Filter and search through 195,879 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-3651 | Improper Verification of Source of a Communication Channel in Work Desktop for Mac versions below 10.8.2.33 allows attackers to execute arbitrary comm... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-36506 | External control of file name or path issue exists in RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.242.0. If an attacker sends a specially cra... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3648 | A vulnerability has been identified in the Now Platform that could result in data being inferred without authorization. Under certain conditional acce... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-3639 | Liferay Portal 7.3.0 through 7.4.3.132, and Liferay DXP 2025.Q1 through 2025.Q1.6, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-35980 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not a... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-35978 | Improper restriction of communication channel to intended endpoints issue exists in UpdateNavi V1.4 L10 to L33 and UpdateNaviInstallService Service 1.... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3579 | In versions prior to Aidex 1.7, an authenticated malicious user, taking advantage of an open registry, could execute unauthorised commands within the ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3578 | A malicious, authenticated user in Aidex, versions prior to 1.7, could list credentials of other users, create or modify existing users in the applica... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3575 | Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3574 | Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3552 | A vulnerability was found in Lingxing ERP 2. It has been classified as critical. This affects an unknown part of the file /Api/TinyMce/UploadAjax.ashx... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3551 | A vulnerability was found in Lingxing ERP 2 and classified as critical. Affected by this issue is the function DoUpload of the file /Api/FileUpload.as... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3524 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3519 | An authorization bypass in Unblu Spark allows a participant of a conversation to replace an existing, uploaded file. Every uploaded file in Unblu get... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-3512 | There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTe... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-3508 | Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensit... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-35002 | Rejected reason: This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-35001 | Rejected reason: This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-35000 | Rejected reason: This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-34999 | Rejected reason: This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure. | 0.0 | 0 | Neutral | No | No |