CVE ID | Published | Description | Score | Severity | |
---|---|---|---|---|---|
CVE-2025-25775 |
2025-04-25 00h00 +00:00 |
Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket parameter ... SQL Injection |
9.8 |
Critical |
|
CVE-2025-3928 |
2025-04-25 15h56 +00:00 |
Commvault Web Server has an unspecified vulnerability that can be exploited by a remote, authenticat... |
8.7 |
High |
|
CVE-2025-32432 |
2025-04-25 15h04 +00:00 |
Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond... Code Injection |
10 |
Critical |
|
CVE-2025-3638 |
2025-04-25 14h42 +00:00 |
A flaw was found in Moodle. The analysis request action in the Brickfield tool did not include the n... Cross-Site Request Forgery - CSRF |
8.8 |
High |
|
CVE-2025-3641 |
2025-04-25 14h43 +00:00 |
A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS Dropbox re... Code Injection |
8.8 |
High |
|
CVE-2025-3642 |
2025-04-25 14h43 +00:00 |
A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS EQUELLA re... Code Injection |
8.8 |
High |
|
CVE-2025-2470 |
2025-04-25 11h12 +00:00 |
The Service Finder Bookings plugin for WordPress, used by the Service Finder - Directory and Job Boa... Improper Privilege Management |
9.8 |
Critical |
|
CVE-2025-1279 |
2025-04-25 08h22 +00:00 |
The BM Content Builder plugin for WordPress is vulnerable to unauthorized modification of data that ... Authorization problems |
8.8 |
High |
|
CVE-2025-2238 |
2025-04-25 06h45 +00:00 |
The Vikinger theme for WordPress is vulnerable to privilege in all versions up to, and including, 1.... Improper Privilege Management |
8.8 |
High |
|
CVE-2025-46616 |
2025-04-25 00h00 +00:00 |
Quantum StorNext Web GUI API before 7.2.4 allows potential Arbitrary Remote Code Execution (RCE) via... File Inclusion |
9.9 |
Critical |