Filter and search through 197,005 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-53459 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ads by WPQuads Ads by WPQuads allows Stored XSS.... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2025-5345 | Bluebird devices contain a pre-loaded file manager application. This application exposes an unsecured service provider "com.bluebird.system.koreanpost... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-5344 | Bluebird devices contain a pre-loaded kiosk application. This application exposes an unsecured service provider "com.bluebird.kiosk.launcher.IpartnerK... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53417 | DIAView (v4.2.0 and prior) - Directory Traversal Information Disclosure Vulnerability | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53399 | In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inj... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-53396 | Incorrect permission assignment for critical resource issue exists in SS1 Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier), which may all... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53388 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53387 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53386 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53385 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53384 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53383 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53382 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53381 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53380 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53373 | Natours is a Tour Booking API. The attacker can easily take over any victim account by injecting an attacker-controlled server domain in the Host head... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-53367 | DjVuLibre is a GPL implementation of DjVu, a web-centric format for distributing documents and images. Prior to version 3.5.29, the MMRDecoder::scanru... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-53366 | A validation error in the MCP SDK can cause an unhandled exception when processing malformed requests, resulting in service unavailability (500 errors... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-53365 | If a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the s... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-53363 | ### Summary Dpanel has an arbitrary file read vulnerability in the /api/app/compose/get-from-uri interface.Logged in to Dpanel ,this interface can be ... | 0.0 | 0 | Neutral | No | No |