Filter and search through 197,541 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-59671 | Rejected reason: Not used | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-59670 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-5967 | A stored cross-site scripting vulnerability in ENS HX 10.0.4 allows a malicious user to inject arbitrary HTML into the ENS HX Malware Scan Name field,... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59668 | Multiple versions of Central Monitor CNS-6201 contain a NULL pointer dereference vulnerability. When processing a crafted certain UDP packet, the affe... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-5963 | The Postbox's configuration on macOS, specifically the presence of entitlements: "com.apple.security.cs.allow-dyld-environment-variables" and "com.app... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59596 | CVE-2025-59596 is a denial-of-service vulnerability in Secure Access Windows client versions 12.0 to 14.10 that is addressed in version 14.12. If a ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59532 | Due to a bug in the sandbox configuration logic, Codex CLI could treat a model-generated `cwd` as the sandbox’s writable root, including paths outside... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-59526 | # HTML Injection and XSS Filter Bypass in Plaintext Emails ### Summary An HTML injection vulnerability in plaintext emails generated by Mailgen has b... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-5951 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59487 | Heap-based Buffer Overflow vulnerability in TP-Link Archer AX53 v1.0 (tmpserver modules) allows authenticated adjacent attackers to cause a segmentati... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59485 | Incorrect default permissions issue exists in Security Point (Windows) of MaLion prior to Ver.5.3.4. If this vulnerability is exploited, an arbitrary ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59482 | Heap-based Buffer Overflow vulnerability in TP-Link Archer AX53 v1.0 (tmpserver modules) allows authenticated adjacent attackers to cause a segmentati... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59473 | SQL Injection vulnerability in the Structure for Admin authenticated user | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59465 | A malformed `HTTP/2 HEADERS` frame with oversized, invalid `HPACK` data can cause Node.js to crash by triggering an unhandled `TLSSocket` error `ECONN... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-5945 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59432 | ### Impact A timing attack vulnerability exists in the SCRAM Java implementation. The issue arises because `Arrays.equals` was used to compare secret... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-59427 | ### Summary Note: [originally posted on H1](https://hackerone.com/reports/3117837) but closed. Cross-posting over to here in abundance of caution ins... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-59421 | Press, a Frappe custom app that runs Frappe Cloud, manages infrastructure, subscription, marketplace, and software-as-a-service (SaaS). A bad actor ca... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-5942 | Netskope was notified about a potential gap in its agent (NS Client) on Windows systems. If this gap is successfully exploited, an unprivileged user ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-59419 | ### Summary An SMTP Command Injection (CRLF Injection) vulnerability in Netty's SMTP codec allows a remote attacker who can control SMTP command param... | 0.0 | 0 | Neutral | No | Yes |