17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 9151-9200 of 17282 CVEs Page 184 of 346
CVE-2025-69278
7.5
Unknown Multiple Products

In nr modem, there is a possible system crash due to improper input validation

2026-03-10
CVE-2025-69264
8.8
Unknown Multiple Products

pnpm is a package manager

2026-01-08
CVE-2025-69263
7.5
Unknown Multiple Products

pnpm is a package manager

2026-01-08
CVE-2025-69262
7.5
Unknown Multiple Products

pnpm is a package manager

2026-01-08
CVE-2025-69260
7.5
Trend Micro Multiple Products

A message out-of-bounds read vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-of-service condition on affect...

2026-01-09
CVE-2025-6926
8.8
Unknown Multiple Products

Improper Authentication vulnerability in Wikimedia Foundation Mediawiki - CentralAuth Extension allows : Bypass Authentication

2025-07-06
CVE-2025-69259
7.5
Trend Micro Multiple Products

A message unchecked NULL return value vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-of-service condition...

2026-01-09
CVE-2025-69258
Analyzed
9.8
Unknown Multiple Products

A LoadLibraryEX vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to load an attacker-controlled DLL into a key...

2026-01-09
CVE-2025-69256
7.5
Unknown Multiple Products

The Serverless Framework is a framework for using AWS Lambda and other managed cloud services to build applications

2025-12-31
CVE-2025-69246
Analyzed
9.8
Raytha Raytha CMS

Raytha CMS lacks brute force protection, allowing unauthenticated attackers to perform unlimited automated login attempts without triggering lockouts...

2026-03-17
CVE-2025-69240
8.8
Raytha Multiple Products

Raytha CMS allows an attacker to spoof `X-Forwarded-Host` or `Host` headers to attacker controlled domain

2026-03-17
CVE-2025-69231
8.7
GAD Multiple Products

OpenEMR is a free and open source electronic health records and medical practice management application

2026-02-25
CVE-2025-69223
Analyzed
7.5
HTTP Multiple Products

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

2026-01-06
CVE-2025-69222
Analyzed
9.1
Docker Multiple Products

LibreChat is a ChatGPT clone with additional features. Version 0.8.1-rc2 is prone to a server-side request forgery (SSRF) vulnerability due to missing...

2026-01-08
CVE-2025-69220
7.1
LibreChat Multiple Products

LibreChat is a ChatGPT clone with additional features

2026-01-08
CVE-2025-69219
Analyzed
8.8
Apache Airflow

A user with access to the DB could craft a database entry that would result in executing code on Triggerer - which gives anyone who have access to DB...

2026-03-10
CVE-2025-69217
7.7
STUN Multiple Products

coturn is a free open source implementation of TURN and STUN Server

2025-12-30
CVE-2025-69200
Analyzed
7.5
HP Multiple Products

phpMyFAQ is an open source FAQ web application

2025-12-30
CVE-2025-69195
7.6
Unknown Multiple Products

A flaw was found in GNU Wget2

2026-01-09
CVE-2025-69194
8.8
Unknown Multiple Products

A security issue was discovered in GNU Wget2 when handling Metalink documents

2026-01-09
CVE-2025-6919
Analyzed
9.8
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cats Information Technology Software Development...

2025-10-13
CVE-2025-69180
8.8
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in themepassion Ultra Portfolio ultra-portfolio all...

2026-01-24
CVE-2025-6918
Analyzed
9.8
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ncvav Virtual PBX Software allows SQL Injection....

2025-07-28
CVE-2025-6916
8.8
TOTOLINK Multiple Products

A vulnerability, which was classified as critical, was found in TOTOLINK T6 4

2025-07-06
CVE-2025-69139
Analyzed
8.6
Car Zone Car Zone

Unauthenticated Arbitrary File Deletion in Car Zone <= 3

2026-06-18
CVE-2025-69138
Analyzed
8.8
Genemy Genemy

Subscriber Privilege Escalation in Genemy <= 1

2026-06-18
CVE-2025-69135
Analyzed
8.5
WordPress Events Schedule Plugin

Subscriber SQL Injection in Events Schedule - WordPress Events Calendar Plugin <= 2

2026-06-18
CVE-2025-69130
Analyzed
8.8
HP Entrepreneur Booking Theme

Subscriber PHP Object Injection in Entrepreneur - Booking for Small Businesses WordPress Theme <= 3

2026-06-18
CVE-2025-69129
Analyzed
10
WordPress WooCommerce Scraper Plugin

An unauthenticated arbitrary file upload vulnerability exists in the WordPress & WooCommerce Scraper Plugin, allowing attackers to upload malicious fi...

2026-06-18
CVE-2025-69128
Analyzed
8.6
EMV JobCareer

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in EMV JobCareer allows Path Traversal

2026-06-18
CVE-2025-69094
Analyzed
8.5
WordPress Unicamp

Subscriber SQL Injection in Unicamp <= 2

2026-07-03
CVE-2025-69087
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in jwsthemes FreeAgent allows PH...

2026-01-06
CVE-2025-69086
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Jwsthemes Issabella allows PH...

2026-01-07
CVE-2025-69085
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e-plugins JobBank allows Reflected XSS

2026-01-07
CVE-2025-69084
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GT3 themes Photo Gallery allows Reflected XSS

2026-01-07
CVE-2025-69083
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes Frappé allows P...

2026-01-07
CVE-2025-69082
7.1
Frenify Arlo arlo Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Frenify Arlo arlo allows Reflected XSS

2026-01-08
CVE-2025-69081
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Group Hope charity-i...

2026-01-08
CVE-2025-69080
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in JanStudio Gecko allows PHP Lo...

2026-01-08
CVE-2025-69039
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in goalthemes Bailly bailly allo...

2026-01-24
CVE-2025-6901
7.3
Unknown Multiple Products

A vulnerability was found in code-projects Inventory Management System 1

2025-07-06
CVE-2025-68996
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WebCodingPlace Responsive Pos...

2025-12-31
CVE-2025-68990
Analyzed
9.8
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in xenioushk BWL Pro Voting Manager bwl-pro-voting-...

2025-12-31
CVE-2025-68989
7.5
Renzo Johnson Contact Multiple Products

Insertion of Sensitive Information Into Sent Data vulnerability in Renzo Johnson Contact Form 7 Extension For Mailchimp contact-form-7-mailchimp-exten...

2025-12-31
CVE-2025-68988
7.5
Unknown Multiple Products

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in o2oe E-Invoice App Malaysia einvoiceapp-malaysia allows Re...

2025-12-31
CVE-2025-68987
Analyzed
9.8
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Edge-Themes Cinerama - A Word...

2025-12-31
CVE-2025-68985
Analyzed
9.8
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Aora aora allows PHP...

2025-12-31
CVE-2025-68984
Analyzed
9.8
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Puca puca allows PHP...

2025-12-31
CVE-2025-68983
Analyzed
9.8
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Greenmart greenmart a...

2025-12-31
CVE-2025-68982
8.1
Unknown Multiple Products

Missing Authorization vulnerability in designthemes DesignThemes LMS Addon designthemes-lms-addon allows Exploiting Incorrectly Configured Access Cont...

2025-12-31