Filter and search through 198,187 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-66489 | Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verificatio... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-6648 | PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose se... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66479 | Due to a bug in sandboxing logic, `sandbox-runtime` did not properly enforce a network sandbox if the sandbox policy did not configure any allowed dom... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66478 | Rejected reason: This CVE is a duplicate of CVE-2025-55182. | 0.0 | 0 | Viral | Yes | No |
| CVE-2025-66472 | ### Impact A reflected XSS vulnerability in XWiki allows an attacker to send a victim to a URL with a deletion confirmation message on which the attac... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6647 | PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arb... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66461 | FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers two Windows services with unquoted file paths. A user may execute arbitrary co... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-6646 | PDF-XChange Editor U3D File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensit... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66453 | When an application passed an attacker controlled float poing number into the `toFixed()` function, it might lead to high CPU consumption and a potent... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6645 | PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrar... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6644 | PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrar... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6643 | PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose se... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6642 | PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbi... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66416 | ### Description The Model Context Protocol (MCP) Python SDK does not enable DNS rebinding protection by default for HTTP-based servers. When an HTTP-... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66415 | ### Summary By crafting a malicious URL, an attacker could access routes that are not allowed, even though the `reply.from` is defined for specific ro... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66414 | The Model Context Protocol (MCP) TypeScript SDK does not enable DNS rebinding protection by default for HTTP-based servers. When an HTTP-based MCP ser... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66412 | A **Stored Cross-Site Scripting ([XSS](https://angular.dev/best-practices/security#preventing-cross-site-scripting-xss))** vulnerability has been iden... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66410 | ### Impact Attackers can delete any file on the server at will, causing damage or unavailability of server resources. Attackers can control the 'FileM... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6641 | PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose se... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66409 | ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In 5.5.1, 5.4.3, 5.3.4, 5.2.6, 5.1.6, and earlier, when AVRCP is enabled on E... | 0.0 | 0 | Neutral | No | No |