5.3

CVSS4.0

CVE-2025-13802 - jairiidriss RestaurantWebsite Make a Reservation cross site scripting

A vulnerability was determined in jairiidriss RestaurantWebsite up to e7911f12d035e8e2f9a75e7a28b59e4ef5c1d654. Impacted is an unknown function of the component Make a Reservation. This manipulation of the argument selected_date causes cross site scripting. The attack can be initiated remotely. The…

πŸ“… Published: Dec. 1, 2025, 2:02 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.3

CVSS4.0

CVE-2025-13800 - ADSLR NBR1005GPEV2 send_order.cgi set_mesh_disconnect command injection

A vulnerability was found in ADSLR NBR1005GPEV2 250814-r037c. This issue affects the function set_mesh_disconnect of the file /send_order.cgi. The manipulation of the argument mac results in command injection. It is possible to launch the attack remotely. The exploit has been made public and could …

πŸ“… Published: Dec. 1, 2025, 1:32 a.m. πŸ”„ Last Modified: Dec. 11, 2025, 10:19 p.m.

5.3

CVSS4.0

CVE-2025-13799 - ADSLR NBR1005GPEV2 send_order.cgi ap_macfilter_del command injection

A vulnerability has been found in ADSLR NBR1005GPEV2 250814-r037c. This vulnerability affects the function ap_macfilter_del of the file /send_order.cgi. The manipulation of the argument mac leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to…

πŸ“… Published: Dec. 1, 2025, 1:02 a.m. πŸ”„ Last Modified: Dec. 11, 2025, 10:20 p.m.

5.3

CVSS4.0

CVE-2025-13798 - ADSLR NBR1005GPEV2 send_order.cgi ap_macfilter_add command injection

A flaw has been found in ADSLR NBR1005GPEV2 250814-r037c. This affects the function ap_macfilter_add of the file /send_order.cgi. Executing manipulation of the argument mac can lead to command injection. The attack may be performed from remote. The exploit has been published and may be used. The ve…

πŸ“… Published: Dec. 1, 2025, 12:32 a.m. πŸ”„ Last Modified: Dec. 11, 2025, 10:44 p.m.

8.4

CVSS4.0

CVE-2025-64772 -

The installer of INZONE Hub 1.0.10.3 to 1.0.17.0 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with the privilege of the user invoking the installer.

πŸ“… Published: Dec. 1, 2025, 12:22 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.3

CVSS4.0

CVE-2025-13797 - ADSLR B-QE2W401 send_order.cgi parameterdel_swifimac command injection

A vulnerability was detected in ADSLR B-QE2W401 250814-r037c. Affected by this issue is the function parameterdel_swifimac of the file /send_order.cgi. Performing manipulation of the argument del_swifimac results in command injection. The attack is possible to be carried out remotely. The exploit i…

πŸ“… Published: Dec. 1, 2025, 12:02 a.m. πŸ”„ Last Modified: Dec. 11, 2025, 11:06 p.m.

4.6

CVSS3.1

CVE-2025-63522 -

Reverse Tabnabbing vulnerability in FeehiCMS 2.1.1 in the Comments Management function

πŸ“… Published: Dec. 1, 2025, midnight πŸ”„ Last Modified: Dec. 2, 2025, 3:06 a.m.

6.5

CVSS3.1

CVE-2025-65407 -

A use-after-free in the MPEG1or2Demux::newElementaryStream() function of Live555 Streaming Media v2018.09.02 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MPEG Program stream.

πŸ“… Published: Dec. 1, 2025, midnight πŸ”„ Last Modified: Dec. 23, 2025, 1:14 p.m.

7.5

CVSS3.1

CVE-2024-56089 -

An issue in Technitium through v13.2.2 enables attackers to conduct a DNS cache poisoning attack and inject fake responses by reviving the birthday attack.

πŸ“… Published: Dec. 1, 2025, midnight πŸ”„ Last Modified: Dec. 23, 2025, 3:59 p.m.

7.5

CVSS3.1

CVE-2025-65838 -

PublicCMS V5.202506.b is vulnerable to path traversal via the doUploadSitefile method.

πŸ“… Published: Dec. 1, 2025, midnight πŸ”„ Last Modified: Dec. 4, 2025, 6:09 p.m.
Total resulsts: 347438
Page 2698 of 34,744
Β« previous page Β» next page
Filters