|
Medium
|
3 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0162
|
|
CVE-2025-2748
|
Kentico Xperience Cross-Site Scripting (CVE-2025-2748)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0226
|
|
CVE-2025-24587
|
WordPress Email Subscription Popup Plugin SQL Injection (CVE-2025-24587)
|
|
Critical
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0221
|
|
CVE-2025-32433
|
Erlang/OTP SSH Server Remote Code Execution (CVE-2025-32433)
|
|
Critical
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0220
|
|
CVE-2025-30406
|
Gladinet CentreStack Insecure Deserialization (CVE-2025-30406)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0216
|
|
CVE-2025-30161
|
OpenEMR Development Team OpenEMR Stored Cross-Site Scripting (CVE-2025-30161)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2012-1509
|
|
CVE-2012-5863
|
Sinapsitech Multiple Products Command Injection (CVE-2012-5863)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0215
|
|
CVE-2025-2126
|
Joomla! JUX Real Estate Plugin SQL Injection (CVE-2025-2126)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0214
|
|
CVE-2025-30349
|
Horde Multiple Products Cross-Site Scripting (CVE-2025-30349)
|
|
Critical
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2025-0211
|
|
CVE-2025-25279
|
Mattermost Arbitrary File Read (CVE-2025-25279)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2022-2208
|
|
CVE-2022-0666
|
Packagist Microweber CRLF Injection (CVE-2022-0666)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2021-2315
|
|
CVE-2021-38147
|
Wipro Holmes Orchestrator Information Disclosure (CVE-2021-38147)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2023-2042
|
|
CVE-2023-36347
|
POS Codekop Authentication Bypass (CVE-2023-36347)
|
|
Medium
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2023-2041
|
|
CVE-2023-37645
|
Eyoucms Information Disclosure (CVE-2023-37645)
|
|
Medium
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2023-2040
|
|
CVE-2023-50720
|
XWiki Information Disclosure (CVE-2023-50720)
|
|
Critical
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2024-1611
|
|
CVE-2024-54794
|
SpagoBI Command Injection (CVE-2024-54794)
|
|
High
|
28 Apr 2025 |
28 Apr 2025 |
CPAI-2024-1593
|
|
CVE-2024-50340
|
Symphony PHP Framework Information Disclosure (CVE-2024-50340)
|
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2023-2037
|
|
CVE-2023-2924
|
Supcon SimField Arbitrary File Upload (CVE-2023-2924)
|
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2016-1435
|
|
CVE-2016-5077
CVE-2016-5642
|
SNMP Cross-Site Scripting (CVE-2016-5077; CVE-2016-5642)
|
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2025-0212
|
|
CVE-2025-28146
|
Edimax AC1200 Command Injection (CVE-2025-28146)
|
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2022-2211
|
|
CVE-2022-26187
|
TOTOLINK N600R Firmware Command Injection (CVE-2022-26187)
|
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2023-2031
|
|
CVE-2023-51123
|
D-Link DIR-815 Command Injection (CVE-2023-51123)
|
|
Critical
|
27 Apr 2025 |
27 Apr 2025 |
CPAI-2024-1588
|
|
CVE-2024-12828
|
Webmin Command Injection (CVE-2024-12828)
|
|
High
|
15 Apr 2025 |
24 Apr 2025 |
CPAI-2025-0193
|
|
CVE-2025-3102
|
WordPress OttoKit Plugin Authentication Bypass (CVE-2025-3102)
|
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2024-1614
|
|
CVE-2024-9054
|
Microchip TimeProvider 4100 Command Injection (CVE-2024-9054)
|
|
Medium
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2024-1613
|
|
CVE-2024-43686
|
Microchip TimeProvider 4100 Cross-Site Scripting (CVE-2024-43686)
|
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2024-1612
|
|
CVE-2024-6119
|
OpenSSL Denial of Service (CVE-2024-6119)
|
|
Medium
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2020-4303
|
|
CVE-2020-8143
|
Revive Adserver Open Redirect (CVE-2020-8143)
|
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2017-1957
|
|
CVE-2017-7696
|
SAP AS JAVA SSO Authentication Library Denial of Service (CVE-2017-7696)
|
|
Critical
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2021-2314
|
|
CVE-2021-20045
|
SonicWall Sma 200 Firmware Buffer Overflow (CVE-2021-20045)
|
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2023-2036
|
|
CVE-2023-22047
|
Oracle PeopleSoft Enterprise Remote Code Execution (CVE-2023-22047)
|
|
High
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2021-2311
|
|
CVE-2021-20044
|
SonicWall Sma 200 Firmware Command Injection (CVE-2021-20044)
|
|
Critical
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2021-2307
|
|
CVE-2021-22175
CVE-2021-22214
CVE-2021-39935
|
GitLab Server-Side Request Forgery (CVE-2021-22175; CVE-2021-22214; CVE-2021-39935)
|
|
Medium
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2022-2206
|
|
CVE-2022-1058
|
Gitea Open Redirect (CVE-2022-1058)
|
|
Critical
|
24 Apr 2025 |
24 Apr 2025 |
CPAI-2024-1583
|
|
CVE-2024-38289
|
R-HUB TurboMeeting SQL Injection (CVE-2024-38289)
|
|
High
|
17 Jan 2025 |
24 Apr 2025 |
CPAI-2024-1224
|
|
CVE-2024-49113
|
Microsoft Windows LDAP Denial of Service (CVE-2024-49113)
|
|
High
|
23 Apr 2025 |
23 Apr 2025 |
CPAI-2017-1956
|
|
CVE-2017-2827
CVE-2017-2828
CVE-2017-2832
CVE-2017-2833
CVE-2017-2841
CVE-2017-2842
CVE-2017-2843
CVE-2017-2844
CVE-2017-2845
CVE-2017-2846
CVE-2017-2847
CVE-2017-2848
|
Foscam C1 Command Injection (CVE-2017-2827; CVE-2017-2828; CVE-2017-2832; CVE-2017-2833; CVE-2017-2841; CVE-2017-2842; CVE-2017-2843; CVE-2017-2844; CVE-2017-2845; CVE-2017-2846; CVE-2017-2847; CVE-2017-2848)
|
|
Critical
|
23 Apr 2025 |
23 Apr 2025 |
CPAI-2023-2035
|
|
CVE-2023-7095
|
TOTOLINK A7100RU Buffer Overflow (CVE-2023-7095)
|
|
High
|
23 Apr 2025 |
23 Apr 2025 |
CPAI-2023-2034
|
|
CVE-2023-50780
|
Apache ActiveMQ Artemis Remote Code Execution (CVE-2023-50780)
|
|
Critical
|
23 Apr 2025 |
23 Apr 2025 |
CPAI-2023-2033
|
|
CVE-2023-36177
|
Badaix Snapcast Remote Code Execution (CVE-2023-36177)
|
|
High
|
23 Apr 2025 |
23 Apr 2025 |
CPAI-2025-0198
|
|
CVE-2025-30066
|
Tj-Actions Changed-Files Information Disclosure (CVE-2025-30066)
|
|
Critical
|
16 Mar 2025 |
23 Apr 2025 |
CPAI-2025-0090
|
|
CVE-2025-1316
|
Edimax Multiple Products Command Injection (CVE-2025-1316)
|
|
High
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2024-1606
|
|
CVE-2024-44871
|
MoziloCMS Arbitrary File Upload (CVE-2024-44871)
|
|
Critical
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2024-1600
|
|
CVE-2024-12084
|
Rsync Buffer Overflow (CVE-2024-12084)
|
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2024-1597
|
|
CVE-2024-44176
|
Apple Multiple Products Denial of Service (CVE-2024-44176)
|
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2020-4302
|
|
CVE-2020-8264
|
Ruby on Rails Cross-Site Scripting (CVE-2020-8264)
|
|
Medium
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2021-2306
|
|
CVE-2021-29490
|
Jellyfin Server-Side Request Forgery (CVE-2021-29490)
|
|
High
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2021-2305
|
|
CVE-2021-21311
|
Adminer Server-Side Request Forgery (CVE-2021-21311)
|
|
High
|
22 Apr 2025 |
22 Apr 2025 |
CPAI-2025-0194
|
|
CVE-2025-3539
CVE-2025-3540
CVE-2025-3541
CVE-2025-3542
CVE-2025-3543
CVE-2025-3544
CVE-2025-3545
CVE-2025-3546
|
H3C Magic Series Command Injection (CVE-2025-3539; CVE-2025-3540; CVE-2025-3541; CVE-2025-3542; CVE-2025-3543; CVE-2025-3544; CVE-2025-3545; CVE-2025-3546)
|
|
High
|
21 Apr 2025 |
21 Apr 2025 |
CPAI-2024-1601
|
|
CVE-2024-12849
|
WordPress Error Log Viewer Plugin Arbitrary File Read (CVE-2024-12849)
|
|
Critical
|
21 Apr 2025 |
21 Apr 2025 |
CPAI-2024-1589
|
|
CVE-2024-37843
|
Craft CMS SQL Injection (CVE-2024-37843)
|
Feedback