Skip to content
Toggle Navigation
Home
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Normativa y Leyes
Novedades
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-48488
2025-05-30
MEDIUM
5.4
FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, deleting the file .htaccess allows an…
CVE-2025-48489
2025-05-30
MEDIUM
4.8
FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site…
CVE-2025-48492
2025-05-30
HIGH
8.8
GetSimple CMS is a content management system. In versions starting from 3.3.16 to 3.3.21, an authenticated user with access to…
CVE-2025-48865
2025-05-30
CRITICAL
9.1
Fabio is an HTTP(S) and TCP router for deploying applications managed by consul. Prior to version 1.6.6, Fabio allows clients…
CVE-2025-48875
2025-05-30
MEDIUM
5.4
FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.181, the system's incorrect validation of last_name…
CVE-2025-3936
2025-05-22
MEDIUM
6.5
Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework on Windows, Tridium Niagara Enterprise Security on Windows allows…
CVE-2025-3937
2025-05-22
HIGH
7.7
Use of Password Hash With Insufficient Computational Effort vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise…
CVE-2025-3938
2025-05-22
MEDIUM
6.8
Missing Cryptographic Step vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX…
CVE-2025-3939
2025-05-22
MEDIUM
5.3
Observable Response Discrepancy vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX…
CVE-2025-3940
2025-05-22
MEDIUM
5.3
Improper Use of Validation Framework vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows,…
CVE-2025-3941
2025-05-22
MEDIUM
5.4
Improper Handling of Windows ::DATA Alternate Data Stream vulnerability in Tridium Niagara Framework on Windows, Tridium Niagara Enterprise Security on…
CVE-2025-3942
2025-05-22
MEDIUM
4.3
Improper Output Neutralization for Logs vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows,…
CVE-2025-3943
2025-05-22
MEDIUM
4.1
Use of GET Request Method With Sensitive Query Strings vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara…
CVE-2025-3944
2025-05-22
HIGH
7.2
Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework on QNX, Tridium Niagara Enterprise Security on QNX allows…
CVE-2025-5604
2025-06-04
HIGH
7.3
A vulnerability was found in Campcodes Hospital Management System 1.0 and classified as critical. Affected by this issue is some…
CVE-2025-5600
2025-06-04
CRITICAL
9.8
A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This issue affects the function setLanguageCfg…
CVE-2025-5599
2025-06-04
HIGH
7.3
A vulnerability classified as critical was found in PHPGurukul Student Result Management System 1.3. This vulnerability affects unknown code of…
CVE-2025-2336
2025-06-04
MEDIUM
4.8
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS's 'ngSanitize' module allows attackers to…
CVE-2025-29094
2025-06-04
MEDIUM
6.1
Cross Site Scripting vulnerability in Motivian Content Mangment System v.41.0.0 allows a remote attacker to execute arbitrary code via the…
CVE-2025-27811
2025-06-04
HIGH
7.8
A local privilege escalation in the razer_elevation_service.exe in Razer Synapse 4 through 4.0.86.2502180127 allows a local attacker to escalate their…
CVE-2025-23100
2025-06-03
HIGH
7.5
An issue was discovered in Samsung Mobile Processor Exynos 1280, 2200, 1380, 1480, 2400. The absence of a NULL check…
CVE-2025-23098
2025-06-03
HIGH
7.8
An issue was discovered in Samsung Mobile Processor Exynos 980, 990, 1080, 2100, 1280, 2200, 1380. A Use-After-Free in the…
CVE-2025-23097
2025-06-03
CRITICAL
9.1
An issue was discovered in Samsung Mobile Processor Exynos 1380. The lack of a length check leads to out-of-bounds writes.
CVE-2024-4419
2024-05-29
MEDIUM
4.4
The Fetch JFT plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to,…
CVE-2025-1557
2025-02-22
MEDIUM
4.3
A vulnerability, which was classified as problematic, was found in OFCMS 1.1.3. Affected is an unknown function. The manipulation leads…
CVE-2024-12348
2024-12-09
LOW
3.5
A vulnerability was found in Guizhou Xiaoma Technology jpress 5.1.2. It has been classified as problematic. Affected is the function…
CVE-2025-48880
2025-05-30
MEDIUM
6.6
FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.181, when an administrative account is a…
CVE-2025-48936
2025-05-30
HIGH
8.1
Zitadel is open-source identity infrastructure software. Prior to versions 2.70.12, 2.71.10, and 3.2.2, a potential vulnerability exists in the password…
CVE-2025-4943
2025-05-30
MEDIUM
6.4
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-lakit-element-link’ parameter in…
CVE-2025-4431
2025-05-30
MEDIUM
4.3
The Featured Image Plus – Quick & Bulk Edit with Unsplash plugin for WordPress is vulnerable to unauthorized modification of…
CVE-2025-5236
2025-05-30
MEDIUM
6.4
The NinjaTeam Chat for Telegram plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘username’ parameter in all…
CVE-2025-48334
2025-05-30
MEDIUM
6.5
Missing Authorization vulnerability in BinaryCarpenter Woo Slider Pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Woo Slider…
CVE-2025-48912
2025-05-30
MEDIUM
6.5
An authenticated malicious actor using specially crafted requests could bypass row level security configuration by injecting SQL into 'sqlExpression' fields.…
CVE-2025-5142
2025-05-30
MEDIUM
6.5
The Simple Page Access Restriction plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and…
CVE-2025-5235
2025-05-30
MEDIUM
6.4
The OpenSheetMusicDisplay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘className’ parameter in all versions up to,…
CVE-2025-5576
2025-06-04
HIGH
7.3
A vulnerability, which was classified as critical, has been found in PHPGurukul Dairy Farm Shop Management System 1.3. This issue…
CVE-2025-5577
2025-06-04
HIGH
7.3
A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an…
CVE-2025-5579
2025-06-04
HIGH
7.3
A vulnerability was found in PHPGurukul Dairy Farm Shop Management System 1.3 and classified as critical. Affected by this issue…
CVE-2025-5578
2025-06-04
HIGH
7.3
A vulnerability has been found in PHPGurukul Dairy Farm Shop Management System 1.3 and classified as critical. Affected by this…
CVE-2024-5407
2024-05-27
CRITICAL
10.0
A vulnerability in RhinOS 3.0-1190 could allow PHP code injection through the "search" parameter in /portal/search.htm. This vulnerability could allow…
CVE-2025-5603
2025-06-04
HIGH
7.3
A vulnerability has been found in Campcodes Hospital Management System 1.0 and classified as critical. Affected by this vulnerability is…
CVE-2025-5602
2025-06-04
HIGH
7.3
A vulnerability, which was classified as critical, was found in Campcodes Hospital Management System 1.0. Affected is an unknown function…
CVE-2024-11000
2024-11-08
MEDIUM
4.7
A vulnerability classified as problematic was found in CodeAstro Real Estate Management System 1.0. Affected by this vulnerability is an…
CVE-2024-10999
2024-11-08
MEDIUM
4.7
A vulnerability classified as problematic has been found in CodeAstro Real Estate Management System 1.0. Affected is an unknown function…
CVE-2024-1103
2024-01-31
LOW
3.5
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as problematic. Affected by this…
CVE-2025-21479
2025-06-03
HIGH
8.6
Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
CVE-2025-5581
2025-06-04
HIGH
7.3
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been declared as critical. This vulnerability affects…
CVE-2025-5582
2025-06-04
MEDIUM
6.3
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as critical. This issue affects…
CVE-2025-5583
2025-06-04
HIGH
7.3
A vulnerability classified as critical has been found in CodeAstro Real Estate Management System 1.0. Affected is an unknown function…
CVE-2025-5580
2025-06-04
HIGH
7.3
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been classified as critical. This affects an…
« Anterior
Página 14 de 3221
Siguiente »
Page load link
Go to Top
