With CVE Find, explore the world's largest database of vulnerabilities.
288 603 vulnerabilities
Last update : 2025-04-06 06h31 +00:00
Common Vulnerabilities and Exposures (CVE), is a list of publicly disclosed computer security flaws.
0
Created 7 days ago
0
Updated 7 days ago
0
Created 30 days ago
0
Updated 30 days ago
Free CVE Email Notifications
Get free real-time alerts on new vulnerabilities with CVE Find.Stay protected and informed instantly !
The last 10 High CVE
Total 288 603 CVE in Datadase| CVE ID | Published | Description | Score | Severity | |
|---|---|---|---|---|---|
CVE-2025-3259 |
2025-04-04 17h31 +00:00 |
A vulnerability, which was classified as critical, has been found in Tenda RX3 16.03.13.11. This iss... Overflow |
8.7 |
High |
|
CVE-2025-31480 |
2025-04-04 14h49 +00:00 |
aiven-extras is a PostgreSQL extension. This is a privilege escalation vulnerability, allowing eleva... |
9.1 |
Critical |
|
CVE-2025-31403 |
2025-04-04 13h34 +00:00 |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i... SQL Injection |
9.3 |
Critical |
|
CVE-2025-1865 |
2025-04-04 09h52 +00:00 |
The kernel driver, accessible to low-privileged users, exposes a function that fails to properly val... |
8.5 |
High |
|
CVE-2025-2244 |
2025-04-04 09h52 +00:00 |
A vulnerability in the sendMailFromRemoteSource method in Emails.php as used in Bitdefender Grav... |
9.5 |
Critical |
|
CVE-2025-3105 |
2025-04-04 07h27 +00:00 |
The Vehica Core plugin for WordPress, used by the Vehica - Car Dealer & Listing WordPress Theme, is ... Improper Privilege Management |
8.8 |
High |
|
CVE-2025-2780 |
2025-04-04 07h00 +00:00 |
The Woffice Core plugin for WordPress, used by the Woffice Theme, is vulnerable to arbitrary file up... File Inclusion |
9.8 |
Critical |
|
CVE-2025-32111 |
2025-04-04 00h00 +00:00 |
The Docker image from acme.sh before 40b6db6 is based on a .github/workflows/dockerhub.yml file that... |
8.7 |
High |
|
CVE-2024-13645 |
2025-04-04 05h22 +00:00 |
The tagDiv Composer plugin for WordPress is vulnerable to PHP Object Instantiation in all versions u... Code Injection |
9.8 |
Critical |
|
CVE-2025-3192 |
2025-04-04 05h00 +00:00 |
Versions of the package spatie/browsershot from 0.0.0 are vulnerable to Server-side Request Forgery ... Server-Side Request Forgery - SSRF |
8.8 |
High |
Distribution by CVSS scores
CVE created per quarter since 1999
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.