10
CVSS4.0
CVE-2025-61945 - Missing Authentication for Critical Function in Radiometrics VizAir
Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE values, which are essential for accurate weather โฆ
๐
Published: Nov. 4, 2025, 4:10 p.m.
๐ Last Modified: Nov. 5, 2025, 10:47 a.m.
0.0
CVE-2025-64453 -
Not used
๐
Published: Nov. 4, 2025, 2:26 p.m.
๐ Last Modified: Nov. 5, 2025, 3:55 a.m.
0.0
CVE-2025-64455 -
Not used
๐
Published: Nov. 4, 2025, 2:26 p.m.
๐ Last Modified: Nov. 5, 2025, 3:55 a.m.
0.0
CVE-2025-64454 -
Not used
๐
Published: Nov. 4, 2025, 2:26 p.m.
๐ Last Modified: Nov. 5, 2025, 3:55 a.m.
0.0
CVE-2025-64452 -
Not used
๐
Published: Nov. 4, 2025, 2:26 p.m.
๐ Last Modified: Nov. 5, 2025, 3:55 a.m.
0.0
CVE-2025-64450 -
Not used
๐
Published: Nov. 4, 2025, 2:26 p.m.
๐ Last Modified: Nov. 5, 2025, 3:55 a.m.
0.0
CVE-2025-64449 -
Not used
๐
Published: Nov. 4, 2025, 2:26 p.m.
๐ Last Modified: Nov. 5, 2025, 3:55 a.m.
0.0
CVE-2025-64451 -
Not used
๐
Published: Nov. 4, 2025, 2:26 p.m.
๐ Last Modified: Nov. 5, 2025, 3:55 a.m.
0.0
CVE-2025-64448 -
Not used
๐
Published: Nov. 4, 2025, 2:26 p.m.
๐ Last Modified: Nov. 5, 2025, 3:55 a.m.
4.4
CVSS3.1
CVE-2025-12184 - MeetingList <= 0.11 - Authenticated (Admin+) Stored Cross-Site Scripting
The MeetingList plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 0.11 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and abโฆ
๐
Published: Nov. 4, 2025, 2:25 p.m.
๐ Last Modified: Nov. 5, 2025, 10:47 a.m.
Filters