Export limit exceeded: 341258 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 341258 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (341258 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-22187 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22186 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22185 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22184 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22183 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22182 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22181 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22180 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22155 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-22154 | 2026-01-01 | N/A | ||
| To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | ||||
| CVE-2025-15107 | 2 Actionsky, Actiontech | 2 Sqle, Sqle | 2025-12-31 | 3.7 Low |
| A security vulnerability has been detected in actiontech sqle up to 4.2511.0. The impacted element is an unknown function of the file sqle/utils/jwt.go of the component JWT Secret Handler. The manipulation of the argument JWTSecretKey leads to use of hard-coded cryptographic key . The attack is possible to be carried out remotely. The attack's complexity is rated as high. The exploitability is regarded as difficult. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report and is planning to fix this flaw in an upcoming release. | ||||
| CVE-2025-68943 | 1 Gitea | 1 Gitea | 2025-12-31 | 5.3 Medium |
| Gitea before 1.21.8 inadvertently discloses users' login times by allowing (for example) the lastlogintime explore/users sort order. | ||||
| CVE-2025-68944 | 1 Gitea | 1 Gitea | 2025-12-31 | 5 Medium |
| Gitea before 1.22.2 sometimes mishandles the propagation of token scope for access control within one of its own package registries. | ||||
| CVE-2025-68945 | 1 Gitea | 1 Gitea | 2025-12-31 | 5.8 Medium |
| In Gitea before 1.21.2, an anonymous user can visit a private user's project. | ||||
| CVE-2025-68946 | 1 Gitea | 1 Gitea | 2025-12-31 | 5.4 Medium |
| In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS. | ||||
| CVE-2023-22699 | 1 Mainwp | 1 Mainwp Wordfence Extension | 2025-12-31 | 5.4 Medium |
| Missing Authorization vulnerability in MainWP MainWP Wordfence Extension.This issue affects MainWP Wordfence Extension: from n/a through 4.0.7. | ||||
| CVE-2023-23985 | 2 Ays-pro, Wordpress | 2 Quiz Maker, Wordpress | 2025-12-31 | 3.7 Low |
| Missing Authorization vulnerability in Quiz Maker team Quiz Maker.This issue affects Quiz Maker: from n/a through 6.3.9.4. | ||||
| CVE-2025-25341 | 1 Libxmljs Project | 1 Libxmljs | 2025-12-31 | 7.5 High |
| A vulnerability exists in the libxmljs 1.0.11 when parsing a specially crafted XML document. Accessing the internal _ref property on entity_ref and entity_decl nodes causes a segmentation fault, potentially leading to a denial-of-service (DoS). | ||||
| CVE-2025-67349 | 1 Fluentcms | 1 Fluentcms | 2025-12-31 | 6.1 Medium |
| A cross-site scripting (XSS) vulnerability was identified in FluentCMS 1.2.3. After logging in as an admin and navigating to the "Add Page" function, the application fails to properly sanitize input in the <head> section, allowing remote attackers to inject arbitrary script tags. | ||||
| CVE-2024-42718 | 1 Croogo | 1 Croogo | 2025-12-31 | 6.5 Medium |
| A path traversal vulnerability in Croogo CMS 4.0.7 allows remote attackers to read arbitrary files via a specially crafted path in the 'edit-file' parameter. | ||||