Skip to content
Toggle Navigation
Home
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Normativa y Leyes
Novedades
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-5728
2025-06-06
MEDIUM
6.3
A vulnerability classified as critical was found in SourceCodester Open Source Clinic Management System 1.0. This vulnerability affects unknown code…
CVE-2025-5727
2025-06-06
LOW
2.4
A vulnerability classified as problematic has been found in SourceCodester Student Result Management System 1.0. This affects an unknown part…
CVE-2025-5703
2025-06-06
MEDIUM
6.4
The StageShow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘anchor’ parameter in all versions up to,…
CVE-2025-5699
2025-06-06
MEDIUM
5.5
The Developer Formatter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom CSS in all versions up…
CVE-2025-5686
2025-06-06
MEDIUM
6.4
The Paged Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gallery' shortcode in all versions…
CVE-2025-5586
2025-06-06
MEDIUM
6.4
The WordPress Ajax Load More and Infinite Scroll plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’…
CVE-2025-5565
2025-06-06
MEDIUM
6.4
The Hide It plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'hideit' shortcode in all versions…
CVE-2025-5563
2025-06-06
MEDIUM
6.5
The WP-Addpub plugin for WordPress is vulnerable to SQL Injection via the 'wp-addpub' shortcode in all versions up to, and…
CVE-2025-5541
2025-06-06
MEDIUM
6.4
The Runners Log plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'runnerslog' shortcode in all versions…
CVE-2025-5538
2025-06-06
MEDIUM
6.4
The BNS Featured Category plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bnsfc' shortcode in all…
CVE-2025-5536
2025-06-06
MEDIUM
6.4
The Freemind Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'freemind' shortcode in all versions…
CVE-2025-5534
2025-06-06
MEDIUM
6.4
The ESV Bible Shortcode for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'esv' shortcode…
CVE-2025-5533
2025-06-06
MEDIUM
6.4
The Knowledge Base plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'kbalert' shortcode in all versions…
CVE-2025-5486
2025-06-06
CRITICAL
9.8
The WP Email Debug plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the…
CVE-2025-5019
2025-06-06
MEDIUM
5.4
The Hive Support | AI-Powered Help Desk, Live Chat & AI Chat Bot Plugin for WordPress plugin for WordPress is…
CVE-2025-5018
2025-06-06
HIGH
7.1
The Hive Support plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability…
CVE-2025-4966
2025-06-06
MEDIUM
6.1
The WP Online Users Stats plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and…
CVE-2025-4964
2025-06-06
MEDIUM
4.9
The WP Online Users Stats plugin for WordPress is vulnerable to time-based SQL Injection via the ‘table_name’ parameter in all…
CVE-2025-48911
2025-06-06
HIGH
8.2
Vulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48910
2025-06-06
MEDIUM
5.5
Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48909
2025-06-06
HIGH
7.1
Bypass vulnerability in the device management channel Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2025-48908
2025-06-06
MEDIUM
6.7
Ability Auto Startup service vulnerability in the foundation process Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48907
2025-06-06
MEDIUM
6.2
Deserialization vulnerability in the IPC module Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48906
2025-06-06
HIGH
8.8
Authentication bypass vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48905
2025-06-06
HIGH
8.1
Wasm exception capture vulnerability in the arkweb v8 module Impact: Successful exploitation of this vulnerability may cause the failure to…
CVE-2025-48904
2025-06-06
MEDIUM
4.4
Vulnerability that cards can call unauthorized APIs in the FRS process Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48903
2025-06-06
HIGH
7.8
Permission bypass vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48902
2025-06-06
MEDIUM
6.6
Vulnerability of uncontrolled system resource applications in the setting module Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-2935
2025-06-06
MEDIUM
5.4
The Anti-Spam: Spam Protection | Block Spam Users, Comments, Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in…
CVE-2024-58114
2025-06-06
MEDIUM
4.0
Resource allocation control failure vulnerability in the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-5726
2025-06-06
LOW
2.4
A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been rated as problematic. Affected by this…
CVE-2025-5725
2025-06-06
LOW
2.4
A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as problematic. Affected by this…
CVE-2025-5724
2025-06-06
LOW
2.4
A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been classified as problematic. Affected is an…
CVE-2025-1778
2025-06-06
MEDIUM
4.3
The Art Theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the 'arttheme_theme_option_restore' AJAX…
CVE-2025-1777
2025-06-06
MEDIUM
6.4
The BM Content Builder plugin for WordPress is vulnerable to unauthorized modification of data to a missing capability check on…
CVE-2023-2921
2025-06-06
N/A
0.0
The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL…
CVE-2025-5723
2025-06-06
LOW
2.4
A vulnerability was found in SourceCodester Student Result Management System 1.0 and classified as problematic. This issue affects some unknown…
CVE-2025-5722
2025-06-06
LOW
2.4
A vulnerability has been found in SourceCodester Student Result Management System 1.0 and classified as problematic. This vulnerability affects unknown…
CVE-2025-36513
2025-06-06
MEDIUM
4.3
Cross-site request forgery vulnerability exists in surveillance cameras provided by i-PRO Co., Ltd.. If a user views a crafted page…
CVE-2025-5733
2025-06-06
MEDIUM
5.3
The Modern Events Calendar Lite plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and…
CVE-2025-5721
2025-06-06
LOW
2.4
A vulnerability, which was classified as problematic, was found in SourceCodester Student Result Management System 1.0. This affects an unknown…
CVE-2025-5719
2025-06-06
N/A
0.0
The wallet has an authentication bypass vulnerability that allows access to specific pages.
CVE-2025-5716
2025-06-06
HIGH
7.3
A vulnerability classified as critical has been found in SourceCodester Open Source Clinic Management System 1.0. Affected is an unknown…
CVE-2025-5715
2025-06-06
LOW
3.8
A vulnerability was found in Signal App 7.41.4 on Android. It has been declared as problematic. This vulnerability affects unknown…
CVE-2025-5714
2025-06-06
MEDIUM
4.3
A vulnerability was found in SoluçõesCoop iSoluçõesWEB up to 20250516. It has been classified as problematic. This affects an unknown…
CVE-2024-46941
2025-06-06
N/A
0.0
SystemUI has an incorrect component protection setting, which allows access to specific information.
CVE-2025-5713
2025-06-06
LOW
3.5
A vulnerability was found in SoluçõesCoop iSoluçõesWEB up to 20250519 and classified as problematic. Affected by this issue is some…
CVE-2025-5712
2025-06-06
HIGH
7.3
A vulnerability has been found in SourceCodester Open Source Clinic Management System 1.0 and classified as critical. Affected by this…
CVE-2025-5711
2025-06-06
HIGH
7.3
A vulnerability, which was classified as critical, was found in code-projects Real Estate Property Management System 1.0. Affected is an…
CVE-2025-5710
2025-06-06
HIGH
7.3
A vulnerability, which was classified as critical, has been found in code-projects Real Estate Property Management System 1.0. This issue…
« Anterior
Página 3 de 3219
Siguiente »
Page load link
Go to Top
