Skip to content
Toggle Navigation
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
ISO 27001 – GAP Analysis (Tool)
Concientización
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Amenazas y tendencias
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Desarrollo seguro (SDLC)
Desarrollo de software seguro
Normativa y Leyes
Leyes de protección de datos
Agencias nacionales de ciberseguridad
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2024-28559
2024-03-22
HIGH
8.8
SQL injection vulnerability in Niushop B2B2C v.5.3.3 and before allows an attacker to escalate privileges via the setPrice() function of…
CVE-2024-28560
2024-03-22
MEDIUM
5.4
SQL injection vulnerability in Niushop B2B2C v.5.3.3 and before allows an attacker to escalate privileges via the deleteArea() function of…
CVE-2024-30187
2024-03-25
MEDIUM
5.3
Anope before 2.0.15 does not prevent resetting the password of a suspended account.
CVE-2024-2864
2024-03-25
HIGH
7.3
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in KaineLabs Youzify - Buddypress Moderation.This issue affects Youzify…
CVE-2024-25807
2024-03-22
MEDIUM
6.1
Cross Site Scripting (XSS) vulnerability in Lychee 3.1.6, allows remote attackers to execute arbitrary code and obtain sensitive information via…
CVE-2024-26557
2024-03-22
MEDIUM
5.4
Codiad v2.8.4 allows reflected XSS via the components/market/dialog.php type parameter.
CVE-2024-25808
2024-03-22
HIGH
8.3
Cross-site Request Forgery (CSRF) vulnerability in Lychee version 3.1.6, allows remote attackers to execute arbitrary code via the create new…
CVE-2024-29271
2024-03-22
MEDIUM
6.1
Reflected Cross-Site Scripting (XSS) vulnerability in VvvebJs before version 1.7.7, allows remote attackers to execute arbitrary code and obtain sensitive…
CVE-2024-3601
2024-05-02
MEDIUM
5.3
The Poll Maker – Best WordPress Poll Plugin plugin for WordPress is vulnerable to unauthorized access of data due to…
CVE-2024-9462
2024-10-26
MEDIUM
5.5
The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to Stored Cross-Site Scripting via…
CVE-2024-9475
2024-10-26
MEDIUM
4.9
The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to generic SQL Injection via…
CVE-2024-12115
2024-12-07
MEDIUM
4.3
The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to Cross-Site Request Forgery in…
CVE-2024-3600
2024-04-19
HIGH
7.2
The Poll Maker – Best WordPress Poll Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting due to a…
CVE-2023-49453
2024-03-12
MEDIUM
6.1
Reflected cross-site scripting (XSS) vulnerability in Racktables v0.22.0 and before, allows local attackers to execute arbitrary code and obtain sensitive…
CVE-2023-41504
2024-03-13
HIGH
8.8
SQL Injection vulnerability in Student Enrollment In PHP 1.0 allows attackers to run arbitrary code via the Student Search function.
CVE-2023-41505
2024-03-13
CRITICAL
9.8
An arbitrary file upload vulnerability in the Add Student's Profile Picture function of Student Enrollment In PHP v1.0 allows attackers…
CVE-2025-5270
2025-05-27
HIGH
7.5
In certain cases, SNI could have been sent unencrypted even when encrypted DNS was enabled. This vulnerability affects Firefox <…
CVE-2025-5271
2025-05-27
MEDIUM
6.5
Previewing a response in Devtools ignored CSP headers, which could have allowed content injection attacks. This vulnerability affects Firefox <…
CVE-2025-5272
2025-05-27
HIGH
7.3
Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of memory corruption and…
CVE-2025-2847
2025-03-27
MEDIUM
6.3
A vulnerability, which was classified as critical, has been found in Codezips Gym Management System 1.0. This issue affects some…
CVE-2025-2122
2025-03-09
LOW
3.1
A vulnerability classified as problematic was found in Thinkware Car Dashcam F800 Pro up to 20250226. Affected by this vulnerability…
CVE-2025-5129
2025-05-24
HIGH
7.0
A vulnerability has been found in Sangfor 零信任访问控制系统 aTrust 2.3.10.60 and classified as critical. Affected by this vulnerability is an…
CVE-2025-2151
2025-03-10
MEDIUM
6.3
A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine…
CVE-2025-3395
2025-04-30
HIGH
7.1
Incorrect Permission Assignment for Critical Resource, Cleartext Storage of Sensitive Information vulnerability in ABB Automation Builder.This issue affects Automation Builder:…
CVE-2025-3394
2025-04-30
HIGH
7.8
Incorrect Permission Assignment for Critical Resource vulnerability in ABB Automation Builder.This issue affects Automation Builder: through 2.8.0.
CVE-2024-51319
2025-03-11
HIGH
7.3
A local file include vulnerability in the /servlet/Report of Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve…
CVE-2025-5215
2025-05-27
HIGH
8.8
A vulnerability classified as critical has been found in D-Link DCS-5020L 1.01_B2. This affects the function websReadEvent of the file…
CVE-2025-5205
2025-05-26
HIGH
7.3
A vulnerability classified as critical has been found in 1000 Projects Daily College Class Work Report Book 1.0. Affected is…
CVE-2025-5204
2025-05-26
LOW
3.3
A vulnerability classified as problematic has been found in Open Asset Import Library Assimp 5.4.3. This affects the function MDLImporter::ParseSkinLump_3DGS_MDL7…
CVE-2025-5203
2025-05-26
LOW
3.3
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this…
CVE-2025-5202
2025-05-26
LOW
3.3
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as problematic. Affected by this…
CVE-2025-5201
2025-05-26
LOW
3.3
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the…
CVE-2025-5200
2025-05-26
LOW
3.3
A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function…
CVE-2025-5196
2025-05-26
MEDIUM
6.6
A vulnerability has been found in Wing FTP Server up to 7.4.3 and classified as critical. Affected by this vulnerability…
CVE-2025-5186
2025-05-26
MEDIUM
6.3
A vulnerability was found in thinkgem JeeSite up to 5.11.1. It has been rated as critical. Affected by this issue…
CVE-2025-5136
2025-05-25
LOW
3.7
A vulnerability, which was classified as problematic, was found in Tmall Demo up to 20250505. This affects an unknown part…
CVE-2025-5132
2025-05-24
MEDIUM
4.3
A vulnerability was found in Tmall Demo up to 20250505. It has been rated as problematic. This issue affects some…
CVE-2025-5130
2025-05-24
MEDIUM
4.7
A vulnerability was found in Tmall Demo up to 20250505. It has been classified as critical. This affects the function…
CVE-2025-5128
2025-05-24
HIGH
7.3
A vulnerability, which was classified as critical, was found in ScriptAndTools Real-Estate-website-in-PHP 1.0. Affected is an unknown function of the…
CVE-2025-5127
2025-05-24
LOW
3.5
A vulnerability, which was classified as problematic, has been found in FLIR AX8 up to 1.46.16. This issue affects some…
CVE-2025-5126
2025-05-24
HIGH
8.8
A vulnerability classified as critical was found in FLIR AX8 up to 1.46.16. This vulnerability affects the function setDataTime of…
CVE-2025-48734
2025-05-28
HIGH
8.8
Improper Access Control vulnerability in Apache Commons. A special BeanIntrospector class was added in version 1.9.2. This can be used…
CVE-2025-5124
2025-05-24
HIGH
8.1
A vulnerability classified as critical has been found in Sony SNC-M1, SNC-M3, SNC-RZ25N, SNC-RZ30N, SNC-DS10, SNC-CS3N and SNC-RX570N up to…
CVE-2022-43502
2025-05-28
N/A
0.0
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is Unused
CVE-2022-43496
2025-05-28
N/A
0.0
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is Unused
CVE-2022-43493
2025-05-28
N/A
0.0
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is Unused
CVE-2022-40970
2025-05-28
N/A
0.0
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is Unused
CVE-2022-38092
2025-05-28
N/A
0.0
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is Unused
CVE-2022-36406
2025-05-28
N/A
0.0
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is Unused
CVE-2022-36298
2025-05-28
N/A
0.0
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is Unused
« Anterior
Página 352 de 3516
Siguiente »
Page load link
Go to Top
