17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 14401-14450 of 17282 CVEs Page 289 of 346
CVE-2025-14855
Analyzed
7.2
WordPress Multiple Products

The SureForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form field parameters in all versions up to, and including, 2

2025-12-21
CVE-2025-14850
8.1
Advantech Multiple Products

Advantech WebAccess/SCADA is vulnerable to directory traversal, which may allow an attacker to delete arbitrary files

2025-12-20
CVE-2025-14849
8.8
Advantech Multiple Products

Advantech WebAccess/SCADA  is vulnerable to unrestricted file upload, which may allow an attacker to remotely execute arbitrary code

2025-12-19
CVE-2025-14847
KEV
7.5
Unknown Multiple Products

Mismatched length fields in Zlib compressed protocol headers may allow a read of uninitialized heap memory by an unauthenticated client

2025-12-20
CVE-2025-14844
Analyzed
8.2
WordPress Multiple Products

The Membership Plugin – Restrict Content plugin for WordPress is vulnerable to Missing Authentication in all versions up to, and including, 3

2026-01-17
CVE-2025-14840
7.5
Drupal Multiple Products

Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal HTTP Client Manager allows Forceful Browsing

2026-01-30
CVE-2025-14835
7.1
WordPress Multiple Products

The WP Photo Album Plus plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘shortcode’ parameter in all versions up to, and...

2026-01-08
CVE-2025-14833
7.3
Unknown Multiple Products

A security flaw has been discovered in code-projects Online Appointment Booking System 1

2025-12-18
CVE-2025-14832
7.3
Unknown Multiple Products

A vulnerability was identified in itsourcecode Online Cake Ordering System 1

2025-12-18
CVE-2025-14829
Analyzed
9.1
WordPress Multiple Products

The E-xact | Hosted Payment | WordPress plugin through 2.0 is vulnerable to arbitrary file deletion due to insufficient file path validation. This mak...

2026-01-14
CVE-2025-14821
7.8
Infor Multiple Products

A flaw was found in libssh

2026-04-08
CVE-2025-14812
Analyzed
7.5
Apple Multiple Products

ArcSearch for iOS versions prior to 1

2025-12-20
CVE-2025-14809
Analyzed
7.4
Google Multiple Products

ArcSearch for Android versions prior to 1

2025-12-20
CVE-2025-14804
Analyzed
7.7
WordPress Multiple Products

The Frontend File Manager Plugin WordPress plugin before 23

2026-01-08
CVE-2025-14800
Analyzed
8.1
WordPress Multiple Products

The Redirection for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'move_file_...

2025-12-21
CVE-2025-14772
Analyzed
8.8
ABB T-MAC Plus

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus

2026-06-04
CVE-2025-14771
Analyzed
9.9
ABB T-MAC Plus

A vulnerability in ABB T-MAC Plus allows unauthorized external parties to access restricted files or directories.

2026-06-04
CVE-2025-14769
7.5
Unknown Multiple Products

In some cases, the `tcp-setmss` handler may free the packet data and throw an error without halting the rule processing engine

2026-03-10
CVE-2025-14765
Analyzed
8.8
Google Multiple Products

Use after free in WebGPU in Google Chrome prior to 143

2025-12-18
CVE-2025-14741
Analyzed
9.1
WordPress Multiple Products

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to missing authorization to unauthorized data modification and deletion due to a m...

2026-01-10
CVE-2025-14736
Analyzed
9.8
WordPress Multiple Products

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.28.25. This is due...

2026-01-09
CVE-2025-14733
KEV
9.8
Microsoft Multiple Products

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to execute arbitrary code. This vulnerabili...

2025-12-20
CVE-2025-14727
Analyzed
8.3
Nginx Multiple Products

A vulnerability exists in NGINX Ingress Controller's nginx

2025-12-18
CVE-2025-14712
Analyzed
7.5
Student Multiple Products

Student Learning Assessment and Support System developed by JHENG GAO has a Exposure of Sensitive Information vulnerability, allowing unauthenticated...

2025-12-15
CVE-2025-14711
7.3
Hotels Multiple Products

A flaw has been found in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0

2025-12-15
CVE-2025-14710
7.3
Hotels Multiple Products

A vulnerability was detected in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0

2025-12-15
CVE-2025-14709
Analyzed
9.8
Unknown Multiple Products

A security vulnerability has been detected in Shiguangwu sgwbox N3 2.0.25. Affected by this issue is some unknown functionality of the file /usr/sbin/...

2025-12-15
CVE-2025-14708
Analyzed
9.8
Unknown Multiple Products

A weakness has been identified in Shiguangwu sgwbox N3 2.0.25. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/http_e...

2025-12-15
CVE-2025-14707
Analyzed
9.8
Docker Multiple Products

A security flaw has been discovered in Shiguangwu sgwbox N3 2.0.25. Affected is an unknown function of the file /usr/sbin/http_eshell_server of the co...

2025-12-15
CVE-2025-14706
Analyzed
9.8
Unknown Multiple Products

A vulnerability was identified in Shiguangwu sgwbox N3 2.0.25. This impacts an unknown function of the file /usr/sbin/http_eshell_server of the compon...

2025-12-15
CVE-2025-14705
Analyzed
9.8
Unknown Multiple Products

A vulnerability was determined in Shiguangwu sgwbox N3 2.0.25. This affects an unknown function of the component SHARESERVER Feature. This manipulatio...

2025-12-15
CVE-2025-14704
7.3
Unknown Multiple Products

A vulnerability was found in Shiguangwu sgwbox N3 2

2025-12-15
CVE-2025-14701
7.1
Unknown Multiple Products

An input neutralization vulnerability in the Server MOTD component of Crafty Controller allows a remote, unauthenticated attacker to perform stored XS...

2025-12-17
CVE-2025-14700
Analyzed
9.9
Unknown Multiple Products

An input neutralization vulnerability in the Webhook Template component of Crafty Controller allows a remote, authenticated attacker to perform remote...

2025-12-17
CVE-2025-14675
7.2
WordPress is vulnerable

The Meta Box plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajax_delete_file' function...

2026-03-08
CVE-2025-14673
7.3
Unknown Multiple Products

A vulnerability has been found in gmg137 snap7-rs up to 1

2025-12-15
CVE-2025-14672
7.3
Unknown Multiple Products

A flaw has been found in gmg137 snap7-rs up to 1

2025-12-15
CVE-2025-14668
7.3
Examination Multiple Products

A vulnerability was detected in campcodes Advanced Online Examination System 1

2025-12-15
CVE-2025-14667
7.3
Tracking Multiple Products

A security vulnerability has been detected in itsourcecode COVID Tracking System 1

2025-12-15
CVE-2025-14666
7.3
Tracking Multiple Products

A weakness has been identified in itsourcecode COVID Tracking System 1

2025-12-15
CVE-2025-14665
Analyzed
9.8
Tenda Multiple Products

A security flaw has been discovered in Tenda WH450 1.0.0.18. Impacted is an unknown function of the file /goform/DhcpListClient of the component HTTP...

2025-12-15
CVE-2025-14664
7.3
Unknown Multiple Products

A vulnerability was identified in Campcodes Supplier Management System 1

2025-12-15
CVE-2025-14661
7.3
Managemen Multiple Products

A vulnerability has been found in itsourcecode Student Managemen System 1

2025-12-15
CVE-2025-14659
Analyzed
8.8
D-Link Multiple Products

A vulnerability was detected in D-Link DIR-860LB1 and DIR-868LB1 203b01/203b03

2025-12-15
CVE-2025-14657
7.2
WordPress Multiple Products

The Eventin – Event Manager, Events Calendar, Event Tickets and Registrations plugin for WordPress is vulnerable to unauthorized modification of data...

2026-01-09
CVE-2025-14656
Analyzed
8.8
Tenda Multiple Products

A weakness has been identified in Tenda AC20 16

2025-12-15
CVE-2025-14655
Analyzed
8.8
Tenda Multiple Products

A security flaw has been discovered in Tenda AC20 16

2025-12-15
CVE-2025-14654
Analyzed
8.8
Tenda Multiple Products

A vulnerability was identified in Tenda AC20 16

2025-12-14
CVE-2025-14653
7.3
Unknown Multiple Products

A vulnerability was determined in itsourcecode Student Management System 1

2025-12-14
CVE-2025-14652
7.3
Unknown Multiple Products

A vulnerability was found in itsourcecode Online Cake Ordering System 1

2025-12-14