Filter and search through 198,662 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-6947 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS allows Stored XSS ... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-69460 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-69459 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-69458 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-69457 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-69426 | The Ruckus vRIoT IoT Controller firmware versions prior to 3.0.0.0 (GA) contain hardcoded credentials for an operating system user account within an i... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69425 | The Ruckus vRIoT IoT Controller firmware versions prior to 3.0.0.0 (GA) expose a command execution service on TCP port 2004 running with root privileg... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69421 | Issue summary: Processing a malformed PKCS#12 file can trigger a NULL pointer dereference in the PKCS12_item_decrypt_d2i_ex() function. Impact summar... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69291 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues duri... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69290 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues duri... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69285 | SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior to 1.5.0 contain a missing authentication vulnerabi... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69261 | WasmEdge is a WebAssembly runtime. Prior to version 0.16.0-alpha.3, a multiplication in `WasmEdge/include/runtime/instance/memory.h` can wrap, causing... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69211 | A NestJS application is vulnerable if it meets all of the following criteria: 1. Platform: Uses `@nestjs/platform-fastify`. 2. Security Mechanism: Re... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69210 | A stored cross-site scripting (XSS) vulnerability exists in the product file upload functionality. Authenticated users can upload crafted XML files c... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69209 | ArduinoCore-avr contains the source code and configuration files of the Arduino AVR Boards platform. A vulnerability in versions prior to 1.8.7 allows... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69201 | Tugtainer is a self-hosted app for automating updates of docker containers. In versions prior to 1.15.1, arbitary arguments can be injected in tugtain... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69199 | ### Summary Websockets within wings lack proper rate limiting and throttling. As a result a malicious user can open a large number of connections and ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69198 | ### Summary Pterodactyl implements rate limits that are applied to the total number of resources (e.g. databases, port allocations, or backups) that c... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-68952 | Eigent is a multi-agent Workforce. In version 0.0.60, a 1-click Remote Code Execution (RCE) vulnerability has been identified in Eigent. This vulnerab... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-6894 | An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in the API author... | 0.0 | 0 | Neutral | No | No |