CVE ID | Publié | Description | Score | Gravité | |
---|---|---|---|---|---|
CVE-2025-2005 |
2025-04-02 09h21 +00:00 |
The Front End Users plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... File Inclusion |
9.8 |
Critique |
|
CVE-2025-3063 |
2025-04-02 09h21 +00:00 |
The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data... Authorization problems |
8.8 |
Haute |
|
CVE-2023-40714 |
2025-04-02 08h06 +00:00 |
A relative path traversal in Fortinet FortiSIEM versions 7.0.0, 6.7.0 through 6.7.2, 6.6.0 through 6... |
9.9 |
Critique |
|
CVE-2024-39780 |
2025-04-02 07h31 +00:00 |
A YAML deserialization vulnerability was found in the Robot Operating System (ROS) 'dynparam', a com... |
8.4 |
Haute |
|
CVE-2025-0676 |
2025-04-02 06h32 +00:00 |
This vulnerability involves command injection in tcpdump within Moxa products, enabling an authentic... OS Command Injection |
8.6 |
Haute |
|
CVE-2024-36465 |
2025-04-02 06h11 +00:00 |
A low privilege (regular) Zabbix user with API access can use SQL injection vulnerability in include... SQL Injection |
8.6 |
Haute |
|
CVE-2025-0415 |
2025-04-02 06h22 +00:00 |
A remote attacker with web administrator privileges can exploit the device’s web interface to exec... OS Command Injection |
9.2 |
Critique |
|
CVE-2025-25060 |
2025-04-02 03h20 +00:00 |
Missing authentication for critical function vulnerability exists in AssetView and AssetView CLOUD. ... Authorization problems |
8.2 |
Haute |
|
CVE-2025-30356 |
2025-04-01 22h06 +00:00 |
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Exte... Overflow |
9.3 |
Critique |
|
CVE-2025-30580 |
2025-04-01 20h58 +00:00 |
Improper Control of Generation of Code ('Code Injection') vulnerability in NotFound DigiWidgets Imag... Code Injection |
10 |
Critique |