17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 11951-12000 of 17282 CVEs Page 240 of 346
CVE-2025-53510
8.8
Unknown Multiple Products

A memory corruption vulnerability exists in the PSD Image Decoding functionality of the SAIL Image Decoding Library v0

2025-08-25
CVE-2025-53508
Analyzed
7.2
Unknown Multiple Products

Multiple products provided by iND Co

2025-08-29
CVE-2025-53503
Analyzed
7.8
Trend Micro Multiple Products

Trend Micro Cleaner One Pro is vulnerable to a Privilege Escalation vulnerability that could allow a local attacker to unintentionally delete privileg...

2025-07-11
CVE-2025-53501
8.8
Unknown Multiple Products

Improper Access Control vulnerability in Wikimedia Foundation Mediawiki - Scribunto Extension allows : Accessing Functionality Not Properly Constraine...

2025-07-06
CVE-2025-53484
Analyzed
9.8
HP Multiple Products

User-controlled inputs are improperly escaped in: * VotePage.php (poll option input) * ResultPage::getPagesTab() and getErrorsTab() (us...

2025-07-08
CVE-2025-53475
Analyzed
8.8
Unknown Multiple Products

A vulnerability exists in Advantech iView that could allow for SQL injection and remote code execution through NetworkServlet

2025-07-11
CVE-2025-53474
7.5
Unknown Multiple Products

When an iRule using an ILX::call command is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to...

2025-10-16
CVE-2025-53472
7.2
Unknown Multiple Products

WRC-BE36QS-B and WRC-W701-B contain an improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in Web...

2025-07-23
CVE-2025-53468
Analyzed
8.5
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus@hotmail

2025-09-22
CVE-2025-53465
7.2
Unknown Multiple Products

Deserialization of Untrusted Data vulnerability in raoinfotech GSheets Connector allows Object Injection

2025-09-22
CVE-2025-53453
Analyzed
8.2
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Hygia hygia allow...

2025-12-19
CVE-2025-53450
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Pluginwale Easy Pricing Table...

2025-09-22
CVE-2025-53433
Analyzed
9.8
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes EasyEat easyeat...

2025-12-19
CVE-2025-53429
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Exit Game exit-g...

2025-12-19
CVE-2025-53428
8.8
Unknown Multiple Products

Incorrect Privilege Assignment vulnerability in N-Media Simple User Registration wp-registration allows Privilege Escalation

2025-10-23
CVE-2025-53427
7.4
Chibueze Okechukwu Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chibueze Okechukwu SEO Pyramid seo-pyramid allow...

2025-10-23
CVE-2025-53425
7.6
Unknown Multiple Products

Incorrect Privilege Assignment vulnerability in Dokan, Inc

2025-10-23
CVE-2025-53419
7.8
Delta Multiple Products

Delta Electronics COMMGR has Code Injection vulnerability

2025-08-26
CVE-2025-53418
Analyzed
8.6
Delta Multiple Products

Delta Electronics COMMGR has Stack-based Buffer Overflow vulnerability

2025-08-26
CVE-2025-53415
7.8
Unknown Multiple Products

Delta Electronics DTM Soft Project File Parsing Deserialization of Untrusted Data Remote Code Execution

2025-07-06
CVE-2025-53396
Analyzed
7
Unknown Multiple Products

Incorrect permission assignment for critical resource issue exists in SS1 Ver

2025-08-29
CVE-2025-53395
7.7
Reflect Multiple Products

Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code with administrator privileges via a crafted

2025-08-05
CVE-2025-53394
7.7
Reflect Multiple Products

Paramount Macrium Reflect through 2025-06-26 allows attackers to execute arbitrary code with administrator privileges via a crafted

2025-08-05
CVE-2025-5339
Analyzed
7.5
WordPress Multiple Products

The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘bsa_pro_id’ p...

2025-07-05
CVE-2025-53378
Analyzed
7.6
Trend Micro Multiple Products

A missing authentication vulnerability in Trend Micro Worry-Free Business Security Services (WFBSS) agent could have allowed an unauthenticated attack...

2025-07-11
CVE-2025-53371
Analyzed
9.1
Discord Multiple Products

DiscordNotifications is an extension for MediaWiki that sends notifications of actions in your Wiki to a Discord channel. DiscordNotifications allows...

2025-07-11
CVE-2025-53370
8.6
Unknown Multiple Products

Citizen is a MediaWiki skin that makes extensions part of the cohesive experience

2025-07-06
CVE-2025-53369
8.6
Unknown Multiple Products

Short Description is a MediaWiki extension that provides local short description support

2025-07-06
CVE-2025-53368
8.6
Unknown Multiple Products

Citizen is a MediaWiki skin that makes extensions part of the cohesive experience

2025-07-06
CVE-2025-53345
Analyzed
8.8
ThimPress Thim Core

Missing Authorization vulnerability leading to code execution after installing malicious vulnerable plugin in ThimPress Thim Core

2026-06-03
CVE-2025-53334
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in TieLabs Jannah allows PHP Loc...

2025-08-28
CVE-2025-53328
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Assaf Parag Poll, Survey & Qu...

2025-08-28
CVE-2025-53326
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in CodeYatri Gutenify allows PHP...

2025-08-28
CVE-2025-53319
7.1
Raptive Raptive Ads Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Raptive Raptive Ads allows Reflected XSS

2025-08-20
CVE-2025-53303
Analyzed
8.8
HP Multiple Products

Deserialization of Untrusted Data vulnerability in ThemeMove ThemeMove Core allows Object Injection

2025-09-09
CVE-2025-53299
Analyzed
9.8
Unknown Multiple Products

Deserialization of Untrusted Data vulnerability in ThemeMakers ThemeMakers Visual Content Composer allows Object Injection. This issue affects ThemeMa...

2025-08-20
CVE-2025-5329
Analyzed
9.8
Delta Course Automation

Delta Course Automation is vulnerable to a critical SQL Injection flaw that allows attackers to manipulate database commands. The vendor has not respo...

2026-02-05
CVE-2025-53289
Analyzed
7.1
Jason Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jason Theme Blvd Widget Areas allows Reflected X...

2025-08-28
CVE-2025-53251
Analyzed
9.9
Unknown Multiple Products

Unrestricted Upload of File with Dangerous Type vulnerability in An-Themes Pin WP allows Upload a Web Shell to a Web Server.This issue affects Pin WP:...

2025-08-21
CVE-2025-53248
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Unfoldwp Magazine allows PHP...

2025-08-28
CVE-2025-53247
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WPInterface BlogMarks allows...

2025-08-28
CVE-2025-53244
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Unfoldwp Magazine Elite allow...

2025-08-28
CVE-2025-53243
Analyzed
8.1
WordPress Multiple Products

Deserialization of Untrusted Data vulnerability in emarket-design Employee Directory – Staff Listing & Team Directory Plugin for WordPress allows...

2025-08-28
CVE-2025-53235
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in osuthorpe Easy Social allows Reflected XSS

2026-01-01
CVE-2025-53230
Analyzed
7.6
Page Multiple Products

Missing Authorization vulnerability in honzat Page Manager for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels

2025-08-28
CVE-2025-53227
Analyzed
8.1
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Unfoldwp Magazine Saga allows...

2025-08-28
CVE-2025-53226
7.1
Zoom Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in digitalzoomstudio Comments Capcha Box allows Ref...

2025-08-20
CVE-2025-53225
Analyzed
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in eboekhouden e-Boekhouden

2025-08-28
CVE-2025-53224
Analyzed
7.1
Koen Schuit NextGEN Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Koen Schuit NextGEN Gallery Search allows Reflec...

2025-08-28
CVE-2025-53223
Analyzed
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in undoIT Theme Switcher Reloaded allows Reflected...

2025-08-28