Critical vulnerabilities, curated daily for security professionals
đ¯ SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
đ
Archived Security Brief
Yesterday's disclosures revealed only 2 critical vulnerabilities, a 91% decrease from the prior day's 22 critical issues. High-priority CVEs dropped 47% to 53, indicating lighter weekend disclosure volume. Five actively exploited vulnerabilities require attention, including CVE-2025-14847 affecting MongoDB, CVE-2026-20805 targeting Microsoft Windows, and CVE-2025-37164 impacting HPE OneView. The critical issues CVE-2025-10484 and CVE-2025-15403 both affect the RegistrationMagic WordPress plugin with privilege escalation flaws. Patch availability stands at 0%, requiring organizations to implement compensating controls until vendor fixes become available.
2 critical CVEs disclosed, down 91% from 22 the prior day
53 high-priority CVEs, a 47% decrease from 100 previously
5 actively exploited vulnerabilities affecting MongoDB, Microsoft Windows, HPE OneView, Microsoft Office, and Gogs
0% patch availability requires alternative mitigations
WordPress RegistrationMagic plugin contains two critical privilege escalation flaws
Immediate action: Organizations running MongoDB, Microsoft Windows, HPE OneView, Microsoft Office, or Gogs should review exposure to the five actively exploited vulnerabilities. With no patches currently available for yesterday's disclosures, implement network segmentation and access controls as interim mitigations.
đĄ Tip: Swipe CVE cards left to â star, right to â remove
Section Navigation
â ī¸
CISA Known Exploited Vulnerabilities
â ī¸ CISA KEVURGENT
CVE-2025-14847
9.5
MongoDBMongoDB and MongoDB Server
â° Federal Deadline:January 18, 2026(1 days remaining)
MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2009-0556
9.5
MicrosoftOffice
â° Federal Deadline:January 27, 2026(10 days remaining)
Microsoft Office PowerPoint Code Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-37164
9.5đ
Hewlett Packard Enterprise (HPE)OneView
â° Federal Deadline:January 27, 2026(10 days remaining)
Hewlett Packard Enterprise (HPE) OneView Code Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-8110
9.5
GogsGogs
â° Federal Deadline:February 1, 2026(15 days remaining)
Gogs Path Traversal Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-20805
9.5
MicrosoftWindows
â° Federal Deadline:February 2, 2026(16 days remaining)
Microsoft Windows Information Disclosure Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
đ¨
Critical Vulnerabilities
CVE-2025-10484
9.8đ
The RegistrationMultiple Products
The Registration & Login with Mobile Phone Number for WooCommerce plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.3.1. This is due to the plugin not properly verifying a users identity prior to authenticating them via the fma_lwp_set_session_php_fun() function. This makes it possible for unauthenticated attackers to authenticate as any user on the site, including administrators, without a valid password.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-15403
9.8đ
The RegistrationMagic plugin for WordPress is vulnerable to Privilege Escalation in all versions upMultiple Products
The RegistrationMagic plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.0.7.1. This is due to the 'add_menu' function is accessible via the 'rm_user_exists' AJAX action and allows arbitrary updates to the 'admin_order' setting. This makes it possible for unauthenticated attackers to injecting an empty slug into the order parameter, and manipulate the plugin's menu generation logic, and when the admin menu is subsequently built, the plugin adds 'manage_options' capability for the target role. Note: The vulnerability can only be exploited unauthenticated, but further privilege escalation requires at least a subscriber user.
CVSS Base9.8
â
CRSSelect profile
â ī¸
High Priority Updates
CVE-2026-23529
7.7đ
GoogleMultiple Products
Kafka Connect BigQuery Connector is an implementation of a sink connector from Apache Kafka to Google BigQuery
CVSS Base7.7
â
CRSSelect profile
CVE-2021-47827
7.5đ
forMultiple Products
WebSSH for iOS 14
CVSS Base7.5
â
CRSSelect profile
CVE-2025-14844
8.2đ
WordPressMultiple Products
The Membership Plugin â Restrict Content plugin for WordPress is vulnerable to Missing Authentication in all versions up to, and including, 3
CVSS Base8.2
â
CRSSelect profile
CVE-2026-20960
8đ
MicrosoftMultiple Products
Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over a network
CVSS Base8
â
CRSSelect profile
CVE-2025-48647
7.8đ
googleMultiple Products
In cpm_fwtp_msg_handler of cpm/google/lib/tracepoint/cpm_fwtp_ipc
CVSS Base7.8
â
CRSSelect profile
CVE-2025-14478
7.5đ
WordPressMultiple Products
The Demo Importer Plus plugin for WordPress is vulnerable to XML External Entity Injection (XXE) in all versions up to, and including, 2
CVSS Base7.5
â
CRSSelect profile
CVE-2025-15032
7.4đ
DiaMultiple Products
Missing about:blank indicator in custom-sized new windows in Dia before 1
CVSS Base7.4
â
CRSSelect profile
CVE-2025-68438
7.5đ
versionsMultiple Products
In Apache Airflow versions before 3
CVSS Base7.5
â
CRSSelect profile
CVE-2025-68675
7.5đ
versionsMultiple Products
In Apache Airflow versions before 3
CVSS Base7.5
â
CRSSelect profile
CVE-2026-23742
8.8đ
SkipperMultiple Products
Skipper is an HTTP router and reverse proxy for service composition
CVSS Base8.8
â
CRSSelect profile
CVE-2026-23535
8đ
lineMultiple Products
wlc is a Weblate command-line client using Weblate's REST API
CVSS Base8
â
CRSSelect profile
CVE-2026-0612
7.5đ
LibrarianMultiple Products
The Librarian contains a information leakage vulnerability through the `web_fetch` tool, which can be used to retrieve arbitrary external content provided by an attacker, which can be used to proxy requests through The Librarian infrastructure
CVSS Base7.5
â
CRSSelect profile
CVE-2021-47816
8.8đ
NASMultiple Products
Thecus N4800Eco NAS Server Control Panel contains a command injection vulnerability that allows authenticated attackers to execute arbitrary system commands through user management endpoints
CVSS Base8.8
â
CRSSelect profile
CVE-2026-0695
8.7đ
olderMultiple Products
In ConnectWise PSA versions older than 2026
CVSS Base8.7
â
CRSSelect profile
CVE-2025-14510
8.1đ
ABB ABB AbilityMultiple Products
Incorrect Implementation of Authentication Algorithm vulnerability in ABB ABB Ability OPTIMAX
CVSS Base8.1
â
CRSSelect profile
CVE-2025-62291
8.1
strongSwanMultiple Products
In the eap-mschapv2 plugin (client-side) in strongSwan before 6
CVSS Base8.1
â
CRSSelect profile
CVE-2025-68921
7.8
SteelSeriesMultiple Products
SteelSeries Nahimic 3 1
CVSS Base7.8
â
CRSSelect profile
CVE-2024-44238
7.8
issueMultiple Products
The issue was addressed with improved bounds checks
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47822
7.8
DiskBossMultiple Products
DiskBoss Service 12
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47823
7.8
AcerMultiple Products
Acer ePowerSvc 6
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47825
7.8
UpdaterMultiple Products
Acer Updater Service 1
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47826
7.8
BackupMultiple Products
Acer Backup Manager 3
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47828
7.8
BOOTPMultiple Products
BOOTP Turbo 2
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47829
7.8
DHCPMultiple Products
DHCP Broadband 4
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47832
7.8
SandboxieMultiple Products
Sandboxie Plus 0
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47833
7.8
WifiHotSpotMultiple Products
WifiHotSpot 1
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47845
7.8
SpyMultiple Products
Spy Emergency 25
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47847
7.8
SorterMultiple Products
Disk Sorter Server 13
CVSS Base7.8
â
CRSSelect profile
CVE-2025-14894
7.5
LivewireMultiple Products
Livewire Filemanager, commonly used in Laravel applications, contains LivewireFilemanagerComponent
CVSS Base7.5
â
CRSSelect profile
CVE-2026-0613
7.5
LibrarianMultiple Products
The Librarian contains an internal port scanning vulnerability, facilitated by the `web_fetch` tool, which can be used with SSRF-style behavior to perform GET requests to internal IP addresses and services, enabling scanning of the Hertzner cloud environment that TheLibrarian uses
CVSS Base7.5
â
CRSSelect profile
CVE-2026-0616
7.5
TheLibrariansMultiple Products
TheLibrarians web_fetch tool can be used to retrieve the Adminer interface content, which can then be used to log into the internal TheLibrarian backend system
CVSS Base7.5
â
CRSSelect profile
CVE-2025-70746
7.5
TendaMultiple Products
Tenda AX-1806 v1
CVSS Base7.5
â
CRSSelect profile
CVE-2021-47818
7.5
DupTerminatorMultiple Products
DupTerminator 1
CVSS Base7.5
â
CRSSelect profile
CVE-2021-47821
7.5
RarmaRadioMultiple Products
RarmaRadio 2
CVSS Base7.5
â
CRSSelect profile
CVE-2021-47824
7.5
iDailyDiaryMultiple Products
iDailyDiary 4
CVSS Base7.5
â
CRSSelect profile
CVE-2021-47831
7.5
SandboxieMultiple Products
Sandboxie 5
CVSS Base7.5
â
CRSSelect profile
CVE-2025-68924
7.5
UmbracoFormsMultiple Products
In Umbraco UmbracoForms through 8
CVSS Base7.5
â
CRSSelect profile
CVE-2026-23490
7.5
UnknownMultiple Products
pyasn1 is a generic ASN
CVSS Base7.5
â
CRSSelect profile
CVE-2025-69581
7.5
ChamilloMultiple Products
An issue was discovered in Chamillo LMS 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-59870
7.4
HCLMultiple Products
HCL MyXalytics v6
CVSS Base7.4
â
CRSSelect profile
CVE-2026-0615
7.3
LibrarianMultiple Products
The Librarian `supervisord` status page can be retrieved by the `web_fetch` tool, which can be used to retrieve running processes within TheLibrarian backend
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1050
7.3
flawMultiple Products
A flaw has been found in risesoft-y9 Digital-Infrastructure up to 9
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1059
7.3
securityMultiple Products
A security vulnerability has been detected in FeMiner wms up to 9cad1f1b179a98b9547fd003c23b07c7594775fa
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1105
7.3
wasMultiple Products
A vulnerability was identified in EasyCMS up to 1
CVSS Base7.3
â
CRSSelect profile
CVE-2025-31510
7.2
theMultiple Products
In the portal in LemonLDAP::NG before 2
CVSS Base7.2
â
CRSSelect profile
CVE-2021-47835
7.2
FreeterMultiple Products
Freeter 1
CVSS Base7.2
â
CRSSelect profile
CVE-2021-47837
7.2
MarkdownifyMultiple Products
Markdownify 1
CVSS Base7.2
â
CRSSelect profile
CVE-2021-47838
7.2
MarkrightMultiple Products
Markright 1
CVSS Base7.2
â
CRSSelect profile
CVE-2021-47839
7.2
MarkyMultiple Products
Marky 0
CVSS Base7.2
â
CRSSelect profile
CVE-2021-47840
7.2
MoeditorMultiple Products
Moeditor 0
CVSS Base7.2
â
CRSSelect profile
CVE-2021-47842
7.2
StudyMDMultiple Products
StudyMD 0
CVSS Base7.2
â
CRSSelect profile
CVE-2026-23723
7.2
webMultiple Products
WeGIA is a web manager for charitable institutions