm is freed after vma-vmrefcnt got dropped By inducing delays in the right places, Jann Horn created a reproducer for a hard to hit UAF issue that became possible after VMAs were allowed to be recycled by...

7.8CVSS6.5AI score0.00162EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/08/17 1:20 a.m.7 views

WordPress Custom Comment plugin <= 2.1.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan Patchstack Alliance in WordPress Plugin Custom Comment versions = 2.1.6...

5.9CVSS5.9AI score0.00499EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/08/16 6:19 p.m.7 views

CVE-2025-8972

A vulnerability was identified in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /admin/page-login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS7.7AI score0.00387EPSS
Exploits1References1
NVD
NVD
added 2025/08/15 12:15 p.m.6 views

CVE-2025-9051

A vulnerability was determined in projectworlds Travel Management System 1.0. Affected by this issue is some unknown functionality of the file /updatecategory.php. The manipulation of the argument t1 leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to th...

9.8CVSS0.00387EPSS
Exploits1References4
Rows per page
Query Builder