17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 9051-9100 of 17282 CVEs Page 182 of 346
CVE-2025-70304
7.5
Unknown Multiple Products

A buffer overflow in the vobsub_get_subpic_duration() function of GPAC v2

2026-01-16
CVE-2025-70298
8.2
GPAC Multiple Products

GPAC v2

2026-01-16
CVE-2025-70252
7.5
Tenda AC6V2

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2

2026-03-04
CVE-2025-70238
7.5
D-Link DIR

Stack buffer overflow vulnerability in D-Link DIR-513 v1

2026-03-10
CVE-2025-70223
Analyzed
9.8
D-Link DIR

A stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter in formAdvNetwork allows unauthenticated attackers to potentially execute ar...

2026-03-05
CVE-2025-70220
Analyzed
9.8
D-Link DIR

A stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter in formAutoDetecWAN_wizard4 allows unauthenticated attackers to potentially...

2026-03-05
CVE-2025-7016
8
Unknown Multiple Products

Improper Access Control vulnerability in Akın Software Computer Import Export Industry and Trade Ltd

2026-01-30
CVE-2025-70152
Analyzed
9.8
HP and

code-projects Community Project Scholars Tracking System 1.0 is vulnerable to SQL Injection in the admin user management endpoints /admin/save_user.ph...

2026-02-19
CVE-2025-70151
8.8
HP and upload

code-projects Scholars Tracking System 1

2026-02-19
CVE-2025-70150
Analyzed
9.8
HP that allows

CodeAstro Membership Management System 1.0 contains a missing authentication vulnerability in delete_members.php that allows unauthenticated attackers...

2026-02-19
CVE-2025-70149
Analyzed
9.8
HP via the

CodeAstro Membership Management System 1.0 is vulnerable to SQL Injection in print_membership_card.php via the ID parameter.

2026-02-19
CVE-2025-70148
7.5
HP in CodeAstro

Missing authentication and authorization in print_membership_card

2026-02-19
CVE-2025-70147
7.5
HP and

Missing authentication in /admin/student

2026-02-19
CVE-2025-70146
Analyzed
9.1
ProjectWorlds Online Time Table Generator

Missing authentication in administrative scripts of the Online Time Table Generator allows unauthenticated attackers to perform unauthorized data oper...

2026-02-19
CVE-2025-70141
Analyzed
9.4
HP based on

SourceCodester Customer Support System 1.0 contains an incorrect access control vulnerability in ajax.php, allowing unauthenticated attackers to invok...

2026-02-19
CVE-2025-70123
7.5
Unknown Multiple Products

An improper input validation and protocol compliance vulnerability in free5GC v4

2026-02-14
CVE-2025-70122
7.5
Unknown Multiple Products

A heap buffer overflow vulnerability in the UPF component of free5GC v4

2026-02-14
CVE-2025-70121
7.5
Unknown Multiple Products

An array index out of bounds vulnerability in the AMF component of free5GC v4

2026-02-14
CVE-2025-70093
Analyzed
7.4
Unknown Multiple Products

An issue in OpenSourcePOS v3

2026-02-14
CVE-2025-70084
7.5
OpenSatKit Multiple Products

Directory traversal vulnerability in OpenSatKit 2

2026-02-13
CVE-2025-70083
7.8
Unknown Multiple Products

An issue was discovered in OpenSatKit 2

2026-02-13
CVE-2025-70082
Analyzed
9.8
Infor Multiple Products

An issue in Lantronix EDS3000PS v.3.1.0.0R2 allows an attacker to execute arbitrary code and obtain sensitive information via the ltrx_evo component

2026-03-12
CVE-2025-7008
Analyzed
7.8
Microsoft Avast Antivirus

Heap buffer out-of-bounds read vulnerability in Avast Antivirus when scanning a malformed Windows PE file with

2026-06-14
CVE-2025-7007
Analyzed
7.5
Microsoft Multiple Products

NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the anti...

2025-12-02
CVE-2025-70069
7.5
Unknown Multiple Products

An issue in Assimp v

2026-05-05
CVE-2025-70064
8.8
HP Multiple Products

PHPGurukul Hospital Management System v4

2026-02-19
CVE-2025-70047
7.5
Cisco Multiple Products

An issue pertaining to CWE-400: Uncontrolled Resource Consumption was discovered in Nexusoft NexusInterface v3

2026-03-10
CVE-2025-70045
Analyzed
7.4
JXcore JXM

An issue pertaining to CWE-295: Improper Certificate Validation was discovered in jxcore jxm master

2026-02-24
CVE-2025-70043
Analyzed
9.1
Ayms node-To master

The Ayms node-To master application disables TLS/SSL certificate validation by setting 'rejectUnauthorized' to false, facilitating Man-in-the-Middle (...

2026-02-24
CVE-2025-7004
Analyzed
7.8
Microsoft Avast Antivirus

Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial...

2026-06-14
CVE-2025-7003
Analyzed
7.8
Linux Antivirus

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-...

2026-06-14
CVE-2025-70029
7.5
Infor Multiple Products

An issue in Sunbird-Ed SunbirdEd-portal v1

2026-02-13
CVE-2025-7002
Analyzed
7.8
Linux Antivirus

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-...

2026-06-14
CVE-2025-69986
Analyzed
7.2
LSC Indoor Camera V7

A buffer overflow vulnerability exists in the ONVIF GetStreamUri function of LSC Indoor Camera V7

2026-03-29
CVE-2025-69969
Analyzed
9.6
SRK Powertech Pvt Ltd Pebble Prism Ultra

A lack of authentication in the BLE protocol of Pebble Prism Ultra v2.9.2 allows adjacent attackers to execute arbitrary commands, intercept data, and...

2026-03-05
CVE-2025-6996
8.4
Endpoint Multiple Products

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated...

2025-07-10
CVE-2025-6995
8.4
Endpoint Multiple Products

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated...

2025-07-10
CVE-2025-6994
Analyzed
9.8
WordPress Multiple Products

The Reveal Listing plugin by smartdatasoft for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.3. This is due to t...

2025-08-07
CVE-2025-6993
Analyzed
7.5
WordPress Multiple Products

The Ultimate WP Mail plugin for WordPress is vulnerable to Privilege Escalation due to improper authorization within the get_email_log_details() AJAX...

2025-07-16
CVE-2025-6991
Analyzed
7.5
WordPress Multiple Products

The kallyas theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4

2025-07-28
CVE-2025-69908
Analyzed
7.5
Unknown Multiple Products

An unauthenticated information disclosure vulnerability in Newgen OmniApp allows attackers to enumerate valid privileged usernames via a publicly acce...

2026-01-24
CVE-2025-69907
Analyzed
7.5
Unknown Multiple Products

An unauthenticated information disclosure vulnerability exists in Newgen OmniDocs due to missing authentication and access control on the /omnidocs/Ge...

2026-01-24
CVE-2025-69906
8.8
Files Multiple Products

Monstra CMS v3

2026-02-07
CVE-2025-6990
Analyzed
8.8
WordPress Multiple Products

The kallyas theme for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4

2025-11-01
CVE-2025-6989
Analyzed
8.1
WordPress Multiple Products

The Kallyas theme for WordPress is vulnerable to arbitrary folder deletion due to insufficient file path validation in the delete_font() function in a...

2025-07-28
CVE-2025-69875
Analyzed
7.8
Total Total Security

A vulnerability exists in Quick Heal Total Security 23

2026-02-05
CVE-2025-69873
7.5
Unknown Multiple Products

ajv (Another JSON Schema Validator) through version 8

2026-02-13
CVE-2025-69871
8.1
Unknown Multiple Products

A race condition vulnerability exists in MedusaJS Medusa v2

2026-02-13
CVE-2025-6985
7.5
Unknown Multiple Products

The HTMLSectionSplitter class in langchain-text-splitters version 0

2025-10-06
CVE-2025-6984
Analyzed
7.5
Unknown Multiple Products

The langchain-ai/langchain project, specifically the EverNoteLoader component, is vulnerable to XML External Entity (XXE) attacks due to insecure XML...

2025-09-04