Filter and search through 196,436 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-41378 | The SSID field is not parsed correctly and can be used to inject commands into the hostpad.conf file. This can be exploited by an attacker to extend h... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-41377 | Cryptographic vulnerability in Iridium Certus 700. This vulnerability allows a user to retrieve the encryption key, resulting in the loading of malici... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41367 | Stored Cross-Site Scripting (XSS) vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicio... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41366 | In IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04, a configuration error has been detected in cross-origin resource sharing (CORS). Exploiting this vulne... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41365 | Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious payload in softw... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41364 | Stored Cross-Site Scripting (XSS) vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicio... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41363 | In IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04, a configuration error has been detected in cross-origin resource sharing (CORS). Exploiting this vulne... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41362 | Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious payload in softw... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41361 | Uncontrolled resource consumption vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. The devices improperly handle TLS requests associated ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41360 | Uncontrolled resource consumption vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. The device is vulnerable to a packet flooding denial o... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41358 | Direct Object Reference Vulnerability (IDOR) in i2A's CronosWeb, in versions prior to 25.00.00.12, inclusive. This vulnerability could allow an authen... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41351 | Vulnerability that allows a Padding Oracle Attack to be performed on the Funambol v30.0.0.20 cloud server. The thumbnail display URL allows an attacke... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-4132 | Rapid7 Corporate Website prior to May 2nd 2025, suffered from a URL Redirection to Untrusted Site ('Open Redirect') vulnerability whereby, due to misc... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-412027 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-412026 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-412025 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-41116 | When using the Grafana Databricks Datasource Plugin, if Oauth passthrough is enabled on the datasource, and multiple users are using the same datasour... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41100 | Incorrect authentication vulnerability in ParkingDoor. Through this vulnerability it is possible to operate the device without the access being logged... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-41090 | microCLAUDIA in v3.2.0 and prior has an improper access control vulnerability. This flaw allows an authenticated user to perform unauthorized actions... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-41089 | Reflected Cross-Site Scripting (XSS) in Xibo CMS v4.1.2 from Xibo Signage, due to a lack of proper validation of user input. To exploit the vulnerabil... | 0.0 | 0 | Neutral | No | No |