Critical
|
17 Mar 2025 |
7 May 2025 |
CPAI-2024-1459
|
|
CVE-2024-22660 CVE-2024-22662 CVE-2024-37631 CVE-2024-37632 CVE-2024-37633 CVE-2024-37634 CVE-2024-37635 CVE-2024-37637 CVE-2024-37639 CVE-2024-37640
|
TOTOLINK A3700R Stack Overflow (CVE-2024-22660; CVE-2024-22662; CVE-2024-37631; CVE-2024-37632; CVE-2024-37633; CVE-2024-37634; CVE-2024-37635; CVE-2024-37637; CVE-2024-37639; CVE-2024-37640)
|
High
|
7 May 2025 |
7 May 2025 |
CPAI-2024-1638
|
|
CVE-2024-7399
|
Samsung MagicINFO Remote Code Execution (CVE-2024-7399)
|
Medium
|
7 May 2025 |
7 May 2025 |
CPAI-2022-2214
|
|
CVE-2022-32206
|
Haxx Curl Denial of Service (CVE-2022-32206)
|
Critical
|
7 May 2025 |
7 May 2025 |
CPAI-2021-2321
|
|
CVE-2021-41649
|
Online Shopping System Advanced SQL Injection (CVE-2021-41649)
|
High
|
7 May 2025 |
7 May 2025 |
CPAI-2021-2320
|
|
CVE-2021-21251
|
OneDev Arbitrary File Write (CVE-2021-21251)
|
Critical
|
7 May 2025 |
7 May 2025 |
CPAI-2025-0192
|
|
CVE-2025-1661
|
WordPress HUSKY Plugin Path Traversal (CVE-2025-1661)
|
Critical
|
3 Feb 2025 |
7 May 2025 |
CPAI-2024-1293
|
|
CVE-2024-55591
|
Fortinet Multiple Products Authentication Bypass (CVE-2024-55591)
|
Medium
|
6 May 2025 |
6 May 2025 |
CPAI-2025-0258
|
|
CVE-2025-1103
|
D-Link DIR-823X Denial of Service (CVE-2025-1103)
|
Critical
|
6 May 2025 |
6 May 2025 |
CPAI-2023-2048
|
|
CVE-2023-42818 CVE-2023-43650 CVE-2023-46123
|
FIT2CLOUD JumpServer Brute Force Login Attempt (CVE-2023-42818; CVE-2023-43650; CVE-2023-46123)
|
Critical
|
6 May 2025 |
6 May 2025 |
CPAI-2023-2044
|
|
CVE-2023-5830
|
ColumbiaSoft Document Locator Server-Side Request Forgery (CVE-2023-5830)
|
Critical
|
14 Apr 2025 |
6 May 2025 |
CPAI-2025-0191
|
|
CVE-2025-3248
|
Langflow Remote Code Execution (CVE-2025-3248)
|
Critical
|
5 May 2025 |
5 May 2025 |
CPAI-2021-2318
|
|
CVE-2021-27670
|
Appspace Server-Side Request Forgery (CVE-2021-27670)
|
Critical
|
5 May 2025 |
5 May 2025 |
CPAI-2018-2914
|
|
CVE-2018-10931
|
Cobbler Improper Access Control (CVE-2018-10931)
|
Critical
|
5 May 2025 |
5 May 2025 |
CPAI-2021-2317
|
|
CVE-2021-37538
|
SmartDataSoft SmartBlog for PrestaShop SQL Injection (CVE-2021-37538)
|
Medium
|
5 May 2025 |
5 May 2025 |
CPAI-2024-1630
|
|
CVE-2024-44236
|
Apple MacOS Out of Bounds Write (CVE-2024-44236)
|
Critical
|
27 Apr 2025 |
5 May 2025 |
CPAI-2025-0245
|
|
CVE-2024-58136 CVE-2025-32432
|
Craft CMS Remote Code Execution (CVE-2024-58136; CVE-2025-32432)
|
Critical
|
5 May 2025 |
5 May 2025 |
CPAI-2024-1617
|
|
CVE-2024-56511
|
DataEase Directory Traversal (CVE-2024-56511)
|
Critical
|
20 Apr 2025 |
5 May 2025 |
CPAI-2024-1602
|
|
CVE-2023-51984 CVE-2024-33342
|
D-Link DIR-822 Command Injection (CVE-2023-51984; CVE-2024-33342)
|
Critical
|
8 Apr 2025 |
5 May 2025 |
CPAI-2023-2015
|
|
CVE-2023-51092 CVE-2023-51095
|
Tenda M3 Stack Overflow (CVE-2023-51092; CVE-2023-51095)
|
Critical
|
25 Mar 2025 |
5 May 2025 |
CPAI-2021-2302
|
|
CVE-2019-10955 CVE-2021-23385 CVE-2021-23393 CVE-2021-32618
|
Open Redirect Attempt (CVE-2019-10955; CVE-2021-23385; CVE-2021-23393; CVE-2021-32618)
|
High
|
4 May 2025 |
4 May 2025 |
CPAI-2023-2049
|
|
CVE-2023-44221
|
SonicWall SMA Command Injection (CVE-2023-44221)
|
Critical
|
4 May 2025 |
4 May 2025 |
CPAI-2022-2213
|
|
CVE-2022-46020
|
WBCE CMS Arbitrary File Upload (CVE-2022-46020)
|
Critical
|
27 Apr 2025 |
4 May 2025 |
CPAI-2025-0246
|
|
CVE-2025-31324
|
SAP NetWeaver Remote Code Execution (CVE-2025-31324)
|
Critical
|
4 May 2025 |
4 May 2025 |
CPAI-2025-0242
|
|
CVE-2025-27520
|
Python BentoML Library Insecure Deserialization (CVE-2025-27520)
|
Critical
|
27 Apr 2025 |
4 May 2025 |
CPAI-2025-0224
|
|
CVE-2025-34028
|
Commvault Command Center Remote Code Execution (CVE-2025-34028)
|
High
|
4 May 2025 |
4 May 2025 |
CPAI-2024-1619
|
|
CVE-2024-11477
|
7-Zip Integer Underflow (CVE-2024-11477)
|
Critical
|
4 May 2025 |
4 May 2025 |
CPAI-2025-0210
|
|
CVE-2025-28038 CVE-2025-28039
|
TOTOLINK EX1200T Remote Command Execution (CVE-2025-28038; CVE-2025-28039)
|
Medium
|
4 May 2025 |
4 May 2025 |
CPAI-2025-0204
|
|
CVE-2025-1608 CVE-2025-1610
|
LB-LINK AC1900 Command Injection (CVE-2025-1608; CVE-2025-1610)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0244
|
|
CVE-2025-25292
|
SAML-Toolkits ruby-saml Authentication Bypass (CVE-2025-25292)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1627
|
|
CVE-2024-13162
|
Ivanti Endpoint Manager SQL Injection (CVE-2024-13162)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0239
|
|
CVE-2025-2546
|
D-Link Multiple Products Improper Access Control (CVE-2025-2546)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0238
|
|
CVE-2025-2359
|
D-Link DIR-823G Authentication Bypass (CVE-2025-2359)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0237
|
|
CVE-2025-3785
|
D-Link DWR-M961 Buffer Overflow (CVE-2025-3785)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0236
|
|
CVE-2025-28145
|
Edimax AC1200 Command Injection (CVE-2025-28145)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0235
|
|
CVE-2025-2993
|
Tenda FH1202 Improper Access Control (CVE-2025-2993)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0234
|
|
CVE-2025-28142
|
Dimax AC1200 Command Injection (CVE-2025-28142)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0233
|
|
CVE-2025-3663
|
TOTOLINK A3700R Improper Access Control (CVE-2025-3663)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0232
|
|
CVE-2025-28144
|
Edimax AC1200 Buffer Overflow (CVE-2025-28144)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1626
|
|
CVE-2024-56902
|
Geovision GV-ASManager Information Disclosure (CVE-2024-56902)
|
Medium
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0231
|
|
CVE-2025-31486
|
Vite Arbitrary File Read (CVE-2025-31486)
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0230
|
|
CVE-2025-2747
|
Kentico Xperience Authentication Bypass (CVE-2025-2747)
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1625
|
|
CVE-2024-3080
|
ASUS ZenWiFi XT8 Authentication Bypass (CVE-2024-3080)
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1624
|
|
CVE-2024-57050
|
TP-Link WR840N Authentication Bypass (CVE-2024-57050)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0229
|
|
CVE-2025-3538
|
D-Link DI-8100 Buffer Overflow (CVE-2025-3538)
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0228
|
|
CVE-2025-2746
|
Kentico Xperience Authentication Bypass (CVE-2025-2746)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0227
|
|
CVE-2025-3346
|
Tenda AC7 Buffer Overflow (CVE-2025-3346)
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2024-1620
|
|
CVE-2024-30568
|
Netgear R6850 firmware Command Injection (CVE-2024-30568)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2025-0219
|
|
CVE-2025-3328
|
Tenda AC1206 Firmware Buffer Overflow (CVE-2025-3328)
|
High
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2023-2045
|
|
CVE-2023-45375
|
01generator PireosPay SQL Injection (CVE-2023-45375)
|
Critical
|
29 Apr 2025 |
29 Apr 2025 |
CPAI-2023-2038
|
|
CVE-2023-51091
|
Tenda M3 Stack Overflow (CVE-2023-51091)
|