Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

CVE ID Publicado Severidad CVSS Descripción
CVE-2025-3515 2025-06-17 HIGH 8.1 The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads…
CVE-2025-40674 2025-06-17 N/A 0.0 Reflected Cross-Site Scripting (XSS) in osCommerce v4. This vulnerability allows an attacker to execute JavaScript code in the victim's browser…
CVE-2025-6173 2025-06-17 MEDIUM 4.7 A vulnerability classified as critical was found in Webkul QloApps 1.6.1. Affected by this vulnerability is an unknown functionality of…
CVE-2025-6167 2025-06-17 MEDIUM 5.5 A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0.5.5. Affected is the function create_workflow of…
CVE-2025-6166 2025-06-17 LOW 3.5 A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This issue affects the…
CVE-2025-6165 2025-06-17 HIGH 8.8 A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of…
CVE-2025-6164 2025-06-17 HIGH 8.8 A vulnerability was found in TOTOLINK A3002R 4.0.0-B20230531.1404. It has been classified as critical. This affects an unknown part of…
CVE-2025-5209 2025-06-17 MEDIUM 4.8 The Ivory Search WordPress plugin before 5.5.10 does not sanitise and escape some of its settings, which could allow high…
CVE-2025-6163 2025-06-17 HIGH 8.8 A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615 and classified as critical. Affected by this issue is some unknown functionality…
CVE-2025-6162 2025-06-17 HIGH 8.8 A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713 and classified as critical. Affected by this vulnerability is an unknown…
CVE-2025-6161 2025-06-17 HIGH 7.3 A vulnerability, which was classified as critical, was found in SourceCodester Simple Food Ordering System 1.0. Affected is an unknown…
CVE-2025-6160 2025-06-17 HIGH 7.3 A vulnerability, which was classified as critical, has been found in SourceCodester Client Database Management System 1.0. This issue affects…
CVE-2025-6159 2025-06-17 HIGH 7.3 A vulnerability classified as critical was found in code-projects Hostel Management System 1.0. This vulnerability affects unknown code of the…
CVE-2025-6158 2025-06-17 HIGH 8.8 A vulnerability classified as critical has been found in D-Link DIR-665 1.00. This affects the function sub_AC78 of the component…
CVE-2025-6157 2025-06-17 HIGH 7.3 A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been rated as critical. Affected by…
CVE-2025-6156 2025-06-17 MEDIUM 6.3 A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as critical. Affected by…
CVE-2025-6155 2025-06-17 HIGH 7.3 A vulnerability was found in PHPGurukul Hostel Management System 1.0. It has been classified as critical. Affected is an unknown…
CVE-2025-6154 2025-06-17 HIGH 7.3 A vulnerability was found in PHPGurukul Hostel Management System 1.0 and classified as critical. This issue affects some unknown processing…
CVE-2025-6153 2025-06-17 HIGH 7.3 A vulnerability has been found in PHPGurukul Hostel Management System 1.0 and classified as critical. This vulnerability affects unknown code…
CVE-2025-49823 2025-06-17 NONE 0.0 (conda) Constructor is a tool which allows constructing an installer for a collection of conda packages. Prior to version 3.11.3,…
CVE-2025-6152 2025-06-17 MEDIUM 6.3 A vulnerability, which was classified as critical, was found in Steel Browser up to 0.1.3. This affects the function handleFileUpload…
CVE-2025-5673 2025-06-17 MEDIUM 6.5 The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to SQL Injection via the ‘prgSortPostType’ parameter…
CVE-2025-4775 2025-06-17 MEDIUM 6.4 The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the data-button-label…
CVE-2025-3774 2025-06-17 HIGH 7.2 The Wise Chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the X-Forwarded-For header in all versions up…
CVE-2025-6151 2025-06-17 HIGH 8.8 A vulnerability, which was classified as critical, has been found in TP-Link TL-WR940N V4. Affected by this issue is some…
CVE-2025-6150 2025-06-17 HIGH 8.8 A vulnerability classified as critical was found in TOTOLINK X15 1.0.0-B20230714.1105. Affected by this vulnerability is an unknown functionality of…
CVE-2025-6149 2025-06-17 HIGH 8.8 A vulnerability classified as critical has been found in TOTOLINK A3002R 4.0.0-B20230531.1404. Affected is an unknown function of the file…
CVE-2025-6148 2025-06-17 HIGH 8.8 A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. It has been rated as critical. This issue affects some unknown processing…
CVE-2025-6147 2025-06-17 HIGH 8.8 A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521. It has been declared as critical. This vulnerability affects unknown code of…
CVE-2025-48993 2025-06-17 N/A 0.0 Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.123 and 25.0.27, a malicious JavaScript payload…
CVE-2025-6146 2025-06-17 HIGH 8.8 A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been classified as critical. This affects an unknown part of…
CVE-2025-6145 2025-06-16 HIGH 8.8 A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713 and classified as critical. Affected by this issue is some unknown functionality…
CVE-2025-6144 2025-06-16 HIGH 8.8 A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713 and classified as critical. Affected by this vulnerability is an unknown…
CVE-2025-6143 2025-06-16 HIGH 8.8 A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. Affected is an unknown function of the…
CVE-2025-48992 2025-06-16 N/A 0.0 Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.123 and 25.0.27, a stored and blind…
CVE-2025-6142 2025-06-16 MEDIUM 6.3 A vulnerability was found in Intera InHire up to 20250530. It has been declared as critical. Affected by this vulnerability…
CVE-2025-6141 2025-06-16 LOW 3.3 A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function…
CVE-2025-6140 2025-06-16 LOW 3.3 A vulnerability, which was classified as problematic, was found in spdlog up to 1.15.1. This affects the function scoped_padder in…
CVE-2025-27587 2025-06-16 N/A 0.0 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable to a Minerva attack, exploitable by measuring the time of…
CVE-2025-6138 2025-06-16 HIGH 8.8 A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected by this vulnerability is the function setWizardCfg of…
CVE-2025-43200 2025-06-16 MEDIUM 4.8 This issue was addressed with improved checks. This issue is fixed in watchOS 11.3.1, macOS Ventura 13.7.4, iOS 15.8.4 and…
CVE-2025-6179 2025-06-16 CRITICAL 9.8 Permissions Bypass in Extension Management in Google ChromeOS 16181.27.0 on managed Chrome devices allows a local attacker to disable extensions…
CVE-2025-3494 2025-06-17 N/A 0.0 Rejected reason: This CVE ID has been rejected by its CNA as it was not a security issue.
CVE-2025-3493 2025-06-17 N/A 0.0 Rejected reason: This CVE ID has been rejected by its CNA as it was not a security issue.
CVE-2025-52445 2025-06-17 N/A 0.0 Rejected reason: Not used
CVE-2025-52444 2025-06-17 N/A 0.0 Rejected reason: Not used
CVE-2025-52443 2025-06-17 N/A 0.0 Rejected reason: Not used
CVE-2025-52442 2025-06-17 N/A 0.0 Rejected reason: Not used
CVE-2025-52441 2025-06-17 N/A 0.0 Rejected reason: Not used
CVE-2025-52440 2025-06-17 N/A 0.0 Rejected reason: Not used
« Anterior Página 254 de 3495 Siguiente »