Skip to content
Toggle Navigation
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Amenazas y tendencias
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Desarrollo seguro (SDLC)
Desarrollo de software seguro
Normativa y Leyes
Leyes de protección de datos
Agencias nacionales de ciberseguridad
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-7738
2025-07-31
MEDIUM
4.4
A flaw was found in Ansible Automation Platform (AAP) where the Gateway API returns the client secret for certain GitHub…
CVE-2025-54589
2025-07-31
MEDIUM
6.3
Copyparty is a portable file server. In versions 1.18.6 and below, when accessing the recent uploads page at `/?ru`, users…
CVE-2025-8213
2025-07-31
HIGH
7.2
The NinjaScanner – Virus & Malware scan plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file…
CVE-2025-8401
2025-07-31
MEDIUM
4.3
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions…
CVE-2025-8382
2025-07-31
MEDIUM
6.3
A vulnerability, which was classified as critical, was found in Campcodes Online Hotel Reservation System 1.0. Affected is an unknown…
CVE-2025-8381
2025-07-31
MEDIUM
6.3
A vulnerability, which was classified as critical, has been found in Campcodes Online Hotel Reservation System 1.0. This issue affects…
CVE-2025-8151
2025-07-31
MEDIUM
4.3
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Path Traversal in all versions up…
CVE-2025-8068
2025-07-31
MEDIUM
4.3
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized modification and loss of data…
CVE-2025-8380
2025-07-31
LOW
3.5
A vulnerability classified as problematic was found in Campcodes Online Hotel Reservation System 1.0. This vulnerability affects unknown code of…
CVE-2025-8379
2025-07-31
MEDIUM
4.7
A vulnerability classified as critical has been found in Campcodes Online Hotel Reservation System 1.0. This affects an unknown part…
CVE-2025-8378
2025-07-31
HIGH
7.3
A vulnerability was found in Campcodes Online Hotel Reservation System 1.0. It has been rated as critical. Affected by this…
CVE-2025-8376
2025-07-31
HIGH
7.3
A vulnerability classified as critical has been found in code-projects Vehicle Management 1.0. Affected is an unknown function of the…
CVE-2025-41688
2025-07-31
HIGH
7.2
A high privileged remote attacker can execute arbitrary OS commands using an undocumented method allowing to escape the implemented LUA…
CVE-2025-40980
2025-07-31
N/A
0.0
A Stored Cross Site Scripting vulnerability has been found in UltimatePOS by UltimateFosters. This vulnerability is due to the lack…
CVE-2025-2813
2025-07-31
HIGH
7.5
An unauthenticated remote attacker can cause a Denial of Service by sending a large number of requests to the http…
CVE-2025-8375
2025-07-31
HIGH
7.3
A vulnerability was found in code-projects Vehicle Management 1.0. It has been rated as critical. This issue affects some unknown…
CVE-2025-8374
2025-07-31
HIGH
7.3
A vulnerability was found in code-projects Vehicle Management 1.0. It has been declared as critical. This vulnerability affects unknown code…
CVE-2025-8192
2025-07-31
N/A
0.0
There exists a TOCTOU race condition in TvSettings AppRestrictionsFragment.java that lead to start of attacker supplied activity in Settings’ context,…
CVE-2025-24854
2025-07-31
MEDIUM
6.1
A carefully crafted request using the Image plugin could trigger an XSS vulnerability on Apache JSPWiki, which could allow the…
CVE-2025-24853
2025-07-31
HIGH
7.5
A carefully crafted request when creating a header link using the wiki markup syntax, which could allow the attacker to…
CVE-2025-8373
2025-07-31
HIGH
7.3
A vulnerability was found in code-projects Vehicle Management 1.0. It has been classified as critical. This affects an unknown part…
CVE-2025-8372
2025-07-31
HIGH
7.3
A vulnerability was found in code-projects Exam Form Submission 1.0 and classified as critical. Affected by this issue is some…
CVE-2025-7205
2025-07-31
MEDIUM
5.4
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the donor…
CVE-2025-54757
2025-07-31
MEDIUM
6.5
Multiple versions of PowerCMS allow unrestricted upload of dangerous files. If a product administrator accesses a malicious file uploaded by…
CVE-2025-54752
2025-07-31
MEDIUM
6.5
Multiple versions of PowerCMS improperly neutralize formula elements in a CSV file. If a product user creates a malformed entry…
CVE-2025-46359
2025-07-31
HIGH
7.2
A path traversal issue exists in backup and restore feature of multiple versions of PowerCMS. A product administrator may execute…
CVE-2025-41396
2025-07-31
MEDIUM
5.4
A path traversal issue exists in file uploading feature of multiple versions of PowerCMS. Arbitrary files may be overwritten by…
CVE-2025-41391
2025-07-31
MEDIUM
5.4
Stored cross-site scripting vulnerability exists in multiple versions of PowerCMS. If a product user accesses a malicious page, an arbitrary…
CVE-2025-36563
2025-07-31
MEDIUM
6.1
Reflected cross-site scripting vulnerability exists in multiple versions of PowerCMS. If a product administrator accesses a crafted URL, an arbitrary…
CVE-2025-8371
2025-07-31
HIGH
7.3
A vulnerability has been found in code-projects Exam Form Submission 1.0 and classified as critical. Affected by this vulnerability is…
CVE-2025-8370
2025-07-31
MEDIUM
4.3
A vulnerability, which was classified as problematic, was found in Portabilis i-Educar 2.9. Affected is an unknown function of the…
CVE-2025-8369
2025-07-31
MEDIUM
4.3
A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar 2.9. This issue affects some unknown processing…
CVE-2025-8368
2025-07-31
MEDIUM
4.3
A vulnerability classified as problematic was found in Portabilis i-Educar 2.9. This vulnerability affects unknown code of the file /intranet/pesquisa_pessoa_lst.php.…
CVE-2025-53558
2025-07-31
HIGH
8.8
ZXHN-F660T and ZXHN-F660A provided by ZTE Japan K.K. use a common credential for all installations. With the knowledge of the…
CVE-2025-8367
2025-07-31
MEDIUM
4.3
A vulnerability classified as problematic has been found in Portabilis i-Educar 2.9. This affects an unknown part of the file…
CVE-2025-8366
2025-07-31
MEDIUM
4.3
A vulnerability was found in Portabilis i-Educar 2.9. It has been rated as problematic. Affected by this issue is some…
CVE-2025-7847
2025-07-31
HIGH
8.8
The AI Engine plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the…
CVE-2025-5720
2025-07-31
MEDIUM
6.4
The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘author’ parameter in all…
CVE-2025-8365
2025-07-31
LOW
3.5
A vulnerability was found in Portabilis i-Educar 2.10. It has been declared as problematic. Affected by this vulnerability is an…
CVE-2025-8348
2025-07-31
HIGH
7.3
A vulnerability has been found in Kehua Charging Pile Cloud Platform 1.0 and classified as critical. This vulnerability affects unknown…
CVE-2025-8347
2025-07-31
MEDIUM
6.3
A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud Platform 1.0. This affects an unknown…
CVE-2025-8346
2025-07-31
MEDIUM
4.3
A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar 2.10. Affected by this issue is some…
CVE-2025-8345
2025-07-31
MEDIUM
6.3
A vulnerability classified as critical was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.4.7. Affected by this…
CVE-2025-8344
2025-07-31
MEDIUM
6.3
A vulnerability classified as critical has been found in openviglet shio up to 0.3.8. Affected is the function shStaticFileUpload of…
CVE-2025-8343
2025-07-31
MEDIUM
4.3
A vulnerability was found in openviglet shio up to 0.3.8. It has been rated as critical. This issue affects the…
CVE-2025-8340
2025-07-31
MEDIUM
4.3
A vulnerability was found in code-projects Intern Membership Management System 1.0. It has been declared as problematic. This vulnerability affects…
CVE-2025-8339
2025-07-31
HIGH
7.3
A vulnerability was found in code-projects Intern Membership Management System 1.0. It has been classified as critical. This affects an…
CVE-2025-8338
2025-07-31
HIGH
7.3
A vulnerability was found in projectworlds Online Admission System 1.0 and classified as critical. Affected by this issue is some…
CVE-2025-54085
2025-07-31
N/A
0.0
CVE-2025-54085 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access…
CVE-2025-49084
2025-07-31
N/A
0.0
CVE-2025-49084 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access…
« Anterior
Página 42 de 3396
Siguiente »
Page load link
Go to Top
