Filter and search through 198,112 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-65933 | Rejected reason: Not used | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-6593 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/user/User.Php. This issue affects Media... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-65924 | ERPNext thru 15.88.1 does not sanitize or remove certain HTML tags specifically `<a>` hyperlinks in fields that are intended for plain text. Although ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-65923 | A Stored Cross-Site Scripting (XSS) vulnerability was discovered within the CSV import mechanism of ERPNext thru 15.88.1 when using the Update Existin... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-6592 | Vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/auth/AuthManager.Php. This issue affe... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6591 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/api/ApiFeedContributions.Php. This issu... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6590 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with prog... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6589 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/specials/pagers/BlockListPager.Php. Thi... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6587 | System environment variables are recorded in Docker Desktop diagnostic logs, when using shell auto-completion. This leads to unintentional disclosure ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-65862 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-65794 | Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-65793 | Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-65791 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-6563 | A cross-site scripting vulnerability is present in the hotspot of MikroTik's RouterOS on versions below 7.19.2. An attacker can inject the `javascript... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-6547 | ### Summary On historic but declared as supported Node.js versions (0.12-2.x), pbkdf2 silently disregards Uint8Array input This only affects Node.js... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6545 | ### Summary This affects both: 1. Unsupported algos (e.g. `sha3-256` / `sha3-512` / `sha512-256`) 2. Supported but non-normalized algos (e.g. `Sha2... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6544 | A deserialization vulnerability exists in h2oai/h2o-3 versions <= 3.46.0.7, allowing attackers to read arbitrary system files and execute arbitrary co... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-65321 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-65120 | Reflected cross-site scripting vulnerability exists in GroupSession Free edition prior to ver5.7.1, GroupSession byCloud prior to ver5.7.1, and GroupS... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-65109 | Minder is an open source software supply chain security platform. In Minder Helm version 0.20241106.3386+ref.2507dbf and Minder Go versions from 0.0.7... | 0.0 | 0 | Neutral | No | Yes |