Filter and search through 196,780 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-48990 | NeKernal is a free and open-source operating system stack. Version 0.0.2 has a 1-byte heap overflow in `rt_copy_memory`, which unconditionally wrote a... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-48986 | Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in attacker to change other users' email address and pot... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-48980 | In Brave Browser Desktop versions prior to 1.83.10 that have the split view feature enabled, the "Open Link in Split View" context menu item did not r... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48963 | Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, W... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48962 | Sensitive information disclosure due to SSRF. The following products are affected: Acronis Cyber Protect 16 (Windows, Linux) before build 39938. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48961 | Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect 16 (Windows) before build 39... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48960 | Weak server key used for TLS encryption. The following products are affected: Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39938. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48959 | Local privilege escalation due to insecure file permissions. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before b... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48951 | **Overview** The Auth0 PHP SDK contains a vulnerability due to insecure deserialization of cookie data. If exploited, since SDKs process cookie conten... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48947 | **Overview** In Auth0 Next.js SDK versions 4.0.1 to 4.6.0, __session cookies set by auth0.middleware may be cached by CDNs due to missing Cache-Contro... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48945 | pycares is a Python module which provides an interface to c-ares. c-ares is a C library that performs DNS requests and name resolutions asynchronously... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48932 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-48890 | WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in minii... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48885 | application-urlshortener create shortened URLs for XWiki pages. Versions prior to 1.2.4 are vulnerable to users with view access being able to create ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48883 | ### Impact CSS Selector expressions are not properly encoded, which can lead to XSS (cross-site scripting) vulnerabilities. ### Patches This is pat... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48882 | **Product:** Math **Version:** 0.2.0 **CWE-ID:** CWE-611: Improper Restriction of XML External Entity Reference **CVSS vector v.4.0:** 8.7 (AV:N/AC:L/... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48876 | Rejected reason: This CVE is a duplicate of another CVE. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48874 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-5257. Reason: This candidate is a duplicate of CVE-2025-5257. Not... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48873 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-5256. Reason: This candidate is a duplicate of CVE-2025-5256. Not... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48872 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-47055. Reason: This candidate is a duplicate of CVE-2024-47055. N... | 0.0 | 0 | Neutral | No | No |