0.0

CVE-2025-47763 -

Not used

📅 Published: May 9, 2025, 2:40 p.m. 🔄 Last Modified: May 10, 2025, 3:15 a.m.

0.0

CVE-2025-47764 -

Not used

📅 Published: May 9, 2025, 2:40 p.m. 🔄 Last Modified: May 10, 2025, 3:15 a.m.

9.8

CVSS3.1

CVE-2024-12442 - Command injection in EnerSys AMPA versions 24.04 through 24.16, inclusive

EnerSys AMPA versions 24.04 through 24.16, inclusive, are vulnerable to command injection leading to privileged remote shell access.

📅 Published: May 9, 2025, 1:55 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

9.8

CVSS3.1

CVE-2024-11861 - Command injection in EnerSys AMPA 22.09 and prior versions

EnerSys AMPA 22.09 and prior versions are vulnerable to command injection leading to privileged remote shell access.

📅 Published: May 9, 2025, 1:51 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

9.3

CVSS4.0

CVE-2025-1087 - Arbitrary Code Execution in Kong Insomnia Desktop Application

Kong Insomnia Desktop Application before 11.0.2 contains a template injection vulnerability that allows attackers to execute arbitrary code. The vulnerability exists due to insufficient validation of user-supplied input when processing template strings, which can lead to arbitrary JavaScript execut…

📅 Published: May 9, 2025, 11:37 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

5.9

CVSS3.1

CVE-2025-3897 - EUCookieLaw <= 2.7.2 - Unauthenticated Arbitrary File Read

The EUCookieLaw plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 2.7.2 via the 'file_get_contents' function. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive informa…

📅 Published: May 9, 2025, 11:11 a.m. 🔄 Last Modified: April 20, 2026, 11 p.m.

7.2

CVSS3.1

CVE-2025-4206 - WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg <= 4.1.1.2 - …

The WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'process_export_delete' and 'process_import_delete' functions in all versions up to, and including,…

📅 Published: May 9, 2025, 11:11 a.m. 🔄 Last Modified: April 22, 2026, 5:30 p.m.

6.5

CVSS3.1

CVE-2025-46392 - Apache Commons Configuration: Uncontrolled Resource Consumption when loading untrusted configuratio…

Uncontrolled Resource Consumption vulnerability in Apache Commons Configuration 1.x. There are a number of issues in Apache Commons Configuration 1.x that allow excessive resource consumption when loading untrusted configurations or using unexpected usage patterns. The Apache Commons Configuration…

📅 Published: May 9, 2025, 9:34 a.m. 🔄 Last Modified: July 16, 2025, 2:52 p.m.

9.8

CVSS3.1

CVE-2025-4403 - Drag and Drop Multiple File Upload for WooCommerce <= 1.1.6 - Unauthenticated Arbitrary File Upload…

The Drag and Drop Multiple File Upload for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 1.1.6 due to accepting a user‐supplied supported_type string and the uploaded filename without enforcing real extension or MIME checks within the…

📅 Published: May 9, 2025, 8:24 a.m. 🔄 Last Modified: April 21, 2026, 9 p.m.

4.3

CVSS3.1

CVE-2025-3949 - Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mo…

The Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'seedprod_lite_get_revisisons' function in all versions up to, and including, 6.18.15.…

📅 Published: May 9, 2025, 8:24 a.m. 🔄 Last Modified: April 21, 2026, 9 p.m.
Total resulsts: 349182
Page 5475 of 34,919
« previous page » next page
Filters