5.1

CVSS4.0

CVE-2025-2582 - SimpleMachines SMF ManageAttachments.php cross site scripting

A vulnerability was found in SimpleMachines SMF 2.1.4 and classified as problematic. Affected by this issue is some unknown functionality of the file ManageAttachments.php. The manipulation of the argument Notice leads to cross site scripting. The attack may be launched remotely. The exploit has beโ€ฆ

๐Ÿ“… Published: March 21, 2025, 6:31 a.m. ๐Ÿ”„ Last Modified: April 21, 2025, 1:15 p.m.

6.3

CVSS3.1

CVE-2024-50053 - Stored XSS

Zohocorp ManageEngine ServiceDesk Plus versionsย belowย 14920ย , ServiceDesk Plus MSP and SupportCentre Plus versions belowย 14910 are vulnerable to Stored XSS in the task feature.

๐Ÿ“… Published: March 21, 2025, 6:01 a.m. ๐Ÿ”„ Last Modified: May 5, 2025, 1:24 p.m.

5.3

CVSS4.0

CVE-2025-2581 - xmedcon DICOM File malloc integer underflow

A vulnerability has been found in xmedcon 0.25.0 and classified as problematic. Affected by this vulnerability is the function malloc of the component DICOM File Handler. The manipulation leads to integer underflow. The attack can be launched remotely. Upgrading to version 0.25.1 is able to addressโ€ฆ

๐Ÿ“… Published: March 21, 2025, 5 a.m. ๐Ÿ”„ Last Modified: Nov. 3, 2025, 8:18 p.m.

8.3

CVSS3.1

CVE-2025-26336 -

Dell Chassis Management Controller Firmware for Dell PowerEdge FX2, version(s) prior to 2.40.200.202101130302, and Dell Chassis Management Controller Firmware for Dell PowerEdge VRTX version(s) prior to 3.41.200.202209300499, contain(s) a Stack-based Buffer Overflow vulnerability. An unauthenticateโ€ฆ

๐Ÿ“… Published: March 21, 2025, 2:23 a.m. ๐Ÿ”„ Last Modified: March 27, 2025, 4:08 p.m.

8.8

CVSS3.1

CVE-2025-2585 - EBM Technologies EBM Maintenance Center - SQL injection

EBM Maintenance Center From EBM Technologies has a SQL Injection vulnerability, allowing remote attackers with regular privileges to inject arbitrary SQL commands to read, modify, and delete database contents.

๐Ÿ“… Published: March 21, 2025, 2:02 a.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.3

CVSS3.1

CVE-2025-29814 - Microsoft Partner Center Elevation of Privilege Vulnerability

Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.

๐Ÿ“… Published: March 21, 2025, 12:29 a.m. ๐Ÿ”„ Last Modified: Feb. 26, 2026, 7:09 p.m.

8.7

CVSS3.1

CVE-2025-29807 - Microsoft Dataverse Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.

๐Ÿ“… Published: March 21, 2025, 12:29 a.m. ๐Ÿ”„ Last Modified: Feb. 26, 2026, 7:09 p.m.

5.5

CVSS3.1

CVE-2023-28207 -

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A plug-in may be able to inherit app permissions and access user data.

๐Ÿ“… Published: March 21, 2025, 12:19 a.m. ๐Ÿ”„ Last Modified: March 25, 2025, 1:15 p.m.

5.4

CVSS3.1

CVE-2025-29640 -

Phpgurukul Human Metapneumovirus (HMPV) โ€“ Testing Management System v1.0 is vulnerable to SQL Injection in /patient-report.php via the parameter searchdata..

๐Ÿ“… Published: March 21, 2025, midnight ๐Ÿ”„ Last Modified: April 1, 2025, 8:23 p.m.

4

CVSS3.1

CVE-2025-30347 -

Varnish Enterprise before 6.0.13r13 allows remote attackers to obtain sensitive information via an out-of-bounds read for range requests on ephemeral MSE4 stevedore objects.

๐Ÿ“… Published: March 21, 2025, midnight ๐Ÿ”„ Last Modified: March 24, 2025, 2:19 p.m.
Total resulsts: 348208
Page 6161 of 34,821
ยซ previous page ยป next page
Filters