Filter and search through 196,608 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-4644 | A Session Fixation vulnerability existed in Payload's SQLite adapter due to identifier reuse during account creation. A malicious attacker could creat... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2025-4643 | Payload uses JSON Web Tokens (JWT) for authentication. After log out JWT is not invalidated, which allows an attacker who has stolen or intercepted to... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-4642 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46413 | Use of password hash with insufficient computational effort issue exists in BUFFALO Wi-Fi router 'WSR-1800AX4 series'. When WPS is enabled, PIN code a... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-4641 | Improper Restriction of XML External Entity Reference vulnerability in bonigarcia webdrivermanager on Windows, MacOS, Linux (XML parsing components mo... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-46409 | Inadequate encryption strength issue exists in SS1 Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier). If this vulnerability is exploited, ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-4640 | Out-of-bounds Write vulnerability in PointCloudLibrary pcl allows Overflow Buffers. Since version 1.14.0, PCL by default uses a zlib installation from... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-4639 | CWE-611 Improper Restriction of XML External Entity Reference in the getDocumentBuilder() method of WebDav servlet in Peergos. This issue affects Peer... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46381 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46380 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46379 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46378 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46377 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46376 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46375 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46374 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-4637 | Divide By Zero vulnerability in davisking dlib allows remote attackers to cause a denial of service via a crafted file. .This issue affects dlib: b... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46355 | Incorrect default permissions issue in PC Time Tracer prior to 5.2. If exploited, arbitrary code may be executed with SYSTEM privilege on Windows syst... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46345 | Auth0 Account Link Extension is an extension aimed to help link accounts easily. Versions 2.3.4 to 2.6.6 do not verify the signature of the provided J... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-46344 | ### Overview Auth0 NextJS `v4.0.1` to `v4.5.0` does not invoke `.setExpirationTime` when generating a JWE token for the session. As a result, the JWE ... | 0.0 | 0 | Neutral | No | Yes |