17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 10251-10300 of 17282 CVEs Page 206 of 346
CVE-2025-62076
7.1
Ido Kobelkowsky Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ido Kobelkowsky Simple Payment simple-payment

2025-11-06
CVE-2025-62075
7.3
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Ido Kobelkowsky Simple Paymen...

2025-11-06
CVE-2025-62074
7.1
Amauri Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Amauri WPMobile

2025-11-06
CVE-2025-6207
Analyzed
7.5
WordPress Multiple Products

The WP Import Export Lite plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpie_tempalte_impor...

2025-08-05
CVE-2025-62067
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes Savory savory

2025-11-06
CVE-2025-62066
7.4
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in fuelthemes Revolution revolut...

2025-11-06
CVE-2025-62065
Analyzed
9.9
Unknown Multiple Products

Unrestricted Upload of File with Dangerous Type vulnerability in Rometheme RTMKit rometheme-for-elementor.This issue affects RTMKit: from n/a through...

2025-11-06
CVE-2025-62064
Analyzed
9.8
Unknown Multiple Products

Authentication Bypass Using an Alternate Path or Channel vulnerability in Elated-Themes Search & Go search-and-go allows Password Recovery Exploitatio...

2025-11-06
CVE-2025-62059
7.1
Brainstorm Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brainstorm Force SureRank surerank

2025-11-06
CVE-2025-62057
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in favethemes Houzez Theme - Functionality houzez-t...

2025-11-06
CVE-2025-62055
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes Academist acade...

2025-11-06
CVE-2025-62054
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in favethemes Houzez Theme - Fun...

2025-10-23
CVE-2025-62053
8
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in favethemes Houzez houzez

2025-11-06
CVE-2025-6205
KEV Analyzed
9.1
Intel Multiple Products

A missing authorization vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could allow an attacker to gain privileged access...

2025-08-05
CVE-2025-62047
Analyzed
9.9
Unknown Multiple Products

Unrestricted Upload of File with Dangerous Type vulnerability in Case-Themes Case Addons case-addons.This issue affects Case Addons: from n/a through...

2025-11-06
CVE-2025-62045
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in CodexThemes TheGem Theme Elem...

2025-11-06
CVE-2025-62041
7.1
CodexThemes TheGem Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CodexThemes TheGem (Elementor) thegem-elementor

2025-11-06
CVE-2025-62040
7.1
YOP YOP Poll Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YOP YOP Poll yop-poll

2025-11-06
CVE-2025-6204
KEV
8
Unknown Multiple Products

An Improper Control of Generation of Code (Code Injection) vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could allow an...

2025-08-05
CVE-2025-62039
7.5
Ays Pro AI ChatBot Multiple Products

Insertion of Sensitive Information Into Sent Data vulnerability in Ays Pro AI ChatBot with ChatGPT and Content Generator by AYS ays-chatgpt-assistant...

2025-11-06
CVE-2025-62036
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in uxper Togo togo

2025-11-06
CVE-2025-62035
8.8
Unknown Multiple Products

Deserialization of Untrusted Data vulnerability in uxper Togo togo

2025-11-06
CVE-2025-62034
8.8
Unknown Multiple Products

Incorrect Privilege Assignment vulnerability in uxper Togo togo

2025-11-08
CVE-2025-62031
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tagDiv tagDiv Composer td-composer

2025-11-06
CVE-2025-6203
Analyzed
7.5
Unknown Multiple Products

A malicious user may submit a specially-crafted complex payload that otherwise meets the default request size limit which results in excessive memory...

2025-08-28
CVE-2025-62029
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in themesion Grevo grevo

2025-10-23
CVE-2025-62025
Analyzed
9.8
Unknown Multiple Products

Deserialization of Untrusted Data vulnerability in eyecix JobSearch wp-jobsearch.This issue affects JobSearch: from n/a through < 3.0.8.

2025-10-23
CVE-2025-62023
Analyzed
9.8
Unknown Multiple Products

Improper Control of Generation of Code ('Code Injection') vulnerability in Cristián Lávaque s2Member s2member.This issue affects s2Member: from n/a th...

2025-10-23
CVE-2025-62022
7.5
BuddyPress BuddyPress Multiple Products

Missing Authorization vulnerability in BuddyPress BuddyPress buddypress

2025-10-23
CVE-2025-62014
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ApusTheme ITok itok

2025-11-08
CVE-2025-62010
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ApusTheme Famita famita allow...

2025-11-08
CVE-2025-62001
8.8
BullWall Multiple Products

BullWall Ransomware Containment contains excluded file paths, such as '$recycle

2025-12-19
CVE-2025-62000
7.1
BullWall Multiple Products

BullWall Ransomware Containment does not entirely inspect a file to determine if it is ransomware

2025-12-20
CVE-2025-61990
7.5
Unknown Multiple Products

When using a multi-bladed platform with more than one blade, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate

2025-10-16
CVE-2025-61982
7.8
OpenCFD Multiple Products

An arbitrary code execution vulnerability exists in the Code Stream directive functionality of OpenCFD OpenFOAM 2506

2026-02-19
CVE-2025-61977
7
Unknown Multiple Products

A weak password recovery mechanism for forgotten password vulnerability was discovered in Productivity Suite software version v4

2025-10-24
CVE-2025-61976
7.5
CHOCO Multiple Products

CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or exceptional conditions

2025-12-16
CVE-2025-61974
7.5
Unknown Multiple Products

When a client SSL profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization

2025-10-16
CVE-2025-61973
Analyzed
8.8
Microsoft Multiple Products

A local privilege escalation vulnerability exists during the installation of Epic Games Store via the Microsoft Store

2026-01-16
CVE-2025-61960
7.5
APM Multiple Products

When a per-request policy is configured on a BIG-IP APM portal access virtual server, undisclosed traffic can cause the Traffic Management Microkernel...

2025-10-16
CVE-2025-61958
8.7
Unknown Multiple Products

A vulnerability exists in the iHealth command that may allow an authenticated attacker with at least a resource administrator role to bypass tmsh rest...

2025-10-15
CVE-2025-61956
Analyzed
10
Unknown Multiple Products

Radiometrics VizAir is vulnerable to a lack of authentication mechanisms for critical functions, such as admin access and API requests. Attackers can...

2025-11-04
CVE-2025-61955
8.8
F5 Multiple Products

A vulnerability exists in F5OS-A and F5OS-C systems that may allow an authenticated attacker with local access to escalate their privileges

2025-10-15
CVE-2025-61951
7.5
Undisclosed Multiple Products

Undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate

2025-10-16
CVE-2025-61945
Analyzed
10
Unknown Multiple Products

Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the a...

2025-11-04
CVE-2025-61943
8.4
Unknown Multiple Products

The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Standard User) to tamper with queries in Captive Histo...

2026-01-16
CVE-2025-61941
7.2
Unknown Multiple Products

A path traversal issue exists in WXR9300BE6P series firmware versions prior to Ver

2025-10-16
CVE-2025-61940
8.3
Unknown Multiple Products

NMIS/BioDose V22

2025-12-03
CVE-2025-61939
8.8
Unknown Multiple Products

An unused function in MicroServer can start a reverse SSH connection to a vendor registered domain, without mutual authentication

2026-01-08
CVE-2025-61938
7.5
Unknown Multiple Products

When a BIG-IP Advanced WAF or ASM security policy is configured with a URL greater than 1024 characters in length for the Data Guard Protection Enforc...

2025-10-16