CVE Find - Vulnerabilities Database

See all CVE
CVE 2025
With CVE Find, explore the world's largest database of vulnerabilities.

314 674 vulnerabilities

Last update : 2025-10-18 23h10 +00:00
Common Vulnerabilities and Exposures (CVE), is a list of publicly disclosed computer security flaws.
View CVE 2025
0
Created 7 days ago
0
Updated 7 days ago
0
Created 30 days ago
0
Updated 30 days ago

Free CVE Email Notifications

Get free real-time alerts on new vulnerabilities with CVE Find.
Stay protected and informed instantly !
Free: Create an account

The last 10 High CVE

Total 314 674 CVE in Datadase
See all CVE
CVE ID Published Description Score Severity

CVE-2025-9890

2025-10-18
08h25 +00:00		 The Theme Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up...
Cross-Site Request Forgery - CSRF
8.8
High

CVE-2025-5555

2025-10-18
08h02 +00:00		 A vulnerability has been found in Nixdorf Wincor PORT IO Driver up to 1.0.0.1. This affects the func...
Overflow
8.5
High

CVE-2025-11391

2025-10-18
06h42 +00:00		 The PPOM – Product Addons & Custom Fields for WooCommerce plugin for WordPress is vulnerable to ar...
File Inclusion
9.8
Critical

CVE-2017-20206

2025-10-18
03h33 +00:00		 The Appointments plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and i...
9.8
Critical

CVE-2017-20207

2025-10-18
03h33 +00:00		 The Flickr Gallery plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and...
9.8
Critical

CVE-2017-20208

2025-10-18
03h33 +00:00		 The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plug...
9.8
Critical

CVE-2025-62515

2025-10-17
20h38 +00:00		 pyquokka is a framework for making data lakes work for time series. In versions 0.3.1 and prior, the...
9.8
Critical

CVE-2025-62650

2025-10-17
00h00 +00:00		 The Restaurant Brands International (RBI) assistant platform through 2025-09-06 relies on client-sid...
8.3
High

CVE-2025-62645

2025-10-17
00h00 +00:00		 The Restaurant Brands International (RBI) assistant platform through 2025-09-06 allows a remote auth...
Improper Privilege Management
9.9
Critical

CVE-2025-11925

2025-10-17
19h56 +00:00		 Incorrect Content-Type header in one of the APIs (`text/html` instead of `application/json`) replies...
10
Critical

Distribution by CVSS scores


CVE created per quarter since 1999

The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.