17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 9551-9600 of 17282 CVEs Page 192 of 346
CVE-2025-66735
7.5
Unknown Multiple Products

youlai-boot V2

2025-12-23
CVE-2025-66720
7.5
Unknown Multiple Products

Null pointer dereference in free5gc pcf 1

2026-01-24
CVE-2025-66719
Analyzed
9.1
Unknown Multiple Products

An issue was discovered in Free5gc NRF 1.4.0. In the access-token generation logic of free5GC, the AccessTokenScopeCheck() function in file internal/s...

2026-01-24
CVE-2025-6670
8.8
Unknown Multiple Products

A Cross-Site Request Forgery (CSRF) vulnerability exists in multiple WSO2 products due to the use of the HTTP GET method for state-changing operations...

2025-11-19
CVE-2025-66698
8.6
Unknown Multiple Products

An issue in Semantic machines v5

2026-01-14
CVE-2025-66692
7.5
Unknown Multiple Products

A buffer over-read in the PublicKey::verify() method of Binance - Trust Wallet Core before commit 5668c67 allows attackers to cause a Denial of Servic...

2026-01-22
CVE-2025-66687
7.5
Doom Multiple Products

Doom Launcher 3

2026-03-18
CVE-2025-66680
7.1
Unknown Multiple Products

An issue in the WiseDelfile64

2026-03-05
CVE-2025-66675
8.2
Apache Multiple Products

Denial of Service vulnerability in Apache Struts, file leak in multipart request processing causes disk exhaustion

2025-12-11
CVE-2025-66648
7.2
Unknown Multiple Products

vega-functions provides function implementations for the Vega expression language

2026-01-06
CVE-2025-66644
KEV
7.2
Unknown Multiple Products

Array Networks ArrayOS AG before 9

2025-12-06
CVE-2025-66635
Analyzed
7.2
Unknown Multiple Products

Stack-based buffer overflow vulnerability exists in SEIKO EPSON Web Config

2025-12-16
CVE-2025-6663
Analyzed
7.8
GStreamer Multiple Products

GStreamer H266 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

2025-07-07
CVE-2025-66628
7.5
ImageMagick Multiple Products

ImageMagick is a software suite to create, edit, compose, or convert bitmap images

2025-12-12
CVE-2025-66627
8.4
Wasmi Multiple Products

Wasmi is a WebAssembly interpreter focused on constrained and embedded systems

2025-12-10
CVE-2025-66626
8.1
Kubernetes Multiple Products

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes

2025-12-10
CVE-2025-66624
7.5
Unknown Multiple Products

BACnet Protocol Stack library provides a BACnet application layer, network layer and media access (MAC) layer communications services

2025-12-06
CVE-2025-66623
Analyzed
7.4
Kubernetes Multiple Products

Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configurations

2025-12-06
CVE-2025-66620
8
Unknown Multiple Products

An unused webshell in MicroServer allows unlimited login attempts, with sudo rights on certain files and directories

2026-01-08
CVE-2025-66580
Analyzed
9.6
Unknown Multiple Products

Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. A critical Stored Cross-Site Scripting (XSS)...

2025-12-20
CVE-2025-66570
Analyzed
10
Docker Multiple Products

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP hea...

2025-12-06
CVE-2025-66564
7.5
Unknown Multiple Products

Sigstore Timestamp Authority is a service for issuing RFC 3161 timestamps

2025-12-05
CVE-2025-66561
7.3
Unknown Multiple Products

SysReptor is a fully customizable pentest reporting platform

2025-12-05
CVE-2025-66533
7.8
StellarWP GiveWP give Multiple Products

Improper Control of Generation of Code ('Code Injection') vulnerability in StellarWP GiveWP give allows Code Injection

2025-12-10
CVE-2025-66506
7.5
Unknown Multiple Products

Fulcio is a free-to-use certificate authority for issuing code signing certificates for an OpenID Connect (OIDC) identity

2025-12-05
CVE-2025-66499
Analyzed
7.8
Unknown Multiple Products

A heap-based buffer overflow vulnerability exists in the PDF parsing of Foxit PDF Reader when processing specially crafted JBIG2 data

2025-12-20
CVE-2025-66495
Analyzed
7.8
Microsoft Multiple Products

A use-after-free vulnerability exists in the annotation handling of Foxit PDF Reader before 2025

2025-12-20
CVE-2025-66494
Analyzed
7.8
Reader Multiple Products

A use-after-free vulnerability exists in the PDF file parsing of Foxit PDF Reader before 2025

2025-12-20
CVE-2025-66493
Analyzed
7.8
Editor Multiple Products

A use-after-free vulnerability exists in the AcroForm handling of Foxit PDF Reader and Foxit PDF Editor before 2025

2025-12-20
CVE-2025-66492
8.2
Masa Multiple Products

Masa CMS is an open source Enterprise Content Management platform

2025-12-13
CVE-2025-66481
Analyzed
9.6
Intel Multiple Products

DeepChat is an open-source AI chat platform that supports cloud models and LLMs. Versions 0.5.1 and below are vulnerable to XSS attacks through improp...

2025-12-10
CVE-2025-66480
Analyzed
9.8
Intel Multiple Products

Wildfire IM is an instant messaging and real-time audio/video solution. Prior to 1.4.3, a critical vulnerability exists in the im-server component rel...

2026-02-03
CVE-2025-66476
7.8
Vim Multiple Products

Vim is an open source, command line text editor

2025-12-03
CVE-2025-66468
7.6
Aimeos Multiple Products

The Aimeos GrapesJS CMS extension provides page editor for creating content pages based on extensible components

2025-12-03
CVE-2025-66467
8
Apache CloudStack allows

Missing MinIO policy cleanup on bucket deletion via Apache CloudStack allows users to retain access to buckets which they previously owned

2026-05-09
CVE-2025-66449
Analyzed
8.8
ConvertXis Multiple Products

ConvertXis a self-hosted online file converter

2025-12-16
CVE-2025-66448
7.1
Unknown Multiple Products

vLLM is an inference and serving engine for large language models (LLMs)

2025-12-02
CVE-2025-66446
8.8
MaxKB Multiple Products

MaxKB is an open-source AI assistant for enterprise

2025-12-12
CVE-2025-66444
8.2
Hitachi Multiple Products

Cross-site Scripting vulnerability in Hitachi Infrastructure Analytics Advisor (Data Center Analytics component) and Hitachi Ops Center Analyzer (Hita...

2025-12-24
CVE-2025-66443
7.5
Pexip Multiple Products

Pexip Infinity 35

2025-12-26
CVE-2025-66437
8.8
ERPNext Multiple Products

An SSTI (Server-Side Template Injection) vulnerability exists in the get_address_display method of Frappe ERPNext through 15

2025-12-17
CVE-2025-66431
7.8
Plesk Multiple Products

WebPros Plesk before 18

2025-12-03
CVE-2025-66430
Analyzed
9.1
Apache Multiple Products

Plesk 18.0 has Incorrect Access Control.

2025-12-13
CVE-2025-66429
8.8
Unknown Multiple Products

An issue was discovered in cPanel 110 through 132

2025-12-13
CVE-2025-66428
Analyzed
8.8
WordPress Multiple Products

An issue with WordPress directory names in WebPros WordPress Toolkit before 6

2026-01-24
CVE-2025-66423
Analyzed
7.1
Intel Multiple Products

Tryton trytond 6

2025-12-01
CVE-2025-66419
8.8
MaxKB Multiple Products

MaxKB is an open-source AI assistant for enterprise

2025-12-12
CVE-2025-66417
7.5
GLPI Multiple Products

GLPI is a free asset and IT management software package

2026-01-16
CVE-2025-66411
Analyzed
7.8
Coder Multiple Products

Coder allows organizations to provision remote development environments via Terraform

2025-12-03
CVE-2025-66401
Analyzed
9.8
GitHub Multiple Products

MCP Watch is a comprehensive security scanner for Model Context Protocol (MCP) servers. In 0.1.2 and earlier, the MCPScanner class contains a critical...

2025-12-02