17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 9601-9650 of 17282 CVEs Page 193 of 346
CVE-2025-66398
Analyzed
9.6
Unknown Multiple Products

Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.19.0, an unauthenticated attacker can pollute the int...

2026-01-02
CVE-2025-66397
8.3
ChurchCRM Multiple Products

ChurchCRM is an open-source church management system

2025-12-18
CVE-2025-66396
7.2
ChurchCRM Multiple Products

ChurchCRM is an open-source church management system

2025-12-18
CVE-2025-66395
8.8
ChurchCRM Multiple Products

ChurchCRM is an open-source church management system

2025-12-18
CVE-2025-66391
Analyzed
8.8
Citrix Cloud

In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write operations, e

2026-06-18
CVE-2025-66389
Analyzed
7.5
GitHub Copilot

GitHub Copilot 1

2026-06-23
CVE-2025-66384
Analyzed
8.2
Apache Multiple Products

app/Controller/EventsController

2025-11-29
CVE-2025-66379
7.5
Infinity Multiple Products

Pexip Infinity before 39

2025-12-26
CVE-2025-66377
7.5
Infinity Multiple Products

Pexip Infinity before 39

2025-12-26
CVE-2025-66376
KEV
7.2
Zimbra Multiple Products

Zimbra Collaboration (ZCS) 10 before 10

2026-01-06
CVE-2025-66374
Analyzed
7.8
Privilege Endpoint Privilege Manager (EPM) Agent

CyberArk Endpoint Privilege Manager Agent through 25

2026-02-05
CVE-2025-6637
7.8
Unknown Multiple Products

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability

2025-07-29
CVE-2025-66363
7.5
Samsung Mobile Processor

An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200

2026-03-05
CVE-2025-6636
7.8
Unknown Multiple Products

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Use-After-Free vulnerability

2025-07-29
CVE-2025-66359
Analyzed
8.5
Logpoint Multiple Products

An issue was discovered in Logpoint before 7

2025-11-28
CVE-2025-6635
7.8
Unknown Multiple Products

A maliciously crafted PRT file, when linked or imported into certain Autodesk products, can force an Out-of-Bounds Read vulnerability

2025-07-29
CVE-2025-66342
7.8
Unknown Multiple Products

A type confusion vulnerability exists in the EMF functionality of Canva Affinity

2026-03-18
CVE-2025-6634
7.8
Unknown Multiple Products

A maliciously crafted TGA file, when linked or imported into Autodesk 3ds Max, can force a Memory Corruption vulnerability

2025-08-07
CVE-2025-66336
Analyzed
8.1
Apache Doris MCP Server

Apache Doris MCP Server contains a SQL injection vulnerability in a metadata query path

2026-06-23
CVE-2025-6633
8.3
Unknown Multiple Products

A maliciously crafted RBG file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability

2025-08-07
CVE-2025-66328
8.4
Unknown Multiple Products

Multi-thread race condition vulnerability in the network management module

2025-12-09
CVE-2025-66327
7.1
Unknown Multiple Products

Race condition vulnerability in the network module

2025-12-09
CVE-2025-66324
8.4
Unknown Multiple Products

Input verification vulnerability in the compression and decompression module

2025-12-09
CVE-2025-66314
Analyzed
7.5
Linux Multiple Products

Improper Privilege Management vulnerability in ZTE ElasticNet UME R32 on Linux allows Accessing Functionality Not Properly Constrained by ACLs

2025-11-28
CVE-2025-6631
7.8
Unknown Multiple Products

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability

2025-07-29
CVE-2025-66300
8.5
Grav Multiple Products

Grav is a file-based Web platform

2025-12-02
CVE-2025-66299
Analyzed
8.8
HP Multiple Products

Grav is a file-based Web platform

2025-12-02
CVE-2025-66296
Analyzed
8.8
Apache Multiple Products

Grav is a file-based Web platform

2025-12-02
CVE-2025-66295
Analyzed
8.8
Grav Multiple Products

Grav is a file-based Web platform

2025-12-02
CVE-2025-66293
7.1
LIBPNG Multiple Products

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files

2025-12-03
CVE-2025-66292
8.1
Unknown Multiple Products

DPanel is an open source server management panel written in Go

2026-01-16
CVE-2025-66287
8.8
Unknown Multiple Products

A flaw was found in WebKitGTK

2025-12-05
CVE-2025-6625
Analyzed
7.5
Unknown Multiple Products

CWE-20: Improper Input Validation vulnerability exists that could cause a Denial Of Service when specific crafted FTP command is sent to the device

2025-08-19
CVE-2025-66238
Analyzed
7.2
Unknown Multiple Products

DCIM dcTrack allows an attacker to misuse certain remote access features

2025-12-05
CVE-2025-66222
Analyzed
9.6
Intel Multiple Products

DeepChat is a smart assistant uses artificial intelligence. In 0.5.0 and earlier, there is a Stored Cross-Site Scripting (XSS) vulnerability in the Me...

2025-12-03
CVE-2025-66205
Analyzed
7.1
Frappe Multiple Products

Frappe is a full-stack web application framework

2025-12-02
CVE-2025-66203
Analyzed
9.9
Unknown Multiple Products

StreamVault is a video download integration solution. Prior to version 251126, a Remote Code Execution (RCE) vulnerability exists in the stream-vault...

2025-12-27
CVE-2025-66177
Analyzed
8.8
Hikvision Multiple Products

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models

2026-01-13
CVE-2025-66176
Analyzed
8.8
Hikvision Multiple Products

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products

2026-01-13
CVE-2025-66131
Analyzed
9.1
HP Multiple Products

Missing Authorization vulnerability in yaadsarig Yaad Sarig Payment Gateway For WC yaad-sarig-payment-gateway-for-wc allows Exploiting Incorrectly Con...

2025-12-17
CVE-2025-66078
Analyzed
9.1
WordPress Multiple Products

Improper Control of Generation of Code ('Code Injection') vulnerability in jetmonsters Hotel Booking Lite motopress-hotel-booking-lite allows Remote C...

2025-12-19
CVE-2025-66055
7.2
Icegram Email Multiple Products

Deserialization of Untrusted Data vulnerability in Icegram Email Subscribers & Newsletters email-subscribers allows Object Injection

2025-11-22
CVE-2025-66048
Analyzed
9.8
Several Multiple Products

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafte...

2025-12-12
CVE-2025-66047
Analyzed
9.8
Several Multiple Products

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafte...

2025-12-12
CVE-2025-66046
Analyzed
9.8
Several Multiple Products

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafte...

2025-12-12
CVE-2025-66045
Analyzed
9.8
Several Multiple Products

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafte...

2025-12-12
CVE-2025-66044
Analyzed
9.8
Several Multiple Products

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafte...

2025-12-12
CVE-2025-66043
Analyzed
9.8
Several Multiple Products

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafte...

2025-12-12
CVE-2025-66029
Analyzed
7.6
HP Multiple Products

Open OnDemand provides remote web access to supercomputers

2025-12-18
CVE-2025-66022
Analyzed
9.6
Unknown Multiple Products

FACTION is a PenTesting Report Generation and Collaboration Framework. Prior to version 1.7.1, an extension execution path in Faction’s extension fram...

2025-11-27