Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

CVE ID Publicado Severidad CVSS Descripción
CVE-2025-7847 2025-07-31 HIGH 8.8 The AI Engine plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the…
CVE-2025-5720 2025-07-31 MEDIUM 6.4 The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘author’ parameter in all…
CVE-2025-8365 2025-07-31 LOW 3.5 A vulnerability was found in Portabilis i-Educar 2.10. It has been declared as problematic. Affected by this vulnerability is an…
CVE-2025-8348 2025-07-31 HIGH 7.3 A vulnerability has been found in Kehua Charging Pile Cloud Platform 1.0 and classified as critical. This vulnerability affects unknown…
CVE-2025-8347 2025-07-31 MEDIUM 6.3 A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud Platform 1.0. This affects an unknown…
CVE-2025-8346 2025-07-31 MEDIUM 4.3 A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar 2.10. Affected by this issue is some…
CVE-2025-8345 2025-07-31 MEDIUM 6.3 A vulnerability classified as critical was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.4.7. Affected by this…
CVE-2025-8344 2025-07-31 MEDIUM 6.3 A vulnerability classified as critical has been found in openviglet shio up to 0.3.8. Affected is the function shStaticFileUpload of…
CVE-2025-8343 2025-07-31 MEDIUM 4.3 A vulnerability was found in openviglet shio up to 0.3.8. It has been rated as critical. This issue affects the…
CVE-2025-8340 2025-07-31 MEDIUM 4.3 A vulnerability was found in code-projects Intern Membership Management System 1.0. It has been declared as problematic. This vulnerability affects…
CVE-2025-8339 2025-07-31 HIGH 7.3 A vulnerability was found in code-projects Intern Membership Management System 1.0. It has been classified as critical. This affects an…
CVE-2025-8338 2025-07-31 HIGH 7.3 A vulnerability was found in projectworlds Online Admission System 1.0 and classified as critical. Affected by this issue is some…
CVE-2025-54085 2025-07-31 N/A 0.0 CVE-2025-54085 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access…
CVE-2025-49084 2025-07-31 N/A 0.0 CVE-2025-49084 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access…
CVE-2025-49083 2025-07-31 N/A 0.0 CVE-2025-49083 is a vulnerability in the management console of Absolute Secure Access after version 12.00 and prior to version 13.56.…
CVE-2025-49082 2025-07-31 N/A 0.0 CVE-2025-49082 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access…
CVE-2025-36040 2025-07-31 MEDIUM 6.5 IBM Aspera Faspex 5.0.0 through 5.0.12.1 could allow an authenticated user to perform unauthorized actions due to client-side enforcement of…
CVE-2025-36039 2025-07-31 MEDIUM 6.5 IBM Aspera Faspex 5.0.0 through 5.0.12.1 could allow an authenticated user to perform unauthorized actions due to client-side enforcement of…
CVE-2025-8337 2025-07-30 LOW 2.4 A vulnerability, which was classified as problematic, has been found in code-projects Simple Car Rental System 1.0. This issue affects…
CVE-2025-8336 2025-07-30 HIGH 7.3 A vulnerability classified as critical was found in Campcodes Online Recruitment Management System 1.0. This vulnerability affects unknown code of…
CVE-2025-8335 2025-07-30 MEDIUM 4.3 A vulnerability classified as problematic has been found in code-projects Simple Car Rental System 1.0. This affects an unknown part.…
CVE-2025-8334 2025-07-30 HIGH 7.3 A vulnerability was found in Campcodes Online Recruitment Management System 1.0. It has been rated as critical. Affected by this…
CVE-2025-54586 2025-07-30 HIGH 7.1 GitProxy is an application that stands between developers and a Git remote endpoint. In versions 1.19.1 and below, attackers can…
CVE-2025-8333 2025-07-30 HIGH 7.3 A vulnerability was found in code-projects Online Farm System 1.0. It has been declared as critical. Affected by this vulnerability…
CVE-2025-8332 2025-07-30 HIGH 7.3 A vulnerability was found in code-projects Online Farm System 1.0. It has been classified as critical. Affected is an unknown…
CVE-2025-54585 2025-07-30 N/A 0.0 GitProxy is an application that stands between developers and a Git remote endpoint. In versions 1.19.1 and below, attackers can…
CVE-2025-8331 2025-07-30 HIGH 7.3 A vulnerability was found in code-projects Online Farm System 1.0 and classified as critical. This issue affects some unknown processing…
CVE-2025-8330 2025-07-30 HIGH 7.3 A vulnerability has been found in code-projects Vehicle Management 1.0 and classified as critical. This vulnerability affects unknown code of…
CVE-2025-54584 2025-07-30 N/A 0.0 GitProxy is an application that stands between developers and a Git remote endpoint (e.g., github.com). In versions 1.19.1 and below,…
CVE-2025-54583 2025-07-30 N/A 0.0 GitProxy is an application that stands between developers and a Git remote endpoint (e.g., github.com). Versions 1.19.1 and below allow…
CVE-2025-54581 2025-07-30 HIGH 7.5 vproxy is an HTTP/HTTPS/SOCKS5 proxy server. In versions 2.3.3 and below, untrusted data is extracted from the user-controlled HTTP Proxy-Authorization…
CVE-2025-54576 2025-07-30 CRITICAL 9.1 OAuth2-Proxy is an open-source tool that can act as either a standalone reverse proxy or a middleware component integrated into…
CVE-2025-54575 2025-07-30 MEDIUM 5.3 ImageSharp is a 2D graphics library. In versions below 2.1.11 and 3.0.0 through 3.1.10, a specially crafted GIF file containing…
CVE-2025-53022 2025-07-30 HIGH 8.6 TrustedFirmware-M (aka Trusted Firmware for M profile Arm CPUs) before 2.1.3 and 2.2.x before 2.2.1 lacks length validation during a…
CVE-2025-52187 2025-07-30 HIGH 8.2 GetProjectsIdea Create School Management System 1.0 is vulnerable to Cross Site Scripting (XSS) in my_profile_update_form1.php.
CVE-2025-51954 2025-07-30 MEDIUM 6.1 playground.electronhub.ai v1.1.9 was discovered to contain a cross-site scripting (XSS) vulnerability.
CVE-2024-48916 2025-07-30 HIGH 8.1 Ceph is a distributed object, block, and file storage platform. In versions 19.2.3 and below, it is possible to send…
CVE-2025-8329 2025-07-30 HIGH 7.3 A vulnerability, which was classified as critical, was found in code-projects Vehicle Management 1.0. This affects an unknown part of…
CVE-2025-51951 2025-07-30 MEDIUM 6.1 andisearch v0.5.249 was discovered to contain a cross-site scripting (XSS) vulnerability.
CVE-2025-50777 2025-07-30 HIGH 7.8 The firmware of the AZIOT 2MP Full HD Smart Wi-Fi CCTV Home Security Camera (version V1.00.02) contains an Incorrect Access…
CVE-2025-50464 2025-07-30 MEDIUM 6.5 A buffer overflow vulnerability exists in the upload.cgi module of the iptime NAS firmware v1.5.04. The vulnerability arises due to…
CVE-2025-36609 2025-07-30 LOW 2.5 Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains a Use of Hard-coded Password vulnerability. A low privileged attacker with…
CVE-2025-36608 2025-07-30 MEDIUM 6.5 Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains an Improper Restriction of XML External Entity Reference vulnerability. A low…
CVE-2025-30103 2025-07-30 MEDIUM 5.5 Dell SmartFabric OS10 Software, versions prior to 10.6.0.5 contains a Files or Directories Accessible to External Parties vulnerability. A low…
CVE-2025-54829 2025-07-31 N/A 0.0 Rejected reason: Not used
CVE-2025-54828 2025-07-31 N/A 0.0 Rejected reason: Not used
CVE-2025-54827 2025-07-31 N/A 0.0 Rejected reason: Not used
CVE-2025-54826 2025-07-31 N/A 0.0 Rejected reason: Not used
CVE-2025-54825 2025-07-31 N/A 0.0 Rejected reason: Not used
CVE-2025-54824 2025-07-31 N/A 0.0 Rejected reason: Not used
« Anterior Página 51 de 3405 Siguiente »