6.1

CVSS3.1

CVE-2025-33028 -

In WinZip through 29.0, there is a Mark-of-the-Web Bypass Vulnerability because of an incomplete fix for CVE-2024-8811. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of WinZip. User interaction is required to exploit this vulnerabil…

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.1

CVE-2025-29213 -

A zip slip vulnerability in the component \service\migrate\MigrateForm.java of JEEWMS v3.7 allows attackers to execute arbitrary code via a crafted Zip file.

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: April 25, 2025, 4:49 p.m.

6.5

CVSS3.1

CVE-2025-28145 -

Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a command injection vulnerability via partition in /boafrm/formDiskFormat.

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: May 1, 2025, 2:26 p.m.

6.4

CVSS3.1

CVE-2024-49200 -

An issue was discovered in AcpiS3SaveDxe and ChipsetSvcDxe in Insyde InsydeH2O with kernel 5.2 though 5.7. A potential DXE memory corruption vulnerability has been identified. The root cause is use of a pointer originating from the value of an NVRAM variable as the target of a write operation. This…

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: April 30, 2025, 4:41 p.m.

6.5

CVSS3.1

CVE-2025-28136 -

TOTOLINK A800R V4.1.2cu.5137_B20200730 was found to contain a buffer overflow vulnerability in the downloadFile.cgi.

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: April 29, 2025, 4:22 p.m.

9.8

CVSS3.1

CVE-2025-28137 -

The TOTOLINK A810R V4.1.2cu.5182_B20201026 were found to contain a pre-auth remote command execution vulnerability in the setNoticeCfg function through the NoticeUrl parameter.

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: April 29, 2025, 4:23 p.m.

6.5

CVSS3.1

CVE-2025-28144 -

Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a stack overflow vlunerability via peerPin parameter in the formWsc function.

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: May 2, 2025, 6:43 p.m.

8.3

CVSS3.1

CVE-2025-29471 -

Cross Site Scripting vulnerability in Nagios Log Server v.2024R1.3.1 allows a remote attacker to execute arbitrary code via a payload into the Email field.

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: April 23, 2025, 4:30 p.m.

6.1

CVSS3.1

CVE-2025-33027 -

In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Bandizip. User interaction is required to exploit this vulnerability in that the target must visit…

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: Oct. 24, 2025, 8:16 p.m.

6.1

CVSS3.1

CVE-2025-33026 -

In PeaZip through 10.4.0, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of PeaZip. User interaction is required to exploit this vulnerability in that the target must visit a malicious…

πŸ“… Published: April 15, 2025, midnight πŸ”„ Last Modified: Oct. 24, 2025, 8:15 p.m.
Total resulsts: 349182
Page 5886 of 34,919
Β« previous page Β» next page
Filters