17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 9651-9700 of 17282 CVEs Page 194 of 346
CVE-2025-66020
Analyzed
7.5
Valibot Multiple Products

Valibot helps validate data using a schema

2025-11-27
CVE-2025-66001
8.8
NeuVector Multiple Products

NeuVector supports login authentication through OpenID Connect

2026-01-09
CVE-2025-65998
Analyzed
7.5
Apache Multiple Products

Apache Syncope can be configured to store the user password values in the internal database with AES encryption, though this is not the default option

2025-11-25
CVE-2025-65959
8.7
Intel Multiple Products

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline

2025-12-05
CVE-2025-65958
8.5
Intel Multiple Products

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline

2025-12-05
CVE-2025-65951
Analyzed
8.7
Unknown Multiple Products

Inside Track / Entropy Derby is a research-grade horse-racing betting engine

2025-11-26
CVE-2025-65946
8.1
Roo Multiple Products

Roo Code is an AI-powered autonomous coding agent that lives in users' editors

2025-11-22
CVE-2025-65945
7.5
Unknown Multiple Products

auth0/node-jws is a JSON Web Signature implementation for Node

2025-12-05
CVE-2025-65897
8.8
Unknown Multiple Products

zdh_web is a data collection, processing, monitoring, scheduling, and management platform

2025-12-06
CVE-2025-65896
Analyzed
9.8
Unknown Multiple Products

SQL injection vulnerability in long2ice assyncmy thru 0.2.10 allows attackers to execute arbitrary SQL commands via crafted dict keys.

2025-12-04
CVE-2025-65891
7.5
GPU Multiple Products

A GPU device-ID validation flaw in OneFlow v0

2026-01-30
CVE-2025-65890
7.5
Unknown Multiple Products

A device-ID validation flaw in OneFlow v0

2026-01-30
CVE-2025-65889
7.5
Unknown Multiple Products

A type validation flaw in the flow

2026-01-30
CVE-2025-65888
7.5
Unknown Multiple Products

A dimension validation flaw in the flow

2026-01-30
CVE-2025-65886
7.5
Unknown Multiple Products

A shape mismatch vulnerability in OneFlow v0

2026-01-30
CVE-2025-65879
8.1
Unknown Multiple Products

Warehouse Management System 1

2025-12-06
CVE-2025-65878
7.5
Unknown Multiple Products

The warehouse management system version 1

2025-12-06
CVE-2025-65875
Analyzed
8.8
HP file

An arbitrary file upload vulnerability in the AddFont() function of FPDF v1

2026-02-04
CVE-2025-65865
7.5
Unknown Multiple Products

An integer overflow in eProsima Fast-DDS v3

2025-12-24
CVE-2025-65857
7.5
Unknown Multiple Products

An issue was discovered in Xiongmai XM530 IP cameras on firmware V5

2025-12-23
CVE-2025-65856
Analyzed
9.8
Unknown Multiple Products

Authentication bypass vulnerability in Xiongmai XM530 IP cameras on Firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06 allows unauthenticated remo...

2025-12-23
CVE-2025-65854
Analyzed
9.8
Unknown Multiple Products

Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute arbitrary commands and execute a full account takeov...

2025-12-13
CVE-2025-6585
8.1
WordPress Multiple Products

The WP JobHunt plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7

2025-07-23
CVE-2025-65844
7.5
EverShop Multiple Products

EverShop 2

2025-12-03
CVE-2025-65843
7.7
Aquarius Multiple Products

Aquarius Desktop 3

2025-12-03
CVE-2025-65831
7.5
Unknown Multiple Products

The application uses an insecure hashing algorithm (MD5) to hash passwords

2025-12-12
CVE-2025-65824
8.8
Unknown Multiple Products

An unauthenticated attacker within proximity of the Meatmeet device can perform an unauthorized Over The Air (OTA) firmware upgrade using Bluetooth Lo...

2025-12-12
CVE-2025-65821
Analyzed
7.5
Intel Multiple Products

As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary can dump the flash from the device and retrieve sens...

2025-12-12
CVE-2025-65817
Analyzed
8.8
LSC Multiple Products

LSC Smart Connect Indoor IP Camera 1

2025-12-23
CVE-2025-65807
Analyzed
9.8
Unknown Multiple Products

An issue in sd command v1.0.0 and before allows attackers to escalate privileges to root via a crafted command.

2025-12-11
CVE-2025-65805
7.5
OpenAirInterface Multiple Products

OpenAirInterface CN5G AMF<=v2

2026-01-08
CVE-2025-65795
Analyzed
7.5
Unknown Multiple Products

Incorrect access control in the /api/v1/user endpoint of usememos memos v0

2025-12-09
CVE-2025-65791
Analyzed
9.8
HP ZoneMinder

ZoneMinder is vulnerable to remote command injection because user-supplied input is passed unsanitized to the exec() function in the image.php view.

2026-02-19
CVE-2025-65781
8.2
Unknown Multiple Products

An issue was discovered in Wekan The Open Source kanban board system up to version 18

2025-12-17
CVE-2025-65778
8.1
Unknown Multiple Products

An issue was discovered in Wekan The Open Source kanban board system up to version 18

2025-12-17
CVE-2025-6577
Analyzed
9.8
Unknown Multiple Products

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Akilli Commerce Software Technologies Ltd. Co. E...

2026-05-13
CVE-2025-65753
Analyzed
9
Guardian Gryphon

A flaw in the TLS certification mechanism of Guardian Gryphon allows remote attackers to execute arbitrary commands with root-level privileges.

2026-02-18
CVE-2025-65742
8.2
Newgen OmniDocs Multiple Products

An unauthenticated Broken Function Level Authorization (BFLA) vulnerability in Newgen OmniDocs v11

2025-12-16
CVE-2025-6574
Analyzed
8.8
WordPress Multiple Products

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and excluding, 6

2025-11-01
CVE-2025-65716
8.8
Unknown Multiple Products

An issue in Visual Studio Code Extensions Markdown Preview Enhanced v0

2026-02-18
CVE-2025-65656
Analyzed
9.8
HP Multiple Products

dcat-admin v2.2.3-beta and before is vulnerable to file inclusion in admin/src/Extend/VersionManager.php.

2025-12-04
CVE-2025-65637
7.5
GitHub Multiple Products

A denial-of-service vulnerability exists in github

2025-12-06
CVE-2025-65594
8.1
OpenSIS Multiple Products

OpenSIS 9

2025-12-11
CVE-2025-65593
8.8
Unknown Multiple Products

nopCommerce 4

2025-12-18
CVE-2025-6558
KEV Analyzed
8.8
Google Multiple Products

Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138

2025-07-15
CVE-2025-65568
7.5
Unknown Multiple Products

A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version upf-epc-pfcpiface:2

2025-12-20
CVE-2025-65567
7.5
Unknown Multiple Products

A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version upf-epc-pfcpiface:2

2025-12-20
CVE-2025-65566
7.5
Unknown Multiple Products

A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version upf-epc-pfcpiface:2

2025-12-20
CVE-2025-65565
7.5
Unknown Multiple Products

A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version upf-epc-pfcpiface:2

2025-12-20
CVE-2025-65564
7.5
Unknown Multiple Products

A denial-of-service vulnerability exists in the omec-upf (upf-epc-pfcpiface) in version upf-epc-pfcpiface:2

2025-12-20