17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 9101-9150 of 17282 CVEs Page 183 of 346
CVE-2025-69828
Analyzed
10
Unknown Multiple Products

File Upload vulnerability in TMS Global Software TMS Management Console v.6.3.7.27386.20250818 allows a remote attacker to execute arbitrary code via...

2026-01-23
CVE-2025-69822
7.4
Unknown Multiple Products

An issue in Atomberg Atomberg Erica Smart Fan Firmware Version: V1

2026-01-24
CVE-2025-69821
7.4
Unknown Multiple Products

An issue in Beat XP VEGA Smartwatch (Firmware Version - RB303ATV006229) allows an attacker to cause a denial of service via the BLE connection

2026-01-24
CVE-2025-69809
Analyzed
9.8
Unknown Bareiron

A write-what-where condition in p2r3 Bareiron allows unauthenticated attackers to execute arbitrary code by sending a crafted packet that writes arbit...

2026-03-17
CVE-2025-69808
Analyzed
9.1
Infor Multiple Products

An out-of-bounds memory access (OOB) in p2r3 Bareiron commit 8e4d40 allows unauthenticated attackers to access sensitive information and cause a Denia...

2026-03-17
CVE-2025-69807
7.5
Unknown Multiple Products

p2r3 Bareiron commit: 8e4d4020d is vulnerable to Buffer Overflow, which allows unauthenticated remote attackers to cause a denial of service via a pac...

2026-02-14
CVE-2025-6980
7.5
Captive Multiple Products

Captive Portal can expose sensitive information

2025-10-23
CVE-2025-6979
8.8
Captive Multiple Products

Captive Portal can allow authentication bypass

2025-10-23
CVE-2025-69784
8.8
Unknown Multiple Products

A local, non-privileged attacker can abuse a vulnerable IOCTL interface exposed by the OpenEDR 2

2026-03-17
CVE-2025-69783
7.8
Unknown Multiple Products

A local attacker can bypass OpenEDR's 2

2026-03-18
CVE-2025-6978
7.2
Diagnostics Multiple Products

Diagnostics command injection vulnerability

2025-10-24
CVE-2025-69770
Analyzed
10
Unknown MojoPortal CMS

MojoPortal CMS is vulnerable to a "Zip Slip" exploit in the SkinList.aspx endpoint, allowing attackers to execute arbitrary commands via a specially c...

2026-02-14
CVE-2025-69768
7.5
HP component

SQL Injection vulnerability in Chyrp v

2026-03-17
CVE-2025-69765
7.5
Tenda AX3 firmware

Tenda AX3 firmware v16

2026-03-04
CVE-2025-69764
Analyzed
9.8
Tenda Multiple Products

Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the stbpvid stack buffe...

2026-01-23
CVE-2025-6974
7.8
SOLIDWORKS Multiple Products

Use of Uninitialized Variable vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025

2025-07-15
CVE-2025-6973
7.8
SOLIDWORKS Multiple Products

Use After Free vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025

2025-07-15
CVE-2025-6972
7.8
SOLIDWORKS Multiple Products

Use After Free vulnerability exists in the CATPRODUCT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025

2025-07-15
CVE-2025-6971
7.8
SOLIDWORKS Multiple Products

Use After Free vulnerability exists in the CATPRODUCT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025

2025-07-15
CVE-2025-69700
7.5
Tenda FH1203 V2

Tenda FH1203 V2

2026-02-24
CVE-2025-6970
Analyzed
7.5
WordPress Multiple Products

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter...

2025-07-11
CVE-2025-69691
Analyzed
9.9
HP code

Netgate pfSense CE 2.8.0 allows code execution in the XMLRPC API via pfsense.exec_php. NOTE: the Supplier disputes this because the API call is only a...

2026-05-09
CVE-2025-69690
Analyzed
9.1
HP object containing

Netgate pfSense CE 2.7.2 allows code execution by using the module installer with a backup file with a serialized PHP object containing the post_reboo...

2026-05-09
CVE-2025-69689
8.8
Unknown Multiple Products

The Fan Control application V251 contains an improper privilege handling vulnerability in its Open File Dialog

2026-04-28
CVE-2025-6967
8.7
Sarman Soft Software Multiple Products

Execution After Redirect (EAR) vulnerability in Sarman Soft Software and Technology Services Industry and Trade Ltd

2026-02-11
CVE-2025-69662
Analyzed
8.6
Unknown Multiple Products

SQL injection vulnerability in geopandas before v

2026-01-31
CVE-2025-69634
Analyzed
9
HP Dolibarr ERP & CRM

A Cross-Site Request Forgery (CSRF) vulnerability in Dolibarr ERP & CRM v.22.0.9 allows remote attackers to escalate privileges by manipulating the no...

2026-02-13
CVE-2025-69627
8.4
Microsoft Multiple Products

Nitro PDF Pro for Windows 14

2026-04-15
CVE-2025-69624
7.5
Microsoft Multiple Products

Nitro PDF Pro for Windows 14

2026-04-14
CVE-2025-69620
Analyzed
7.5
Moo Chan Song Moo Chan Song v4

A path traversal in Moo Chan Song v4

2026-02-05
CVE-2025-69619
7.5
Unknown Multiple Products

A path traversal in My Text Editor v1

2026-02-07
CVE-2025-69615
Analyzed
9.1
Unknown Multiple Products

Incorrect Access Control via missing 2FA rate-limiting allowing unlimited brute-force retries and full MFA bypass with no user interaction required. A...

2026-03-11
CVE-2025-69614
Analyzed
9.4
Unknown Multiple Products

Incorrect Access Control via activation token reuse on the password-reset endpoint allowing unauthorized password resets and full account takeover. Af...

2026-03-11
CVE-2025-69581
7.5
Chamillo Multiple Products

An issue was discovered in Chamillo LMS 1

2026-01-18
CVE-2025-6953
8.8
TOTOLINK Multiple Products

A vulnerability, which was classified as critical, was found in TOTOLINK A3002RU 3

2025-07-06
CVE-2025-69516
8.8
Unknown Multiple Products

A Server-Side Template Injection (SSTI) vulnerability in the /reporting/templates/preview/ endpoint of Amidaware Tactical RMM, affecting versions equa...

2026-01-30
CVE-2025-6948
Analyzed
8.7
GitLab Multiple Products

An issue has been discovered in GitLab CE/EE affecting all versions from 17

2025-07-11
CVE-2025-69437
Analyzed
8.7
Unknown Multiple Products

PublicCMS v5

2026-02-28
CVE-2025-69428
7.5
Unknown Multiple Products

An issue in Pro-Bit before v1

2026-04-29
CVE-2025-69420
7.5
Unknown Multiple Products

Issue summary: A type confusion vulnerability exists in the TimeStamp Response verification code where an ASN1_TYPE union member is accessed without f...

2026-01-29
CVE-2025-69415
Analyzed
7.1
Media Multiple Products

In Plex Media Server (PMS) through 1

2026-01-03
CVE-2025-69414
Analyzed
8.5
Media Multiple Products

Plex Media Server (PMS) through 1

2026-01-03
CVE-2025-6940
8.8
TOTOLINK Multiple Products

A vulnerability classified as critical was found in TOTOLINK A702R 4

2025-07-06
CVE-2025-6939
8.8
TOTOLINK Multiple Products

A vulnerability classified as critical has been found in TOTOLINK A3002RU 3

2025-07-06
CVE-2025-69347
8.5
Convers Lab Multiple Products

Authorization Bypass Through User-Controlled Key vulnerability in Convers Lab WPSubscription subscription allows Exploiting Incorrectly Configured Acc...

2026-03-27
CVE-2025-69342
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in VanKarWai Calafate calafate a...

2026-01-07
CVE-2025-6934
Analyzed
9.8
WordPress Multiple Products

The Opal Estate Pro – Property Management and Submission plugin for WordPress, used by the FullHouse - Real Estate Responsive WordPress Theme, is vuln...

2025-07-06
CVE-2025-69338
Analyzed
9.3
WordPress Riode Core

The Riode Core plugin for WordPress is vulnerable to Blind SQL Injection due to improper neutralization of special elements, affecting versions up to...

2026-03-06
CVE-2025-69288
Analyzed
9.1
Unknown Multiple Products

Titra is open source project time tracking software. Prior to version 0.99.49, Titra allows any authenticated Admin user to modify the timeEntryRule i...

2026-01-01
CVE-2025-69279
7.5
Unknown Multiple Products

In nr modem, there is a possible system crash due to improper input validation

2026-03-10