|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0239
|
|
CVE-2025-2546
|
D-Link Multiple Products Improper Access Control (CVE-2025-2546)
|
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0238
|
|
CVE-2025-2359
|
D-Link DIR-823G Authentication Bypass (CVE-2025-2359)
|
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0237
|
|
CVE-2025-3785
|
D-Link DWR-M961 Buffer Overflow (CVE-2025-3785)
|
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1625
|
|
CVE-2024-3080
|
ASUS ZenWiFi XT8 Authentication Bypass (CVE-2024-3080)
|
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1620
|
|
CVE-2024-30568
|
Netgear R6850 firmware Command Injection (CVE-2024-30568)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0226
|
|
CVE-2025-24587
|
WordPress Email Subscription Popup Plugin SQL Injection (CVE-2025-24587)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0216
|
|
CVE-2025-30161
|
OpenEMR Development Team OpenEMR Stored Cross-Site Scripting (CVE-2025-30161)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0214
|
|
CVE-2025-30349
|
Horde Multiple Products Cross-Site Scripting (CVE-2025-30349)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2024-1593
|
|
CVE-2024-50340
|
Symphony PHP Framework Information Disclosure (CVE-2024-50340)
|
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2016-1435
|
|
CVE-2016-5077
CVE-2016-5642
|
SNMP Cross-Site Scripting (CVE-2016-5077; CVE-2016-5642)
|
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2023-2031
|
|
CVE-2023-51123
|
D-Link DIR-815 Command Injection (CVE-2023-51123)
|
|
High
|
15 Apr 2025 |
24 Apr 2025 |
CPAI-2025-0193
|
|
CVE-2025-3102
|
WordPress OttoKit Plugin Authentication Bypass (CVE-2025-3102)
|
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2024-1612
|
|
CVE-2024-6119
|
OpenSSL Denial of Service (CVE-2024-6119)
|
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2017-1957
|
|
CVE-2017-7696
|
SAP AS JAVA SSO Authentication Library Denial of Service (CVE-2017-7696)
|
|
Critical
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2021-2314
|
|
CVE-2021-20045
|
SonicWall Sma 200 Firmware Buffer Overflow (CVE-2021-20045)
|
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2021-2311
|
|
CVE-2021-20044
|
SonicWall Sma 200 Firmware Command Injection (CVE-2021-20044)
|
|
High
|
17 Jan 2025 |
24 Apr 2025 |
CPAI-2024-1224
|
|
CVE-2024-49113
|
Microsoft Windows LDAP Denial of Service (CVE-2024-49113)
|
|
High
|
23 Apr 2025 |
23 Apr 2025 |
CPAI-2023-2034
|
|
CVE-2023-50780
|
Apache ActiveMQ Artemis Remote Code Execution (CVE-2023-50780)
|
|
Critical
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2024-1600
|
|
CVE-2024-12084
|
Rsync Buffer Overflow (CVE-2024-12084)
|
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2024-1597
|
|
CVE-2024-44176
|
Apple Multiple Products Denial of Service (CVE-2024-44176)
|
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2020-4302
|
|
CVE-2020-8264
|
Ruby on Rails Cross-Site Scripting (CVE-2020-8264)
|
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2021-2306
|
|
CVE-2021-29490
|
Jellyfin Server-Side Request Forgery (CVE-2021-29490)
|
|
High
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2021-2305
|
|
CVE-2021-21311
|
Adminer Server-Side Request Forgery (CVE-2021-21311)
|
|
High
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2025-0194
|
|
CVE-2025-3539
CVE-2025-3540
CVE-2025-3541
CVE-2025-3542
CVE-2025-3543
CVE-2025-3544
CVE-2025-3545
CVE-2025-3546
|
H3C Magic Series Command Injection (CVE-2025-3539; CVE-2025-3540; CVE-2025-3541; CVE-2025-3542; CVE-2025-3543; CVE-2025-3544; CVE-2025-3545; CVE-2025-3546)
|
|
High
|
21 Apr 2025 |
21 Apr 2025 |
CPAI-2024-1601
|
|
CVE-2024-12849
|
WordPress Error Log Viewer Plugin Arbitrary File Read (CVE-2024-12849)
|
|
High
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2021-2310
|
|
CVE-2021-20041
|
SonicWall Sma 200 Firmware Authentication Bypass (CVE-2021-20041)
|
|
Critical
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2021-2309
|
|
CVE-2021-20042
|
SonicWall Sma 200 Firmware Authentication Bypass (CVE-2021-20042)
|
|
Critical
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2022-2204
|
|
CVE-2022-24310
|
Schneider Electric Interactive Graphical SCADA System Integer Overflow (CVE-2022-24310)
|
|
Medium
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2024-1530
|
|
CVE-2024-40777
|
Apple Multiple Products Out-Of-Bounds Access (CVE-2024-40777)
|
|
Critical
|
20 Apr 2025 |
20 Apr 2025 |
CPAI-2024-1452
|
|
CVE-2024-47009
|
Ivanti Avalanche Authentication Bypass (CVE-2024-47009)
|
|
Critical
|
12 Mar 2025 |
17 Apr 2025 |
CPAI-2025-0077
|
|
|
Argument Injection Over HTTP
|
|
Critical
|
2 Feb 2025 |
17 Apr 2025 |
CPAI-2024-1351
|
|
CVE-2024-53704
|
SonicWall SonicOS Authentication Bypass (CVE-2024-53704)
|
|
Critical
|
6 Feb 2025 |
16 Apr 2025 |
CPAI-2024-1321
|
|
CVE-2018-3760
CVE-2021-25864
CVE-2024-48914
CVE-2025-2264
|
Static Files Folders Directory Traversal (CVE-2018-3760; CVE-2021-25864; CVE-2024-48914; CVE-2025-2264)
|
|
High
|
15 Apr 2025 |
15 Apr 2025 |
CPAI-2023-2028
|
|
CVE-2023-22952
|
SugarCRM Code Injection (CVE-2023-22952)
|
|
Critical
|
15 Apr 2025 |
15 Apr 2025 |
CPAI-2024-1581
|
|
CVE-2024-47908
|
Ivanti Cloud Services Appliance Command Injection (CVE-2024-47908)
|
|
Medium
|
15 Apr 2025 |
15 Apr 2025 |
CPAI-2024-1571
|
|
CVE-2024-34781
|
Ivanti Endpoint Manager SQL Injection (CVE-2024-34781)
|
|
Medium
|
15 Apr 2025 |
15 Apr 2025 |
CPAI-2024-1472
|
|
CVE-2024-3274
|
D-Link DNS Series Information Disclosure (CVE-2024-3274)
|
|
Medium
|
14 Apr 2025 |
14 Apr 2025 |
CPAI-2019-3272
|
|
CVE-2019-6842
CVE-2019-6843
CVE-2019-6844
|
Schneider-Electric Modicon Denial of Service (CVE-2019-6842; CVE-2019-6843; CVE-2019-6844)
|
|
High
|
14 Apr 2025 |
14 Apr 2025 |
CPAI-2019-3271
|
|
CVE-2019-6848
|
Schneider Electric Modicon Denial of Service (CVE-2019-6848)
|
|
Critical
|
14 Apr 2025 |
14 Apr 2025 |
CPAI-2025-0190
|
|
CVE-2025-2620
|
D-Link DAP-1620 Buffer Overflow (CVE-2025-2620)
|
|
Critical
|
14 Apr 2025 |
14 Apr 2025 |
CPAI-2017-1955
|
|
CVE-2017-6026
|
Schneider Electric Modicon Remote Code Execution (CVE-2017-6026)
|
|
Medium
|
14 Apr 2025 |
14 Apr 2025 |
CPAI-2019-3270
|
|
CVE-2019-6841
|
Schneider Electric Modicon Denial of Service (CVE-2019-6841)
|
|
High
|
14 Apr 2025 |
14 Apr 2025 |
CPAI-2023-2023
|
|
CVE-2023-27159
|
Appwrite Server-Side Request Forgery (CVE-2023-27159)
|
|
High
|
20 Mar 2025 |
14 Apr 2025 |
CPAI-2025-0098
|
|
CVE-2025-0411
|
7-Zip Remote Code Execution (CVE-2025-0411)
|
|
High
|
10 Apr 2025 |
10 Apr 2025 |
CPAI-2019-3269
|
|
CVE-2019-6851
|
Schneider-Electric Modicon Information Disclosure (CVE-2019-6851)
|
|
Critical
|
10 Apr 2025 |
10 Apr 2025 |
CPAI-2018-2910
|
|
CVE-2018-7842
|
Schneider-Electric Modicon Privilege Escalation (CVE-2018-7842)
|
|
Medium
|
10 Apr 2025 |
10 Apr 2025 |
CPAI-2020-4289
|
|
CVE-2020-2230
|
Jenkins Cross-Site Scripting (CVE-2020-2230)
|
|
Medium
|
9 Apr 2025 |
9 Apr 2025 |
CPAI-2025-0188
|
Adobe APSB25-15
|
CVE-2025-30294
|
Adobe ColdFusion Improper Input Validation (APSB25-15: CVE-2025-30294)
|
|
High
|
9 Apr 2025 |
9 Apr 2025 |
CPAI-2025-0187
|
Adobe APSB25-15
|
CVE-2025-30285
|
Adobe ColdFusion Deserialization of Untrusted Data (APSB25-15: CVE-2025-30285)
|
|
Medium
|
9 Apr 2025 |
9 Apr 2025 |
CPAI-2025-0186
|
Adobe APSB25-15
|
CVE-2025-30292
|
Adobe ColdFusion Cross-Site Scripting (APSB25-15: CVE-2025-30292)
|
Feedback