Filter and search through 197,777 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-6211 | A vulnerability in the DocugamiReader class of the run-llama/llama_index repository, up to but excluding version 0.12.41, involves the use of MD5 hash... | 0.0 | 0 | Neutral | Yes |
| Yes |
| CVE-2025-6210 | A vulnerability in the ObsidianReader class of the run-llama/llama_index repository, before version 0.5.2 (specifically in version 0.12.27 of llama-in... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-6209 | A path traversal vulnerability exists in run-llama/llama_index versions 0.11.23 through 0.12.40, specifically within the `encode_image` function in `g... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-6208 | The `SimpleDirectoryReader` component in `llama_index.core` version 0.12.23 suffers from uncontrolled memory consumption due to a resource management ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6202 | Vulnerability in SK Hynix DDR5 on x86 allows a local attacker to trigger Rowhammer bit flips impacting the Hardware Integrity and the system's securit... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61994 | Cross-site scripting vulnerability exists in GROWI prior to v7.2.10. If a malicious user creates a page containing crafted contents, an arbitrary scri... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61987 | GroupSession Free edition prior to ver5.3.0, GroupSession byCloud prior to ver5.3.3, and GroupSession ZION prior to ver5.3.2. do not validate origins ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61983 | Heap-based Buffer Overflow vulnerability in TP-Link Archer AX53 v1.0 (tmpserver modules) allows authenticated adjacent attackers to cause a segmentati... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61976 | CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or exceptional conditions. If a remote attacker sends a specially... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-61950 | In GroupSession, a Circular notice can be created with its memo field non-editable, but the authorization check is improperly implemented. With some c... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61949 | LogStare Collector contains a stored cross-site scripting vulnerability in UserManagement. If crafted user information is stored, an arbitrary script ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-61944 | Heap-based Buffer Overflow vulnerability in TP-Link Archer AX53 v1.0 (tmpserver modules) allows authenticated adjacent attackers to cause a segmentati... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61941 | A path traversal issue exists in WXR9300BE6P series firmware versions prior to Ver.1.10. Arbitrary file may be altered by an administrative user who l... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61932 | Motex LANSCOPE Endpoint Manager contains an improper verification of source of a communication channel vulnerability allowing an attacker to execute a... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-61931 | Pleasanter contains a stored cross-site scripting vulnerability in Body, Description and Comments, which allows an attacker to execute an arbitrary sc... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61928 | ### **Summary** A critical authentication bypass was identified in the API key creation and update endpoints. An attacker could create or modify API ... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2025-61927 | # Escape of VM Context gives access to process level functionality ## Summary Happy DOM v19 and lower contains a security vulnerability that puts the... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-61926 | A vulnerability in Allstar’s Reviewbot component caused inbound webhook requests to be validated against a hard-coded, shared secret: https://github.... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-61895 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-61894 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |