17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 10751-10800 of 17282 CVEs Page 216 of 346
CVE-2025-59886
8.8
Unknown Multiple Products

Improper input validation at one of the endpoints of Eaton xComfort ECI's web interface, could lead into an attacker with network access to the devi...

2025-12-24
CVE-2025-59870
7.4
HCL Multiple Products

HCL MyXalytics v6

2026-01-18
CVE-2025-59845
8.2
Apollo Multiple Products

Apollo Studio Embeddable Explorer & Embeddable Sandbox are website embeddable software solutions from Apollo GraphQL

2025-09-26
CVE-2025-59841
Analyzed
9.8
Unknown Multiple Products

Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.2.0 to before 2.3.1, the FlagForge web application improperly handles session inva...

2025-09-25
CVE-2025-59840
8.1
Vega Multiple Products

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs

2025-11-14
CVE-2025-59839
8.6
EmbedVideo Multiple Products

The EmbedVideo Extension is a MediaWiki extension which adds a parser function called #ev and various parser tags for embedding video clips from vario...

2025-09-25
CVE-2025-59837
7.2
Astro Multiple Products

Astro is a web framework that includes an image proxy

2025-10-29
CVE-2025-59834
Analyzed
9.8
Google Multiple Products

ADB MCP Server is a MCP (Model Context Protocol) server for interacting with Android devices through ADB. In versions 0.1.0 and prior, the MCP Server...

2025-09-25
CVE-2025-59833
7.5
Flag Multiple Products

Flag Forge is a Capture The Flag (CTF) platform

2025-09-24
CVE-2025-59832
Analyzed
9.9
Unknown Multiple Products

Horilla is a free and open source Human Resource Management System (HRMS). Prior to version 1.4.0, there is a stored XSS vulnerability in the ticket c...

2025-09-25
CVE-2025-59830
Analyzed
7.5
Unknown Multiple Products

Rack is a modular Ruby web server interface

2025-09-25
CVE-2025-59827
8.2
Flag Multiple Products

Flag Forge is a Capture The Flag (CTF) platform

2025-09-24
CVE-2025-59826
7.6
Flag Multiple Products

Flag Forge is a Capture The Flag (CTF) platform

2025-09-23
CVE-2025-59823
Analyzed
9.9
Kubernetes Multiple Products

Project Gardener implements the automated management and operation of Kubernetes clusters as a service. Code injection may be possible in Gardener Ext...

2025-09-25
CVE-2025-59818
Analyzed
10
Unknown Unknown Software

An authenticated RCE vulnerability exists in an unspecified software product where arbitrary commands can be executed via the filename of an uploaded...

2026-02-05
CVE-2025-59817
Analyzed
9.1
Unknown Multiple Products

This vulnerability allows attackers to execute arbitrary commands on the underlying system. Because the web portal runs with root privileges, successf...

2025-09-25
CVE-2025-59816
Analyzed
8.1
Unknown Multiple Products

This vulnerability allows attackers to directly query the underlying database, potentially retrieving all data stored in the Billing Admin database, i...

2025-09-25
CVE-2025-59815
Analyzed
9.1
Unknown Multiple Products

This vulnerability allows malicious actors to execute arbitrary commands on the underlying system of the Zenitel ICX500 and ICX510 Gateway, granting s...

2025-09-25
CVE-2025-59814
Analyzed
9.8
Unknown Multiple Products

This vulnerability allows malicious actors to gain unauthorized access to the Zenitel ICX500 and ICX510 Gateway Billing Admin endpoint, enabling them...

2025-09-25
CVE-2025-59802
Analyzed
7.5
Reader Multiple Products

Foxit PDF Editor and Reader before 2025

2025-12-12
CVE-2025-59789
Analyzed
7.5
Apache Multiple Products

Uncontrolled recursion in the json2pb component in Apache bRPC (version < 1

2025-12-02
CVE-2025-59781
7.5
Unknown Multiple Products

When DNS cache is configured on a BIG-IP or BIG-IP Next CNF virtual server, undisclosed DNS queries can cause an increase in memory resource utilizati...

2025-10-16
CVE-2025-59780
Analyzed
7.5
Unknown Multiple Products

General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to send GET req...

2025-11-15
CVE-2025-59778
7.5
F5 Multiple Products

When the Allowed IP Addresses feature is configured on the F5OS-C partition control plane, undisclosed traffic can cause multiple containers to termin...

2025-10-16
CVE-2025-59777
7.5
IBM Multiple Products

NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1

2025-11-11
CVE-2025-59775
Analyzed
7.5
Microsoft Multiple Products

Server-Side Request Forgery (SSRF) vulnerability  in Apache HTTP Server on Windows with AllowEncodedSlashes On and MergeSlashes Off  allows to pot...

2025-12-06
CVE-2025-59745
7.5
Unknown Multiple Products

Vulnerability in the cryptographic algorithm of AndSoft's e-TMS v25

2025-10-02
CVE-2025-59744
7.5
Path traversal Multiple Products

Path traversal vulnerability in AndSoft's e-TMS v25

2025-10-02
CVE-2025-59743
Analyzed
9.8
Unknown Multiple Products

SQL injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability could allow an attacker to retrieve, create, update, and delete databases by...

2025-10-02
CVE-2025-59742
Analyzed
9.8
Unknown Multiple Products

SQL injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability could allow an attacker to retrieve, create, update, and delete databases by...

2025-10-02
CVE-2025-59741
Analyzed
9.8
Unknown Multiple Products

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands...

2025-10-02
CVE-2025-59740
Analyzed
9.8
Unknown Multiple Products

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands...

2025-10-02
CVE-2025-59739
Analyzed
9.8
Unknown Multiple Products

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands...

2025-10-02
CVE-2025-59738
Analyzed
9.8
HP Multiple Products

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands...

2025-10-02
CVE-2025-59737
Analyzed
9.8
Unknown Multiple Products

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands...

2025-10-02
CVE-2025-59736
Analyzed
9.8
Unknown Multiple Products

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands...

2025-10-02
CVE-2025-59735
Analyzed
9.8
Unknown Multiple Products

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands...

2025-10-02
CVE-2025-59719
Analyzed
9.8
Fortinet Multiple Products

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4...

2025-12-10
CVE-2025-59718
KEV Analyzed
9.8
Apple Multiple Products

A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 t...

2025-12-10
CVE-2025-59711
Analyzed
8.3
Microsoft BizTalk360

An issue was discovered in Biztalk360 before 11

2026-04-04
CVE-2025-59703
Analyzed
9.1
Entrust nShield Connect Multiple Products

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to access the internal compon...

2025-12-04
CVE-2025-59702
7.2
HSMi Multiple Products

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13

2025-12-03
CVE-2025-59697
7.2
HSMi Multiple Products

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13

2025-12-03
CVE-2025-59693
Analyzed
9.8
Unknown Multiple Products

The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attac...

2025-12-04
CVE-2025-59689
KEV
9.5
Libraesva Email Security Gateway

Libraesva Email Security Gateway Command Injection Vulnerability - Active in CISA KEV catalog.

2025-09-29
CVE-2025-59684
Analyzed
8.8
DigiSigner Multiple Products

DigiSign DigiSigner ONE 1

2025-10-01
CVE-2025-59683
8.2
Pexip Multiple Products

Pexip Infinity 15

2025-12-25
CVE-2025-59681
7.1
Unknown Multiple Products

An issue was discovered in Django 4

2025-10-01
CVE-2025-59668
7.5
Unknown Multiple Products

Multiple versions of Central Monitor CNS-6201 contain a NULL pointer dereference vulnerability

2025-09-30
CVE-2025-5965
7.2
Unknown Multiple Products

In the backup parameters, a user with high privilege is able to concatenate custom instructions to the backup setup

2026-01-06