High
|
20 Feb 2025 |
20 Feb 2025 |
CPAI-2021-2296
|
|
CVE-2021-27030
|
Autodesk FBX Review Directory Traversal (CVE-2021-27030)
|
Critical
|
19 Feb 2025 |
19 Feb 2025 |
CPAI-2025-0043
|
|
CVE-2014-0130 CVE-2015-3035 CVE-2016-4523 CVE-2019-20085 CVE-2020-5410 CVE-2023-2825 CVE-2023-32315 CVE-2023-34843 CVE-2023-34990 CVE-2023-35843 CVE-2023-35844 CVE-2023-37607 CVE-2023-41266 CVE-2024-57727
|
Web Servers Directory Traversal (CVE-2014-0130; CVE-2015-3035; CVE-2016-4523; CVE-2019-20085; CVE-2020-5410; CVE-2023-2825; CVE-2023-32315; CVE-2023-34843; CVE-2023-34990; CVE-2023-35843; CVE-2023-35844; CVE-2023-37607; CVE-2023-41266; CVE-2024-57727)
|
High
|
18 Feb 2025 |
18 Feb 2025 |
CPAI-2024-1394
|
|
CVE-2024-37569 CVE-2024-37570
|
Mitel 6869i Command Injection (CVE-2024-37569; CVE-2024-37570)
|
High
|
18 Feb 2025 |
18 Feb 2025 |
CPAI-2024-1372
|
|
CVE-2024-57357
|
TP-Link TL-WPA 8630 Command Injection (CVE-2024-57357)
|
High
|
17 Feb 2025 |
17 Feb 2025 |
CPAI-2025-0041
|
|
CVE-2025-1094
|
PostgreSQL SQL Injection (CVE-2025-1094)
|
Medium
|
16 Feb 2025 |
16 Feb 2025 |
CPAI-2024-1377
|
|
CVE-2024-54502
|
Apple Multiple Products Use After Free (CVE-2024-54502)
|
Critical
|
13 Feb 2025 |
13 Feb 2025 |
CPAI-2024-1393
|
|
CVE-2024-9916
|
HuangDou UTCMS Command Injection (CVE-2024-9916)
|
High
|
13 Feb 2025 |
13 Feb 2025 |
CPAI-2024-1383
|
|
CVE-2024-45518
|
Zimbra Collaboration Server-Side Request Forgery (CVE-2024-45518)
|
High
|
13 Feb 2025 |
13 Feb 2025 |
CPAI-2024-1366
|
|
CVE-2024-47008
|
Ivanti Avalanche Server-Side Request Forgery (CVE-2024-47008)
|
Critical
|
12 Feb 2025 |
12 Feb 2025 |
CPAI-2025-0035
|
Microsoft CVE-2025-21376
|
CVE-2025-21376
|
Microsoft Windows LDAP Remote Code Execution (CVE-2025-21376)
|
Medium
|
12 Feb 2025 |
12 Feb 2025 |
CPAI-2023-1995
|
|
CVE-2023-6065
|
WordPress Quttera Web Malware Scanner Plugin Information Disclosure (CVE-2023-6065)
|
High
|
10 Feb 2025 |
10 Feb 2025 |
CPAI-2024-1355
|
|
CVE-2024-55417
|
PHP Voyager Package Arbitrary File Upload (CVE-2024-55417)
|
High
|
9 Feb 2025 |
9 Feb 2025 |
CPAI-2024-1363
|
|
CVE-2024-38653
|
Ivanti Avalanche XML External Entity Injection (CVE-2024-38653)
|
High
|
9 Feb 2025 |
9 Feb 2025 |
CPAI-2024-1353
|
|
CVE-2024-55416
|
PHP Voyager Package Cross-Site Scripting (CVE-2024-55416)
|
High
|
9 Feb 2025 |
9 Feb 2025 |
CPAI-2024-1352
|
|
CVE-2024-55415
|
PHP Voyager Package Path Traversal (CVE-2024-55415)
|
High
|
6 Feb 2025 |
6 Feb 2025 |
CPAI-2024-1327
|
|
CVE-2024-28726
|
D-Link DWR-2000M Command Injection (CVE-2024-28726)
|
Medium
|
4 Feb 2025 |
4 Feb 2025 |
CPAI-2025-0015
|
|
|
Nagios Enterprises Nagios XI Command Injection
|
Critical
|
3 Feb 2025 |
3 Feb 2025 |
CPAI-2024-1325
|
|
CVE-2024-11972
|
WordPress Hunk Companion Plugin Authentication Bypass (CVE-2024-11972)
|
Critical
|
2 Feb 2025 |
2 Feb 2025 |
CPAI-2024-1333
|
|
CVE-2024-45507
|
Apache OFBiz Server-Side Request Forgery (CVE-2024-45507)
|
Medium
|
29 Jan 2025 |
29 Jan 2025 |
CPAI-2024-1324
|
|
CVE-2024-45826
|
Rockwell Automation ThinManager Directory Traversal (CVE-2024-45826)
|
Critical
|
29 Jan 2025 |
29 Jan 2025 |
CPAI-2024-1317
|
|
CVE-2024-4320
|
LoLLMs WebUI Path Traversal (CVE-2024-4320)
|
Critical
|
29 Jan 2025 |
29 Jan 2025 |
CPAI-2024-1312
|
|
CVE-2024-57684
|
D-Link DIR-816 Authentication Bypass (CVE-2024-57684)
|
Critical
|
29 Jan 2025 |
29 Jan 2025 |
CPAI-2024-1291
|
|
CVE-2024-11773
|
Ivanti Cloud Services Appliance SQL Injection (CVE-2024-11773)
|
High
|
20 Jan 2025 |
28 Jan 2025 |
CPAI-2024-1230
|
|
CVE-2024-47007 CVE-2024-50317 CVE-2024-50318 CVE-2024-50319 CVE-2024-50321
|
Ivanti Avalanche Denial of Service (CVE-2024-47007; CVE-2024-50317; CVE-2024-50318; CVE-2024-50319; CVE-2024-50321)
|
High
|
27 Jan 2025 |
27 Jan 2025 |
CPAI-2024-1316
|
|
CVE-2024-50326
|
Ivanti Endpoint Manager SQL Injection (CVE-2024-50326)
|
High
|
23 Jan 2025 |
23 Jan 2025 |
CPAI-2024-1319
|
|
CVE-2024-49112
|
Microsoft Windows LDAP Remote Code Execution (CVE-2024-49112)
|
High
|
23 Jan 2025 |
23 Jan 2025 |
CPAI-2024-1304
|
|
CVE-2024-51818
|
WordPress Fancy Product Designer Plugin SQL Injection (CVE-2024-51818)
|
High
|
23 Jan 2025 |
23 Jan 2025 |
CPAI-2024-1295
|
|
CVE-2024-43452
|
Microsoft Windows Privilege Escalation (CVE-2024-43452)
|
Medium
|
23 Jan 2025 |
23 Jan 2025 |
CPAI-2024-1290
|
|
CVE-2024-34787
|
Ivanti Endpoint Manager Directory Traversal (CVE-2024-34787)
|
Critical
|
20 Jan 2025 |
20 Jan 2025 |
CPAI-2024-1246
|
|
CVE-2024-9932
|
WordPress Wux Blog Editor Plugin Arbitrary File Upload (CVE-2024-9932)
|
Critical
|
20 Jan 2025 |
20 Jan 2025 |
CPAI-2023-1985
|
|
CVE-2023-31446
|
Cassia Network Gateway Command Injection (CVE-2023-31446)
|
Critical
|
20 Jan 2025 |
20 Jan 2025 |
CPAI-2024-1239
|
|
CVE-2024-3552
|
WordPress SalePHPscripts Web Directory Free Plugin SQL Injection (CVE-2024-3552)
|
High
|
16 Jan 2025 |
16 Jan 2025 |
CPAI-2024-1250
|
|
CVE-2024-43464
|
Microsoft SharePoint Server Remote Code Execution (CVE-2024-43464)
|
Medium
|
16 Jan 2025 |
16 Jan 2025 |
CPAI-2024-1242
|
|
CVE-2024-0881
|
WordPress Combo Blocks Plugin Authentication Bypass (CVE-2024-0881)
|
Critical
|
16 Jan 2025 |
16 Jan 2025 |
CPAI-2023-1983
|
|
CVE-2023-4521
|
WordPress Moove Import XML and RSS Feeds Plugin Remote Code Execution (CVE-2023-4521)
|
Critical
|
16 Jan 2025 |
16 Jan 2025 |
CPAI-2024-1231
|
|
CVE-2024-8856
|
WordPress Time Capsule Plugin Remote Code Execution (CVE-2024-8856)
|
High
|
16 Jan 2025 |
16 Jan 2025 |
CPAI-2024-1227
|
|
CVE-2024-21182
|
Oracle WebLogic Server Remote Code Execution (CVE-2024-21182)
|
High
|
15 Jan 2025 |
15 Jan 2025 |
CPAI-2024-1241
|
|
CVE-2024-54819
|
I Librarian Server-Side Request Forgery (CVE-2024-54819)
|
Medium
|
15 Jan 2025 |
15 Jan 2025 |
CPAI-2024-1233
|
|
CVE-2024-12343
|
TP-Link VN020 F3v Buffer Overflow (CVE-2024-12343)
|
Medium
|
15 Jan 2025 |
15 Jan 2025 |
CPAI-2021-2280
|
|
CVE-2021-24202 CVE-2021-24203
|
WordPress Elementor Website Builder Plugin Cross-Site Scripting (CVE-2021-24202; CVE-2021-24203)
|
High
|
15 Jan 2025 |
15 Jan 2025 |
CPAI-2024-1102
|
|
CVE-2024-10387
|
Rockwell Automation ThinManager ThinServer Out-Of-Bounds Read (CVE-2024-10387)
|
Medium
|
15 Jan 2025 |
15 Jan 2025 |
CPAI-2024-1081
|
|
CVE-2024-10386
|
Rockwell Automation ThinManager Authentication Bypass (CVE-2024-10386)
|
High
|
13 Jan 2025 |
13 Jan 2025 |
CPAI-2024-1234
|
|
CVE-2024-13129
|
Roxy-WI Command Injection (CVE-2024-13129)
|
High
|
12 Jan 2025 |
12 Jan 2025 |
CPAI-2023-1984
|
|
CVE-2023-5003
|
Active Directory / LDAP Integration WordPress Plugin Information Disclosure (CVE-2023-5003)
|
High
|
12 Jan 2025 |
12 Jan 2025 |
CPAI-2023-1981
|
|
CVE-2023-20888
|
VMware VRealize Network Insight Insecure Deserialization (CVE-2023-20888)
|
Medium
|
12 Jan 2025 |
12 Jan 2025 |
CPAI-2024-1228
|
|
CVE-2024-2340
|
Avada Information Disclosure (CVE-2024-2340)
|
Medium
|
1 Jan 2025 |
12 Jan 2025 |
CPAI-2024-1188
|
|
CVE-2024-5458
|
PHP Authentication Bypass (CVE-2024-5458)
|
Medium
|
12 Jan 2025 |
12 Jan 2025 |
CPAI-2024-1170
|
|
CVE-2024-54003
|
Jenkins Simple Queue Plugin Cross-Site Scripting (CVE-2024-54003)
|
High
|
12 Jan 2025 |
12 Jan 2025 |
CPAI-2024-1237
|
|
CVE-2024-32848
|
Ivanti Endpoint Manager SQL Injection (CVE-2024-32848)
|
High
|
12 Jan 2025 |
12 Jan 2025 |
CPAI-2024-1229
|
|
CVE-2024-34779
|
Ivanti Endpoint Manager SQL Injection (CVE-2024-34779)
|