5.3

CVSS4.0

CVE-2025-4333 - feng_ha_ha/megagao ssm-erp/production_ssm FileServiceImpl.java uploadFile unrestricted upload

A vulnerability was found in feng_ha_ha/megagao ssm-erp and production_ssm up to 0.0.1. It has been classified as critical. This affects the function uploadFile of the file src/main/java/com/megagao/production/ssm/service/impl/FileServiceImpl.java. The manipulation of the argument uploadFile leads โ€ฆ

๐Ÿ“… Published: May 6, 2025, 8 a.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.9

CVSS4.0

CVE-2025-4332 - PHPGurukul Company Visitor Management System visitor-detail.php sql injection

A vulnerability was found in PHPGurukul Company Visitor Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /visitor-detail.php. The manipulation of the argument editid/remark leads to sql injection. The attack may be launched remotely.โ€ฆ

๐Ÿ“… Published: May 6, 2025, 7:31 a.m. ๐Ÿ”„ Last Modified: Sept. 30, 2025, 2:34 p.m.

6.9

CVSS4.0

CVE-2025-4331 - SourceCodester Online Student Clearance System login.php sql injection

A vulnerability classified as critical was found in SourceCodester Online Student Clearance System 1.0. This vulnerability affects unknown code of the file /Admin/login.php. The manipulation of the argument id/username/password leads to sql injection. The attack can be initiated remotely. The exploโ€ฆ

๐Ÿ“… Published: May 6, 2025, 7:31 a.m. ๐Ÿ”„ Last Modified: Sept. 27, 2025, 12:33 a.m.

5.3

CVSS3.1

CVE-2025-3281 - User Registration & Membership โ€“ Custom Registration Form, Login Form, and User Profile <= 4.2.1 - โ€ฆ

The User Registration & Membership โ€“ Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.2.1 via the create_stripe_subscription() function, due to missing validation on the 'member_id' โ€ฆ

๐Ÿ“… Published: May 6, 2025, 7:24 a.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.1

CVSS3.1

CVE-2025-46593 -

Process residence vulnerability in abnormal scenarios in the print module Impact: Successful exploitation of this vulnerability may affect availability.

๐Ÿ“… Published: May 6, 2025, 7:21 a.m. ๐Ÿ”„ Last Modified: Sept. 26, 2025, 6:54 p.m.

4.4

CVSS3.1

CVE-2025-46592 -

Null pointer dereference vulnerability in the USB HDI driver module Impact: Successful exploitation of this vulnerability may affect availability.

๐Ÿ“… Published: May 6, 2025, 7:20 a.m. ๐Ÿ”„ Last Modified: May 9, 2025, 7:25 p.m.

6.2

CVSS3.1

CVE-2025-46591 -

Out-of-bounds data read vulnerability in the authorization module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

๐Ÿ“… Published: May 6, 2025, 7:19 a.m. ๐Ÿ”„ Last Modified: Sept. 26, 2025, 6:53 p.m.

6.3

CVSS3.1

CVE-2025-46590 -

Bypass vulnerability in the network search instruction authentication module Impact: Successful exploitation of this vulnerability can bypass authentication and enable access to some network search functions.

๐Ÿ“… Published: May 6, 2025, 7:18 a.m. ๐Ÿ”„ Last Modified: May 9, 2025, 7:26 p.m.

4.4

CVSS3.1

CVE-2025-46589 -

Vulnerability of unauthorized access in the app lock module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

๐Ÿ“… Published: May 6, 2025, 7:17 a.m. ๐Ÿ”„ Last Modified: Sept. 26, 2025, 6:53 p.m.

4.4

CVSS3.1

CVE-2025-46588 -

Vulnerability of unauthorized access in the app lock module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

๐Ÿ“… Published: May 6, 2025, 7:16 a.m. ๐Ÿ”„ Last Modified: Sept. 26, 2025, 6:51 p.m.
Total resulsts: 346528
Page 5275 of 34,653
ยซ previous page ยป next page
Filters