With CVE Find, explore the world's largest database of vulnerabilities.
281 972 CVE found
Last update : 2025-02-21 00:03 +00:00
Common Vulnerabilities and Exposures, is a list of publicly disclosed computer security flaws.
0
Created 7 days ago
0
Updated 7 days ago
0
Created 30 days ago
0
Updated 30 days ago
Distribution by CVSS scores
CVE created per quarter since 1999
The last 15 High CVE
Total 281 972 CVE in Datadase| CVE ID | Published | Description | Score | Severity | |
|---|---|---|---|---|---|
CVE-2025-27088 |
2025-02-20 22:33 +00:00 | oxyno-zeta/s3-proxy is an aws s3 proxy written in go. In affected versions a Reflected Cross-site Sc... Cross-site Scripting |
8.4 |
High |
|
CVE-2025-0352 |
2025-02-20 19:15 +00:00 | Rapid Response Monitoring My Security Account App utilizes an API that could be exploited by an atta... Authorization problems |
8.7 |
High |
|
CVE-2025-1265 |
2025-02-20 19:11 +00:00 | An OS command injection vulnerability exists in Vinci Protocol Analyzer that could allow an attacker... OS Command Injection |
9.4 |
Critical |
|
CVE-2025-24893 |
2025-02-20 19:19 +00:00 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of... |
9.8 |
Critical |
|
CVE-2025-27096 |
2025-02-20 19:07 +00:00 | WeGIA is a Web Manager for Institutions with a focus on Portuguese language. A SQL Injection vulnera... SQL Injection |
9.4 |
Critical |
|
CVE-2025-27091 |
2025-02-20 17:50 +00:00 | OpenH264 is a free license codec library which supports H.264 encoding and decoding. A vulnerability... |
8.6 |
High |
|
CVE-2023-51319 |
2025-02-20 00:00 +00:00 | PHPJabbers Bus Reservation System v1.1 is vulnerable to CSV Injection vulnerability which allows an ... |
8.8 |
High |
|
CVE-2025-20059 |
2025-02-20 14:11 +00:00 | Relative Path Traversal vulnerability in Ping Identity PingAM Java Policy Agent allows Parameter Inj... |
9.2 |
Critical |
|
CVE-2025-0868 |
2025-02-20 11:26 +00:00 | A vulnerability, that could result in Remote Code Execution (RCE), has been found in DocsGPT. Due to... Command Injection |
9.3 |
Critical |
|
CVE-2024-13789 |
2025-02-20 09:21 +00:00 | The ravpage plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and in... |
9.8 |
Critical |
|
CVE-2025-1293 |
2025-02-20 00:28 +00:00 | Hermes versions up to 0.4.0 improperly validated the JWT provided when using the AWS ALB authenticat... |
8.2 |
High |
|
CVE-2024-12284 |
2025-02-19 23:30 +00:00 | Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows.... Improper Privilege Management |
8.8 |
High |
|
CVE-2024-37361 |
2025-02-19 23:25 +00:00 | The application deserializes untrusted data without sufficiently verifying that the resulting data w... |
9.9 |
Critical |
|
CVE-2024-37359 |
2025-02-19 22:58 +00:00 | The web server receives a URL or similar request from an upstream component and retrieves the conten... Server-Side Request Forgery - SSRF |
8.6 |
High |
|
CVE-2024-5705 |
2025-02-19 22:55 +00:00 | The product performs an authorization check when an actor attempts to access a resource or perform a... Authorization problems |
8.8 |
High |
2025©
tesweb SA
