17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 14701-14750 of 17282 CVEs Page 295 of 346
CVE-2025-13673
Analyzed
7.5
WordPress is vulnerable

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to SQL Injection via the 'coupon_code' parameter in all versio...

2026-02-28
CVE-2025-13662
7.8
Endpoint Multiple Products

Improper verification of cryptographic signatures in the patch management component of Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a...

2025-12-10
CVE-2025-13659
8.8
Endpoint Multiple Products

Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote, unauthenticated attac...

2025-12-10
CVE-2025-13654
7.5
Unknown Multiple Products

A stack buffer overflow vulnerability exists in the buffer_get function of duc, a disk management tool, where a condition can evaluate to true due to...

2025-12-06
CVE-2025-13646
Analyzed
7.5
WordPress Multiple Products

The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajax_unzip_file' fun...

2025-12-03
CVE-2025-13645
Analyzed
7.2
WordPress Multiple Products

The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajax_unzip_fil...

2025-12-03
CVE-2025-13641
Analyzed
8.8
WordPress Multiple Products

The Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, an...

2025-12-19
CVE-2025-13638
Analyzed
8.8
Google Multiple Products

Use after free in Media Stream in Google Chrome prior to 143

2025-12-03
CVE-2025-13633
Analyzed
8.8
Google Multiple Products

Use after free in Digital Credentials in Google Chrome prior to 143

2025-12-03
CVE-2025-13631
Analyzed
8.8
Google Multiple Products

Inappropriate implementation in Google Updater in Google Chrome on Mac prior to 143

2025-12-03
CVE-2025-13630
Analyzed
8.8
Google Multiple Products

Type Confusion in V8 in Google Chrome prior to 143

2025-12-03
CVE-2025-13619
Analyzed
9.8
WordPress Multiple Products

The Flex Store Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.0. This is due to the 'fsUse...

2025-12-20
CVE-2025-13618
Analyzed
9.8
WordPress is vulnerable

The Mentoring plugin for WordPress contains a privilege escalation vulnerability that allows unauthenticated attackers to register as administrators.

2026-05-05
CVE-2025-13615
Analyzed
9.8
WordPress Multiple Products

The StreamTube Core plugin for WordPress is vulnerable to Arbitrary User Password Change in versions up to, and including, 4.78. This is due to the pl...

2025-12-01
CVE-2025-13614
Analyzed
8.1
WordPress Multiple Products

The Cool Tag Cloud plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'cool_tag_cloud' shortcode in all versions up to...

2025-12-06
CVE-2025-13613
Analyzed
9.8
WordPress Multiple Products

The Elated Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.2. This is due to the plugin...

2025-12-11
CVE-2025-13609
8.2
Unknown Multiple Products

A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new agent using a different Trusted Platform M...

2025-11-25
CVE-2025-13607
Analyzed
9.4
Unknown Multiple Products

A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL.

2025-12-11
CVE-2025-13603
8.8
WordPress is vulnerable

The WP AUDIO GALLERY plugin for WordPress is vulnerable to Unauthorized Arbitrary File Read in all versions up to, and including, 2

2026-02-20
CVE-2025-13601
Analyzed
7.7
Unknown Multiple Products

A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function

2025-11-27
CVE-2025-13597
Analyzed
9.8
HP Multiple Products

The AI Feeds plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check in the 'actualizador_git.php' file in all ve...

2025-11-26
CVE-2025-13595
Analyzed
9.8
HP Multiple Products

The CIBELES AI plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check in the 'actualizador_git.php' file in all...

2025-11-26
CVE-2025-13592
Analyzed
7.2
WordPress Multiple Products

The Advanced Ads plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2

2025-12-30
CVE-2025-13590
Analyzed
9.1
Unknown System REST API

A critical flaw in a system REST API allows an authenticated administrator to upload arbitrary files to user-controlled locations, leading to remote c...

2026-02-20
CVE-2025-13585
7.3
Tracking Multiple Products

A vulnerability was detected in code-projects COVID Tracking System 1

2025-11-25
CVE-2025-13583
7.3
Paper Multiple Products

A weakness has been identified in code-projects Question Paper Generator 1

2025-11-25
CVE-2025-13582
7.3
Jonnys Multiple Products

A security flaw has been discovered in code-projects Jonnys Liquor 1

2025-11-25
CVE-2025-13578
7.3
Library Multiple Products

A vulnerability has been found in code-projects Library System 1

2025-11-25
CVE-2025-13572
7.3
Unknown Multiple Products

A vulnerability was identified in projectworlds Advanced Library Management System 1

2025-11-23
CVE-2025-13563
Analyzed
9.8
WordPress is vulnerable

The Lizza LMS Pro plugin for WordPress is vulnerable to privilege escalation, enabling unauthenticated attackers to register as administrators and tak...

2026-02-20
CVE-2025-13562
7.3
D-Link Multiple Products

A vulnerability was identified in D-Link DIR-852 1

2025-11-23
CVE-2025-13561
7.3
Website Multiple Products

A vulnerability was determined in SourceCodester Company Website CMS 1

2025-11-23
CVE-2025-13560
7.3
Website Multiple Products

A vulnerability was found in SourceCodester Company Website CMS 1

2025-11-23
CVE-2025-13559
Analyzed
9.8
WordPress Multiple Products

The EduKart Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.3. This is due to the 'edukart_pr...

2025-11-26
CVE-2025-13557
Analyzed
7.3
Polling Multiple Products

A vulnerability has been found in Campcodes Online Polling System 1

2025-11-23
CVE-2025-13556
Analyzed
7.3
Polling Multiple Products

A flaw has been found in Campcodes Online Polling System 1

2025-11-23
CVE-2025-13555
Analyzed
7.3
HP Multiple Products

A vulnerability was detected in Campcodes School File Management System 1

2025-11-23
CVE-2025-13554
Analyzed
7.3
Unknown Multiple Products

A security vulnerability has been detected in Campcodes Supplier Management System 1

2025-11-23
CVE-2025-13553
Analyzed
8.8
D-Link Multiple Products

A weakness has been identified in D-Link DWR-M920 1

2025-11-23
CVE-2025-13552
Analyzed
8.8
D-Link Multiple Products

A security flaw has been discovered in D-Link DIR-822K and DWR-M920 1

2025-11-23
CVE-2025-13551
Analyzed
8.8
D-Link Multiple Products

A vulnerability was identified in D-Link DIR-822K and DWR-M920 1

2025-11-23
CVE-2025-13550
Analyzed
8.8
D-Link Multiple Products

A vulnerability was determined in D-Link DIR-822K and DWR-M920 1

2025-11-23
CVE-2025-13549
Analyzed
8.8
D-Link Multiple Products

A vulnerability was found in D-Link DIR-822K 1

2025-11-23
CVE-2025-13548
Analyzed
8.8
D-Link Multiple Products

A vulnerability has been found in D-Link DIR-822K and DWR-M920 1

2025-11-23
CVE-2025-13547
Analyzed
8.8
D-Link Multiple Products

A flaw has been found in D-Link DIR-822K and DWR-M920 1

2025-11-23
CVE-2025-13543
Analyzed
8.8
WordPress Multiple Products

The PostGallery plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the 'PostGalleryUploader' class...

2025-12-05
CVE-2025-13542
Analyzed
9.8
WordPress Multiple Products

The DesignThemes LMS plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.4. This is due to the 'dtlms...

2025-12-04
CVE-2025-13540
Analyzed
9.8
WordPress Multiple Products

The Tiare Membership plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2. This is due to the 'tiare_m...

2025-11-28
CVE-2025-13539
Analyzed
9.8
Google Multiple Products

The FindAll Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.4. This is due to the plu...

2025-11-28
CVE-2025-13538
Analyzed
9.8
WordPress Multiple Products

The FindAll Listing plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.5. This is due to the 'findal...

2025-11-28