Skip to content
Toggle Navigation
Home
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Normativa y Leyes
Novedades
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-5710
2025-06-06
HIGH
7.3
A vulnerability, which was classified as critical, has been found in code-projects Real Estate Property Management System 1.0. This issue…
CVE-2025-5709
2025-06-06
HIGH
7.3
A vulnerability classified as critical was found in code-projects Real Estate Property Management System 1.0. This vulnerability affects unknown code…
CVE-2024-56343
2025-06-06
MEDIUM
4.3
IBM Verify Identity Access Digital Credentials 24.06 could allow an authenticated user to crash the service with a specially crafted…
CVE-2024-56342
2025-06-06
MEDIUM
4.3
IBM Verify Identity Access Digital Credentials 24.06 could allow a remote attacker to obtain sensitive information when a detailed technical…
CVE-2024-22330
2025-06-06
MEDIUM
5.9
IBM Security Verify Governance 10.0.2 does not require that users should have strong passwords by default, which makes it easier…
CVE-2025-5708
2025-06-06
HIGH
7.3
A vulnerability classified as critical has been found in code-projects Real Estate Property Management System 1.0. This affects an unknown…
CVE-2025-5707
2025-06-06
HIGH
7.3
A vulnerability was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. It has been rated as critical. Affected by…
CVE-2025-5706
2025-06-06
HIGH
7.3
A vulnerability was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. It has been declared as critical. Affected by…
CVE-2025-5705
2025-06-06
HIGH
7.3
A vulnerability was found in code-projects Real Estate Property Management System 1.0. It has been classified as critical. Affected is…
CVE-2025-5704
2025-06-05
HIGH
7.3
A vulnerability was found in code-projects Real Estate Property Management System 1.0 and classified as critical. This issue affects some…
CVE-2025-49012
2025-06-05
MEDIUM
5.4
Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Himmelblau versions 0.9.0 through 0.9.14 and 1.00-alpha are…
CVE-2025-5698
2025-06-05
MEDIUM
6.3
A vulnerability, which was classified as critical, was found in Brilliance Golden Link Secondary System up to 20250424. Affected is…
CVE-2025-5697
2025-06-05
MEDIUM
6.3
A vulnerability, which was classified as critical, has been found in Brilliance Golden Link Secondary System up to 20250424. This…
CVE-2025-5696
2025-06-05
MEDIUM
6.3
A vulnerability classified as critical was found in Brilliance Golden Link Secondary System up to 20250424. This vulnerability affects unknown…
CVE-2025-5695
2025-06-05
MEDIUM
4.7
A vulnerability classified as critical has been found in FLIR AX8 up to 1.46.16. This affects the function subscribe_to_spot/subscribe_to_delta/subscribe_to_alarm of…
CVE-2025-5694
2025-06-05
MEDIUM
6.3
A vulnerability was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. It has been rated as critical. Affected by…
CVE-2025-48133
2025-06-05
MEDIUM
6.5
Missing Authorization vulnerability in Uncanny Owl Uncanny Automator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Uncanny Automator:…
CVE-2025-47966
2025-06-05
CRITICAL
9.8
Exposure of sensitive information to an unauthorized actor in Power Automate allows an unauthorized attacker to elevate privileges over a…
CVE-2025-5745
2025-06-05
MEDIUM
5.6
The strncmp implementation optimized for the Power10 processor in the GNU C Library version 2.40 and later writes to vector…
CVE-2025-5693
2025-06-05
MEDIUM
6.3
A vulnerability was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. It has been declared as critical. Affected by…
CVE-2025-5680
2025-06-05
MEDIUM
6.3
A vulnerability classified as critical was found in Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 2.5.0. Affected by this…
CVE-2025-43026
2025-06-05
N/A
0.0
A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.44.18.0. The vulnerability could…
CVE-2025-5766
2025-06-06
MEDIUM
4.3
A vulnerability was found in code-projects Laundry System 1.0. It has been declared as problematic. This vulnerability affects unknown code.…
CVE-2025-5765
2025-06-06
LOW
3.5
A vulnerability was found in code-projects Laundry System 1.0. It has been classified as problematic. This affects an unknown part…
CVE-2025-5764
2025-06-06
LOW
3.5
A vulnerability was found in code-projects Laundry System 1.0 and classified as problematic. Affected by this issue is some unknown…
CVE-2025-49453
2025-06-06
HIGH
7.1
Cross-Site Request Forgery (CSRF) vulnerability in Jatinder Pal Singh BP Profile as Homepage allows Stored XSS. This issue affects BP…
CVE-2025-49450
2025-06-06
MEDIUM
6.5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mhallmann SEPA Girocode allows Stored XSS. This issue…
CVE-2025-49449
2025-06-06
MEDIUM
4.3
Cross-Site Request Forgery (CSRF) vulnerability in WP Map Plugins Interactive Regional Map of Africa allows Cross Site Request Forgery. This…
CVE-2025-49446
2025-06-06
MEDIUM
4.3
Cross-Site Request Forgery (CSRF) vulnerability in minhlaobao Admin Notes allows Cross Site Request Forgery. This issue affects Admin Notes: from…
CVE-2025-49445
2025-06-06
MEDIUM
4.3
Cross-Site Request Forgery (CSRF) vulnerability in WP Map Plugins Interactive UK Regional Map allows Cross Site Request Forgery. This issue…
CVE-2025-49443
2025-06-06
MEDIUM
6.5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chris McCoy Bacon Ipsum allows Stored XSS. This…
CVE-2025-49442
2025-06-06
MEDIUM
6.5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mostafa Shahiri Simple Nested Menu allows Stored XSS.…
CVE-2025-49441
2025-06-06
MEDIUM
5.3
Missing Authorization vulnerability in WP Map Plugins Interactive Regional Map of Florida allows Exploiting Incorrectly Configured Access Control Security Levels.…
CVE-2025-49440
2025-06-06
MEDIUM
4.3
Cross-Site Request Forgery (CSRF) vulnerability in Vuong Nguyen WP Security Master allows Cross Site Request Forgery. This issue affects WP…
CVE-2025-49439
2025-06-06
MEDIUM
4.3
Cross-Site Request Forgery (CSRF) vulnerability in mariusz88atelierweb Atelier Create CV allows Cross Site Request Forgery. This issue affects Atelier Create…
CVE-2025-49435
2025-06-06
MEDIUM
4.3
Cross-Site Request Forgery (CSRF) vulnerability in Hasina77 Wp Easy Allopass allows Cross Site Request Forgery. This issue affects Wp Easy…
CVE-2025-49429
2025-06-06
MEDIUM
6.5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ryan Burnette Video Embeds allows Stored XSS. This…
CVE-2025-49427
2025-06-06
MEDIUM
6.5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ryan Burnette Abbie Expander allows Stored XSS. This…
CVE-2025-49425
2025-06-06
HIGH
7.1
Cross-Site Request Forgery (CSRF) vulnerability in Adrian Hanft Konami Easter Egg allows Stored XSS. This issue affects Konami Easter Egg:…
CVE-2025-49421
2025-06-06
HIGH
7.6
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Andrei Filonov WP Text Expander allows…
CVE-2025-49419
2025-06-06
MEDIUM
5.5
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in esigngenie Foxit eSign for WordPress allows Retrieve Embedded…
CVE-2025-49333
2025-06-06
MEDIUM
5.9
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wp.insider Simple Membership allows Stored XSS. This issue…
CVE-2025-49332
2025-06-06
MEDIUM
4.3
Cross-Site Request Forgery (CSRF) vulnerability in codepeople WP Time Slots Booking Form allows Cross Site Request Forgery. This issue affects…
CVE-2025-49329
2025-06-06
MEDIUM
6.6
Unrestricted Upload of File with Dangerous Type vulnerability in Agile Logix Store Locator WordPress allows Upload a Web Shell to…
CVE-2025-49328
2025-06-06
HIGH
7.6
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Agile Logix Store Locator WordPress allows…
CVE-2025-49327
2025-06-06
HIGH
7.6
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ruben Garcia ShortLinks Pro allows SQL…
CVE-2025-49326
2025-06-06
HIGH
7.6
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ruben Garcia GamiPress allows SQL Injection.…
CVE-2025-49325
2025-06-06
MEDIUM
4.7
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Automattic Newspack Newsletters allows Phishing. This issue affects Newspack Newsletters: from…
CVE-2025-49324
2025-06-06
MEDIUM
5.3
Missing Authorization vulnerability in PickPlugins Job Board Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Job…
CVE-2025-49323
2025-06-06
HIGH
8.5
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themefic Hydra Booking allows SQL Injection.…
« Anterior
Página 4 de 3219
Siguiente »
Page load link
Go to Top
