Filter and search through 196,422 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-412026 | No description available | 0.0 | 0 | Neutral | Yes |
| No |
| CVE-2025-412025 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-41116 | When using the Grafana Databricks Datasource Plugin, if Oauth passthrough is enabled on the datasource, and multiple users are using the same datasour... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41100 | Incorrect authentication vulnerability in ParkingDoor. Through this vulnerability it is possible to operate the device without the access being logged... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41090 | microCLAUDIA in v3.2.0 and prior has an improper access control vulnerability. This flaw allows an authenticated user to perform unauthorized actions... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-41089 | Reflected Cross-Site Scripting (XSS) in Xibo CMS v4.1.2 from Xibo Signage, due to a lack of proper validation of user input. To exploit the vulnerabil... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41088 | Stored Cross-Site Scripting (XSS) in Xibo Signage's Xibo CMS v4.1.2, due to a lack of proper validation of user input. To exploit the vulnerability, t... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-41087 | Cross-Site Scripting (XSS) vulnerability stored in tha Taclia web application, where the uploaded SVG images are not properly sanitized. This allows t... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41085 | Stored Cross-Site Scripting (XSS) vulnerability type in Apidog in the version 2.7.15, where SVG image uploads are not properly sanitized. This allows... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41084 | Stored Cross-Site Scripting (XSS) vulnerability in Sesame web application, due to the fact that uploaded SVG images are not properly sanitized. This a... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41083 | Vulnerability in Altitude Authentication Service and Altitude Communication Server v8.5.3290.0 by Altitude, where manipulation of Host header in HTTP ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41082 | Illegal HTTP request traffic vulnerability (CL.0) in Altitude Communication Server, caused by inconsistent analysis of multiple HTTP requests over a s... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41081 | Reflected Cross-Site Scripting (XSS) vulnerability in IsMyGym by Zuinq Studio. This vulnerability allows an attacker to execute JavaScript code in the... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41070 | Reflected Cross-site Scripting (XSS) vulnerability in Sanoma's Clickedu. This vulnerability allows an attacker to execute JavaScript code in the victi... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-4107 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41069 | Insecure Direct Object Reference (IDOR) vulnerability in DeporSite of T-INNOVA. This vulnerability allows an attacker to access or modify unauthorized... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41065 | Stored Cross-Site Scripting (XSS) vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in th... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41064 | Incorrect authentication vulnerability in OpenSIAC, which could allow an attacker to impersonate a person using Cl@ve as an authentication method. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-4106 | An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by up... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41031 | Lack of authorisation in Deporsite by T-INNOVA. This vulnerability allows an unauthenticated attacker to change other users' profile pictures via a PO... | 0.0 | 0 | Neutral | No | No |