CVEs from 2025
Total
12,202
critical
critical 1,301
high
high 1,894
medium
medium 1,908
low
low 193
% Critical
10.7%
% with KEV
1.5%
% with exploit
1.5%
Top vendors
- fabian 285
- campcodes 232
- phpgurukul 189
- code-projects 121
- microsoft 107
- redhat 106
- portabilis 94
- mayurik 79
Top products
- i-educar 80
- office_long_term_servicing_channel 35
- office 34
- best_salon_management_system 33
- apartment_management_system 30
- inventory_management_system 28
- gcp 24
- online_learning_management_system 21
Top packages
- Go/github.com/mattermost/mattermost/server/v8 258
- Go/github.com/mattermost/mattermost-server 249
- Packagist/magento/community-edition 231
- Packagist/moodle/moodle 162
- Go/github.com/mattermost/mattermost-server/v5 99
- Go/github.com/mattermost/mattermost-server/v6 99
- Maven/com.liferay.portal:release.dxp.bom 61
- Maven/org.apache.tomcat.embed:tomcat-embed-core 53
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2025-9689 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/stock/item_select. The manipulation of the arg… | |
| CVE-2025-9687 | high | 8.8 | 8.8 | 9mo ago | A weakness has been identified in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /module/HistoricoEscolar/processamentoApi. Executing manipulation can lead to improper au… | |
| CVE-2025-9686 | high | 8.8 | 8.8 | 9mo ago | A security flaw has been discovered in Portabilis i-Educar up to 2.10. This issue affects some unknown processing of the file /module/AreaConhecimento/edit of the component Listagem de áreas de conhe… | |
| CVE-2025-9685 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was identified in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /module/AreaConhecimento/view of the component Listagem de áreas de conhecimento … | |
| CVE-2025-9684 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was determined in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/FormulaMedia/edit of the component Formula de Cálculo de Média Page. This manipulati… | |
| CVE-2025-9667 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was detected in code-projects Simple Grading System 1.0. This affects an unknown part of the file /delete_account.php of the component Admin Panel. Performing manipulation of the argu… | |
| CVE-2025-9666 | high | 8.8 | 8.8 | 9mo ago | A security vulnerability has been detected in code-projects Simple Grading System 1.0. Affected by this issue is some unknown functionality of the file /delete_student.php of the component Admin Pane… | |
| CVE-2025-9665 | high | 8.8 | 8.8 | 9mo ago | A weakness has been identified in code-projects Simple Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit_student.php of the component Admin Panel. This … | |
| CVE-2025-9664 | high | 8.8 | 8.8 | 9mo ago | A security flaw has been discovered in code-projects Simple Grading System 1.0. Affected is an unknown function of the file /add_student_grade.php of the component Admin Panel. The manipulation of th… | |
| CVE-2025-9663 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was identified in code-projects Simple Grading System 1.0. This impacts an unknown function of the file /edit_account.php of the component Admin Panel. The manipulation of the argumen… | |
| CVE-2025-9609 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was found in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /educacenso/consulta. The manipulation results in improper authorization. The attack c… | |
| CVE-2025-9608 | high | 8.8 | 8.8 | 9mo ago | A vulnerability has been found in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/FormulaMedia/view of the component Formula de Cálculo de Média Page. The manipulatio… | |
| CVE-2025-9607 | high | 8.8 | 8.8 | 9mo ago | A flaw has been found in Portabilis i-Educar up to 2.10. Affected by this issue is some unknown functionality of the file /module/TabelaArredondamento/view of the component Tabelas de Arredondamento … | |
| CVE-2025-9606 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was detected in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /intranet/agenda_preferencias.php. Performing manipulation of th… | |
| CVE-2025-9586 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was identified in Comfast CF-N1 2.6.0. This vulnerability affects the function wireless_device_dissoc of the file /usr/bin/webmgnt. Such manipulation of the argument mac leads to comm… | |
| CVE-2025-9585 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was determined in Comfast CF-N1 2.6.0. This affects the function wifilith_delete_pic_file of the file /usr/bin/webmgnt. This manipulation of the argument portal_delete_picname causes … | |
| CVE-2025-9584 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was found in Comfast CF-N1 2.6.0. Affected by this issue is the function update_interface_png of the file /usr/bin/webmgnt. The manipulation of the argument interface/display_name res… | |
| CVE-2025-9583 | high | 8.8 | 8.8 | 9mo ago | A vulnerability has been found in Comfast CF-N1 2.6.0. Affected by this vulnerability is the function ping_config of the file /usr/bin/webmgnt. The manipulation leads to command injection. Remote exp… | |
| CVE-2025-9580 | high | 8.8 | 8.8 | 9mo ago | A security vulnerability has been detected in LB-LINK BL-X26 1.2.8. This affects an unknown function of the file /goform/set_blacklist of the component HTTP Handler. Such manipulation of the argument… | |
| CVE-2025-9579 | high | 8.8 | 8.8 | 9mo ago | A weakness has been identified in LB-LINK BL-X26 1.2.8. The impacted element is an unknown function of the file /goform/set_hidessid_cfg of the component HTTP Handler. This manipulation of the argume… | |
| CVE-2025-9575 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This issue affects the function cgiMain of the fil… | |
| CVE-2025-49407 | high | 8.8 | 8.8 | 9mo ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in favethemes Houzez allows Reflected XSS. This issue affects Houzez: from n/a through 4.1.1. | |
| CVE-2025-9532 | high | 8.8 | 8.8 | 9mo ago | A flaw has been found in Portabilis i-Educar up to 2.10. This impacts an unknown function of the file /RegraAvaliacao/view. Executing manipulation of the argument ID can lead to sql injection. It is … | |
| CVE-2025-9531 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was detected in Portabilis i-Educar up to 2.10. This affects an unknown function of the file /intranet/agenda.php of the component Agenda Module. Performing manipulation of the argume… | |
| CVE-2025-9417 | high | 8.8 | 8.8 | 9mo ago | A weakness has been identified in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /employee/addemployee.php. This manipulation of the argument ID … | |
| CVE-2025-9400 | high | 8.8 | 8.8 | 9mo ago | A flaw has been found in YiFang CMS up to 2.0.5. This affects the function mergeMultipartUpload of the file app/utils/base/plugin/P_file.php. This manipulation of the argument File causes unrestricte… | |
| CVE-2025-9399 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was detected in YiFang CMS up to 2.0.5. Affected by this issue is some unknown functionality of the file app/logic/L_tool.php. The manipulation of the argument new_url results in sql … | |
| CVE-2025-9244 | high | 8.8 | 8.8 | 9mo ago | A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the functio… | |
| CVE-2025-9236 | high | 8.8 | 8.8 | 9mo ago | A vulnerability has been found in Portabilis i-Educar up to 2.10. This affects an unknown function of the file /intranet/educar_tipo_usuario_lst.php of the component Tipos de usuàrio Page. Such manip… | |
| CVE-2025-9153 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of th… | |
| CVE-2025-9140 | high | 8.8 | 8.8 | 9mo ago | A vulnerability was identified in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.4.7. Affected by this issue is some unknown functionality of the file /crm/crmapi/erp/tabdetail_modul… | |
| CVE-2025-49897 | high | 8.8 | 8.8 | 10mo ago | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus Vertical scroll slideshow gallery v2 allows Blind SQL Injection. This issue affects Vert… | |
| CVE-2025-9025 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was determined in code-projects Simple Cafe Ordering System 1.0. Affected by this issue is some unknown functionality of the file /portal.php. The manipulation of the argument ID lead… | |
| CVE-2025-8965 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in linlinjava litemall up to 1.8.0. This vulnerability affects the function create of the file litemall-admin-api/src/main/java/org/linlinjava/litemall/admin/web/AdminS… | |
| CVE-2025-8956 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in D-Link DIR‑818L up to 1.05B01. This issue affects the function getenv of the file /htdocs/cgibin of the component ssdpcgi. The manipulation leads to command injection. Th… | |
| CVE-2025-8937 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in TOTOLINK N350R 1.2.3-B20130826. This vulnerability affects unknown code of the file /boafrm/formSysCmd. The manipulation leads to command injection. The attack can b… | |
| CVE-2025-8931 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was determined in code-projects Medical Store Management System 1.0. Affected is an unknown function of the file ChangePassword.java. The manipulation of the argument newPassTxt leads… | |
| CVE-2025-8930 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in code-projects Medical Store Management System 1.0. This issue affects some unknown processing of the file UpdateCompany.java of the component Update Company Page. The man… | |
| CVE-2025-8929 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in code-projects Medical Store Management System 1.0. This vulnerability affects unknown code of the file MainPanel.java. The manipulation of the argument searchTxt lea… | |
| CVE-2025-8928 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was identified in code-projects Medical Store Management System 1.0. This affects an unknown part of the file UpdateMedicines.java of the component Update Medicines Page. The manipula… | |
| CVE-2025-8859 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is an unknown functionality of the file /native/admin/save-slider.php of the component File Upload Modul… | |
| CVE-2025-8839 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in jshERP up to 3.5. This issue affects some unknown processing of the file /jshERP-boot/user/addUser of the component Endpoint. The manipulation leads to improper authoriza… | |
| CVE-2025-8830 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function sub_3517C of the file /goform/setWan. The manipulati… | |
| CVE-2025-8829 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function um_red of the file /goform/RP_setBasicAuto. … | |
| CVE-2025-8828 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected is the function ipv6cmd of the file /goform/setIpv6. The manipulation of the argum… | |
| CVE-2025-8827 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This issue affects the function um_inspect_cross_band of the file /goform/RP_setBasicAuto. The m… | |
| CVE-2025-8825 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This affects the function RP_setBasicAuto of the file /goform/RP_setBasicAuto. The manipula… | |
| CVE-2025-8823 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function setDeviceName of the file /goform/setDeviceName. … | |
| CVE-2025-8821 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This issue affects the function RP_setBasic of the file /goform/RP_setBasic. The manipulati… | |
| CVE-2025-8818 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setDFSSetting of the file /goform/setLan. The manipu… | |
| CVE-2025-8807 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in xujeff tianti 天梯 up to 2.3. It has been declared as critical. This vulnerability affects unknown code of the file /tianti-module-admin/user/ajax/save. The manipulation le… | |
| CVE-2025-8797 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in LitmusChaos Litmus up to 3.19.0 and classified as critical. This issue affects some unknown processing of the component LocalStorage Handler. The manipulation leads to pe… | |
| CVE-2025-8756 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.td… | |
| CVE-2025-8706 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /Co… | |
| CVE-2025-8705 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, was found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. Affected is an unknown function of the file /WEAS_HomePage/GetTargetCon… | |
| CVE-2025-8704 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, has been found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. This issue affects some unknown processing of the file /WEAS_Alarm… | |
| CVE-2025-8703 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical was found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. This vulnerability affects unknown code of the file /WEAS_HomePage/GetAreaTrendChar… | |
| CVE-2025-8702 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical has been found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. This affects an unknown part of the file /CommonSolution/GetVariableByOneIDNew… | |
| CVE-2025-8701 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /OL_Oprati… | |
| CVE-2025-8527 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in Exrick xboot up to 3.3.4. It has been rated as critical. This issue affects some unknown processing of the file xboot-fast/src/main/java/cn/exrick/xboot/modules/base/cont… | |
| CVE-2025-8500 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insert-and-view/action.php. The… | |
| CVE-2025-8382 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, was found in Campcodes Online Hotel Reservation System 1.0. Affected is an unknown function of the file /admin/edit_room.php. The manipulation of th… | |
| CVE-2025-8381 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, has been found in Campcodes Online Hotel Reservation System 1.0. This issue affects some unknown processing of the file /add_reserve.php. The manipu… | |
| CVE-2025-8247 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical has been found in Projectworlds Online Admission System 1.0. This affects an unknown part of the file /admin.php. The manipulation of the argument markof leads … | |
| CVE-2025-8230 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical was found in Campcodes Courier Management System 1.0. This vulnerability affects unknown code of the file /manage_user.php. The manipulation of the argument ID … | |
| CVE-2025-8229 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical has been found in Campcodes Courier Management System 1.0. This affects an unknown part of the file /parcel_list.php. The manipulation of the argument s leads t… | |
| CVE-2025-8228 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in yanyutao0402 ChanCMS up to 3.1.2. It has been rated as critical. Affected by this issue is the function getPages of the file /cms/collect/getPages. The manipulation of th… | |
| CVE-2025-8190 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, has been found in Campcodes Courier Management System 1.0. This issue affects some unknown processing of the file /print_pdets.php. The manipulation… | |
| CVE-2025-8189 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical was found in Campcodes Courier Management System 1.0. This vulnerability affects unknown code of the file /edit_user.php. The manipulation of the argument ID le… | |
| CVE-2025-8188 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical has been found in Campcodes Courier Management System 1.0. This affects an unknown part of the file /edit_staff.php. The manipulation of the argument ID leads t… | |
| CVE-2025-8187 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in Campcodes Courier Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /edit_parcel.php. The manipulatio… | |
| CVE-2025-8186 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in Campcodes Courier Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edit_branch.php. The ma… | |
| CVE-2025-8172 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, was found in itsourcecode Employee Management System 1.0. Affected is an unknown function of the file /admin/index.php. The manipulation of the argu… | |
| CVE-2025-8165 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in code-projects Food Review System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/approve_reservation.php. The manipulation o… | |
| CVE-2025-8164 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in code-projects Public Chat Room 1.0 and classified as critical. This vulnerability affects unknown code of the file send_message.php. The manipulation of the argument… | |
| CVE-2025-8163 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, was found in deerwms deer-wms-2 up to 3.3. This affects an unknown part of the file /system/role/list. The manipulation of the argument params[dataS… | |
| CVE-2025-8162 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, has been found in deerwms deer-wms-2 up to 3.3. Affected by this issue is some unknown functionality of the file /system/dept/list. The manipulation… | |
| CVE-2025-8161 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. Affected by this vulnerability is an unknown functionality of the file /system/role/export. The manipulation of the a… | |
| CVE-2025-8135 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, has been found in itsourcecode Insurance Management System 1.0. This issue affects some unknown processing of the file /updateAgent.php. The manipul… | |
| CVE-2025-8134 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical was found in PHPGurukul BP Monitoring Management System 1.0. This vulnerability affects unknown code of the file /bwdates-report-result.php. The manipulation of… | |
| CVE-2025-8127 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. This vulnerability affects unknown code of the file /system/user/list. The manipulation of the argument params[dataSc… | |
| CVE-2025-8126 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical has been found in deerwms deer-wms-2 up to 3.3. This affects an unknown part of the file /system/user/export. The manipulation of the argument params[dataScope]… | |
| CVE-2025-8124 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /system/role/authUser/unallocatedLi… | |
| CVE-2025-8123 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestor… | |
| CVE-2025-8018 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in code-projects Food Ordering Review System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /user/reservation_… | |
| CVE-2025-7952 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748. This vulnerability affects the function ckeckKeepAlive of the file wireless.so of the component MQTT Packet Handler. The m… | |
| CVE-2025-7936 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in fuyang_lipengjun platform up to ca9aceff6902feb7b0b6bf510842aea88430796a and classified as critical. Affected by this vulnerability is the function queryPage of the … | |
| CVE-2025-7935 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, was found in fuyang_lipengjun platform up to ca9aceff6902feb7b0b6bf510842aea88430796a. Affected is the function SysLogController of the file platfor… | |
| CVE-2025-7934 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, has been found in fuyang_lipengjun platform up to ca9aceff6902feb7b0b6bf510842aea88430796a. This issue affects the function queryPage of the file pl… | |
| CVE-2025-7932 | high | 8.8 | 8.8 | 10mo ago | A vulnerability classified as critical has been found in D-Link DIR‑817L up to 1.04B01. This affects the function lxmldbc_system of the file ssdpcgi. The manipulation leads to command injection. It i… | |
| CVE-2025-7927 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in PHPGurukul Online Banquet Booking System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/view-user-queries.php. The manipu… | |
| CVE-2025-7905 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in itsourcecode Insurance Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /insertPayment.php. The manipulation of … | |
| CVE-2025-7904 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, was found in itsourcecode Insurance Management System 1.0. This affects an unknown part of the file /insertNominee.php. The manipulation of the argu… | |
| CVE-2025-7880 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2 and classified as critical. Affected by this issue is some unknown functionality of the file /business/common/sms/sendsms.jsp. The manip… | |
| CVE-2025-7878 | high | 8.8 | 8.8 | 10mo ago | A vulnerability, which was classified as critical, was found in Metasoft 美特软件 MetaCRM up to 6.4.2. Affected is an unknown function of the file /common/jsp/upload2.jsp. The manipulation of the argumen… | |
| CVE-2025-7836 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in D-Link DIR-816L up to 2.06B01 and classified as critical. Affected by this vulnerability is the function lxmldbc_system of the file /htdocs/cgibin of the component E… | |
| CVE-2025-7788 | high | 8.8 | 8.8 | 10mo ago | A vulnerability has been found in Xuxueli xxl-job up to 3.1.1 and classified as critical. Affected by this vulnerability is the function commandJobHandler of the file src\main\java\com\xxl\job\execut… | |
| CVE-2025-7787 | high | 8.8 | 8.8 | 10mo ago | XXL-JOB is vulnerable to SSRF attacks | |
| CVE-2025-7759 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was identified in thinkgem JeeSite up to 5.12.0. This vulnerability affects unknown code of the file modules/core/src/main/java/com/jeesite/common/ueditor/ActionEnter.java of the comp… | |
| CVE-2025-7755 | high | 8.8 | 8.8 | 10mo ago | A vulnerability was found in code-projects Online Ordering System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/edit_product.php. The manipulation … |