Filter and search through 198,083 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-64690 | In JetBrains YouTrack before 2025.3.104432 insecure Junie configuration could lead to data exposure and unauthorized changes | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-64689 | In JetBrains YouTrack before 2025.3.104432 misconfiguration in the Junie could lead to exposure of the global Junie token | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64688 | In JetBrains YouTrack before 2025.3.104432 missing VCS URL validation allowed delegation to unauthorized repositories from the Junie widget | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64687 | In JetBrains YouTrack before 2025.3.104432 improper access control allowed modify MCP tool logic | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64686 | In JetBrains YouTrack before 2025.3.104432 missing user principal cleanup led to reuse of incorrect authorization context | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64528 | Discourse is an open source discussion platform. Prior to versions 3.5.3, 2025.11.1, and 2025.12.0, an attacker who knows part of a username can find ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64513 | ### Impact _What kind of vulnerability is it? Who is impacted?_ An unauthenticated attacker can exploit this vulnerability to bypass all authenticatio... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-64502 | ### Impact The MongoDB `explain()` method provides detailed information about query execution plans, including index usage, collection scanning behav... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64486 | calibre is an e-book manager. In versions 8.13.0 and prior, calibre does not validate filenames when handling binary assets in FB2 files, allowing an ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64485 | CVAT is an open source interactive video and image annotation tool for computer vision. In versions 2.4.0 through 2.48.1, a malicious CVAT user with a... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64483 | Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuratio... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64481 | ### Impact Deployed instances of Datasette prior to `0.65.2` and `1.0a21` include an open redirect vulnerability. Hits to the path `//example.com/fo... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64480 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64479 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64478 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64477 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64476 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64475 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64474 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64473 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |