High
|
29 Apr 2025 |
8 May 2025 |
CPAI-2025-0229
|
|
CVE-2025-3538
|
D-Link DI-8100 Buffer Overflow (CVE-2025-3538)
|
Critical
|
7 Apr 2025 |
8 May 2025 |
CPAI-2025-0168
|
|
CVE-2025-22457
|
Ivanti Buffer Overflow (CVE-2025-22457)
|
Medium
|
7 May 2025 |
7 May 2025 |
CPAI-2022-2214
|
|
CVE-2022-32206
|
Haxx Curl Denial of Service (CVE-2022-32206)
|
Critical
|
7 May 2025 |
7 May 2025 |
CPAI-2021-2321
|
|
CVE-2021-41649
|
Online Shopping System Advanced SQL Injection (CVE-2021-41649)
|
Critical
|
7 May 2025 |
7 May 2025 |
CPAI-2025-0192
|
|
CVE-2025-1661
|
WordPress HUSKY Plugin Path Traversal (CVE-2025-1661)
|
Critical
|
3 Feb 2025 |
7 May 2025 |
CPAI-2024-1293
|
|
CVE-2024-55591
|
Fortinet Multiple Products Authentication Bypass (CVE-2024-55591)
|
Medium
|
6 May 2025 |
6 May 2025 |
CPAI-2025-0258
|
|
CVE-2025-1103
|
D-Link DIR-823X Denial of Service (CVE-2025-1103)
|
Critical
|
5 May 2025 |
5 May 2025 |
CPAI-2021-2318
|
|
CVE-2021-27670
|
Appspace Server-Side Request Forgery (CVE-2021-27670)
|
Medium
|
5 May 2025 |
5 May 2025 |
CPAI-2024-1630
|
|
CVE-2024-44236
|
Apple MacOS Out of Bounds Write (CVE-2024-44236)
|
Critical
|
20 Apr 2025 |
5 May 2025 |
CPAI-2024-1602
|
|
CVE-2023-51984 CVE-2024-33342
|
D-Link DIR-822 Command Injection (CVE-2023-51984; CVE-2024-33342)
|
Critical
|
25 Mar 2025 |
5 May 2025 |
CPAI-2021-2302
|
|
CVE-2019-10955 CVE-2021-23385 CVE-2021-23393 CVE-2021-32618
|
Open Redirect Attempt (CVE-2019-10955; CVE-2021-23385; CVE-2021-23393; CVE-2021-32618)
|
High
|
4 May 2025 |
4 May 2025 |
CPAI-2024-1619
|
|
CVE-2024-11477
|
7-Zip Integer Underflow (CVE-2024-11477)
|
Medium
|
4 May 2025 |
4 May 2025 |
CPAI-2025-0204
|
|
CVE-2025-1608 CVE-2025-1610
|
LB-LINK AC1900 Command Injection (CVE-2025-1608; CVE-2025-1610)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1627
|
|
CVE-2024-13162
|
Ivanti Endpoint Manager SQL Injection (CVE-2024-13162)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0239
|
|
CVE-2025-2546
|
D-Link Multiple Products Improper Access Control (CVE-2025-2546)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0238
|
|
CVE-2025-2359
|
D-Link DIR-823G Authentication Bypass (CVE-2025-2359)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0237
|
|
CVE-2025-3785
|
D-Link DWR-M961 Buffer Overflow (CVE-2025-3785)
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1625
|
|
CVE-2024-3080
|
ASUS ZenWiFi XT8 Authentication Bypass (CVE-2024-3080)
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1620
|
|
CVE-2024-30568
|
Netgear R6850 firmware Command Injection (CVE-2024-30568)
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0226
|
|
CVE-2025-24587
|
WordPress Email Subscription Popup Plugin SQL Injection (CVE-2025-24587)
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0216
|
|
CVE-2025-30161
|
OpenEMR Development Team OpenEMR Stored Cross-Site Scripting (CVE-2025-30161)
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0214
|
|
CVE-2025-30349
|
Horde Multiple Products Cross-Site Scripting (CVE-2025-30349)
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2024-1593
|
|
CVE-2024-50340
|
Symphony PHP Framework Information Disclosure (CVE-2024-50340)
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2016-1435
|
|
CVE-2016-5077 CVE-2016-5642
|
SNMP Cross-Site Scripting (CVE-2016-5077; CVE-2016-5642)
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2023-2031
|
|
CVE-2023-51123
|
D-Link DIR-815 Command Injection (CVE-2023-51123)
|
High
|
15 Apr 2025 |
24 Apr 2025 |
CPAI-2025-0193
|
|
CVE-2025-3102
|
WordPress OttoKit Plugin Authentication Bypass (CVE-2025-3102)
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2024-1612
|
|
CVE-2024-6119
|
OpenSSL Denial of Service (CVE-2024-6119)
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2017-1957
|
|
CVE-2017-7696
|
SAP AS JAVA SSO Authentication Library Denial of Service (CVE-2017-7696)
|
Critical
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2021-2314
|
|
CVE-2021-20045
|
SonicWall Sma 200 Firmware Buffer Overflow (CVE-2021-20045)
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2021-2311
|
|
CVE-2021-20044
|
SonicWall Sma 200 Firmware Command Injection (CVE-2021-20044)
|
High
|
17 Jan 2025 |
24 Apr 2025 |
CPAI-2024-1224
|
|
CVE-2024-49113
|
Microsoft Windows LDAP Denial of Service (CVE-2024-49113)
|
High
|
23 Apr 2025 |
23 Apr 2025 |
CPAI-2023-2034
|
|
CVE-2023-50780
|
Apache ActiveMQ Artemis Remote Code Execution (CVE-2023-50780)
|
Critical
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2024-1600
|
|
CVE-2024-12084
|
Rsync Buffer Overflow (CVE-2024-12084)
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2024-1597
|
|
CVE-2024-44176
|
Apple Multiple Products Denial of Service (CVE-2024-44176)
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2020-4302
|
|
CVE-2020-8264
|
Ruby on Rails Cross-Site Scripting (CVE-2020-8264)
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2021-2306
|
|
CVE-2021-29490
|
Jellyfin Server-Side Request Forgery (CVE-2021-29490)
|
High
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2021-2305
|
|
CVE-2021-21311
|
Adminer Server-Side Request Forgery (CVE-2021-21311)
|
High
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2025-0194
|
|
CVE-2025-3539 CVE-2025-3540 CVE-2025-3541 CVE-2025-3542 CVE-2025-3543 CVE-2025-3544 CVE-2025-3545 CVE-2025-3546
|
H3C Magic Series Command Injection (CVE-2025-3539; CVE-2025-3540; CVE-2025-3541; CVE-2025-3542; CVE-2025-3543; CVE-2025-3544; CVE-2025-3545; CVE-2025-3546)
|
High
|
21 Apr 2025 |
21 Apr 2025 |
CPAI-2024-1601
|
|
CVE-2024-12849
|
WordPress Error Log Viewer Plugin Arbitrary File Read (CVE-2024-12849)
|
High
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2021-2310
|
|
CVE-2021-20041
|
SonicWall Sma 200 Firmware Authentication Bypass (CVE-2021-20041)
|
Critical
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2021-2309
|
|
CVE-2021-20042
|
SonicWall Sma 200 Firmware Authentication Bypass (CVE-2021-20042)
|
Critical
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2022-2204
|
|
CVE-2022-24310
|
Schneider Electric Interactive Graphical SCADA System Integer Overflow (CVE-2022-24310)
|
Medium
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2024-1530
|
|
CVE-2024-40777
|
Apple Multiple Products Out-Of-Bounds Access (CVE-2024-40777)
|
Critical
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2024-1452
|
|
CVE-2024-47009
|
Ivanti Avalanche Authentication Bypass (CVE-2024-47009)
|
Critical
|
12 Mar 2025 |
17 Apr 2025 |
CPAI-2025-0077
|
|
|
Argument Injection Over HTTP
|
Critical
|
2 Feb 2025 |
17 Apr 2025 |
CPAI-2024-1351
|
|
CVE-2024-53704
|
SonicWall SonicOS Authentication Bypass (CVE-2024-53704)
|
Critical
|
6 Feb 2025 |
16 Apr 2025 |
CPAI-2024-1321
|
|
CVE-2018-3760 CVE-2021-25864 CVE-2024-48914 CVE-2025-2264
|
Static Files Folders Directory Traversal (CVE-2018-3760; CVE-2021-25864; CVE-2024-48914; CVE-2025-2264)
|
High
|
15 Apr 2025 |
15 Apr 2025 |
CPAI-2023-2028
|
|
CVE-2023-22952
|
SugarCRM Code Injection (CVE-2023-22952)
|
Critical
|
15 Apr 2025 |
15 Apr 2025 |
CPAI-2024-1581
|
|
CVE-2024-47908
|
Ivanti Cloud Services Appliance Command Injection (CVE-2024-47908)
|
Medium
|
15 Apr 2025 |
15 Apr 2025 |
CPAI-2024-1571
|
|
CVE-2024-34781
|
Ivanti Endpoint Manager SQL Injection (CVE-2024-34781)
|