5.5

CVSS3.1

CVE-2025-20986 -

Improper access control in ScreenCapture for Galaxy Watch prior to SMR Jun-2025 Release 1 allows local attackers to take screenshots.

πŸ“… Published: June 4, 2025, 4:56 a.m. πŸ”„ Last Modified: Feb. 2, 2026, 6:14 p.m.

5.5

CVSS3.1

CVE-2025-20985 -

Improper privilege management in ThemeManager prior to SMR Jun-2025 Release 1 allows local privileged attackers to reuse trial items.

πŸ“… Published: June 4, 2025, 4:56 a.m. πŸ”„ Last Modified: Feb. 10, 2026, 10:15 p.m.

6.8

CVSS3.1

CVE-2025-20984 -

Incorrect default permission in Samsung Cloud for Galaxy Watch prior to SMR Jun-2025 Release 1 allows local attackers to access data in Samsung Cloud for Galaxy Watch.

πŸ“… Published: June 4, 2025, 4:56 a.m. πŸ”„ Last Modified: Feb. 2, 2026, 6:14 p.m.

6.2

CVSS3.1

CVE-2025-20981 -

Improper access control in AudioService prior to SMR Jun-2025 Release 1 allows local attackers to access sensitive information.

πŸ“… Published: June 4, 2025, 4:56 a.m. πŸ”„ Last Modified: Feb. 10, 2026, 10:12 p.m.

7.3

CVSS3.1

CVE-2024-31127 - MacOS Zscaler Client Connector Local Privilege Escalation

An improper verification of a loaded library in Zscaler Client Connector on Mac < 4.2.0.241 may allow a local attacker to elevate their privileges.

πŸ“… Published: June 4, 2025, 4:45 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.9

CVSS4.0

CVE-2025-5561 - PHPGurukul Curfew e-Pass Management System view-pass-detail.php sql injection

A vulnerability was found in PHPGurukul Curfew e-Pass Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/view-pass-detail.php. The manipulation of the argument viewid leads to sql injection. The attack can be launch…

πŸ“… Published: June 4, 2025, 4:31 a.m. πŸ”„ Last Modified: June 10, 2025, 3:10 p.m.

6.4

CVSS3.1

CVE-2025-5539 - Simplify Contact Management: WP Easy Contact <= 4.0.0 - Authenticated (Contributor+) Stored Cross-S…

The Simple Contact Form Plugin for WordPress – WP Easy Contact plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emd_mb_meta' shortcode in all versions up to, and including, 4.0.0 due to insufficient input sanitization and output escaping on user supplied attribute…

πŸ“… Published: June 4, 2025, 4:22 a.m. πŸ”„ Last Modified: April 20, 2026, 10:45 p.m.

6.9

CVSS4.0

CVE-2025-5560 - PHPGurukul Curfew e-Pass Management System index.php sql injection

A vulnerability was found in PHPGurukul Curfew e-Pass Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /index.php. The manipulation of the argument searchdata leads to sql injection. It is possible to launch the attack remotely. The exploit has …

πŸ“… Published: June 4, 2025, 4 a.m. πŸ”„ Last Modified: June 10, 2025, 3:10 p.m.

5.3

CVSS4.0

CVE-2025-5558 - PHPGurukul Teacher Subject Allocation Management System changeimage.php sql injection

A vulnerability was found in PHPGurukul Teacher Subject Allocation Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/changeimage.php. The manipulation of the argument editid leads to sql injection. The attack may be initiated remotely. T…

πŸ“… Published: June 4, 2025, 4 a.m. πŸ”„ Last Modified: June 10, 2025, 3:16 p.m.

6.4

CVSS3.1

CVE-2025-5532 - Faculty Staff and Student Directory Plugin – Campus Directory <= 1.9.0 - Authenticated (Contributor…

The Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emd_mb_meta' shortcode in all versions up to, and including, 1.9.0 due to insufficient input sanitization and output escaping on user su…

πŸ“… Published: June 4, 2025, 3:40 a.m. πŸ”„ Last Modified: April 22, 2026, 3 p.m.
Total resulsts: 349182
Page 5181 of 34,919
Β« previous page Β» next page
Filters