Skip to main content
CVE-2025-1595 MEDIUM POC This Month

A vulnerability has been found in Anhui Xufan Information Technology EasyCVR up to 2.7.0 and classified as problematic. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure
NVD GitHub VulDB
CVSS 4.0
6.9
EPSS
3.8%
CVE-2025-1596 MEDIUM POC This Month

A vulnerability was found in SourceCodester Best Church Management Software 1.0 and classified as critical.php. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Best Church Management Software
NVD GitHub VulDB
CVSS 4.0
6.9
EPSS
0.1%
CVE-2025-1594 MEDIUM POC PATCH This Month

A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Ffmpeg Suse
NVD VulDB
CVSS 4.0
5.3
EPSS
0.3%
CVE-2025-1578 MEDIUM POC This Month

A vulnerability, which was classified as critical, was found in PHPGurukul/Campcodes Online Shopping Portal 2.1. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Shopping Portal
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.1%
CVE-2025-1576 MEDIUM POC This Month

A vulnerability classified as critical was found in code-projects Real Estate Property Management System 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Real Estate Property Management System
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-1586 MEDIUM POC This Month

A vulnerability was found in code-projects Blood Bank System 1.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Blood Bank System
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.1%
CVE-2025-1597 MEDIUM POC This Month

A vulnerability was found in SourceCodester Best Church Management Software 1.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Best Church Management Software
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.1%
CVE-2025-1577 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank System 1.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Blood Bank System
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.1%
CVE-2025-1585 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5.html. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Tale
NVD GitHub VulDB
CVSS 4.0
4.8
EPSS
0.1%
CVE-2025-1587 MEDIUM POC This Month

A vulnerability was found in SourceCodester Telecom Billing Management System 1.0. Rated medium severity (CVSS 4.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Telecom Billing Management System
NVD GitHub VulDB
CVSS 4.0
4.8
EPSS
0.0%
CVE-2025-1579 MEDIUM POC This Month

A vulnerability was found in code-projects Blood Bank System 1.0 and classified as problematic.php. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Blood Bank System
NVD GitHub VulDB
CVSS 4.0
4.8
EPSS
0.0%
CVE-2025-22632 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in totalsoft WooCommerce Pricing - Product Pricing allows Stored XSS.0.9. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress XSS
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2025-22631 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vbout Marketing Automation allows Reflected XSS.2.6.8. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2025-22635 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jyothis Joy Eventer allows Reflected XSS. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2025-1588 MEDIUM This Month

A vulnerability has been found in PHPGurukul Online Nurse Hiring System 1.0 and classified as critical. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Path Traversal Online Nurse Hiring System
NVD GitHub VulDB
CVSS 4.0
6.9
EPSS
0.3%
CVE-2024-13728 MEDIUM This Month

The Accept Donations with PayPal & Stripe plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the rf parameter in all versions up to, and including, 1.4.4 due to insufficient. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress XSS
NVD
CVSS 3.1
6.1
EPSS
0.2%
CVE-2025-22633 MEDIUM This Month

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Matt Cromwell Give - Divi Donation Modules allows Retrieve Embedded Sensitive Data.0.0. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure
NVD
CVSS 3.1
5.8
EPSS
0.1%
CVE-2025-1584 MEDIUM PATCH This Month

A vulnerability classified as problematic was found in opensolon Solon up to 3.0.8. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Java
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.1%
CVE-2025-1589 MEDIUM This Month

A vulnerability was found in SourceCodester E-Learning System 1.0 and classified as problematic.php of the component User Registration Handler. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS E Learning System
NVD VulDB
CVSS 4.0
5.3
EPSS
0.1%
CVE-2025-1580 MEDIUM This Month

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP SQLi Nipah Virus Testing Management System
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-1583 MEDIUM This Month

A vulnerability classified as critical has been found in PHPGurukul Online Nurse Hiring System 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP SQLi Online Nurse Hiring System
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-1582 MEDIUM This Month

A vulnerability was found in PHPGurukul Online Nurse Hiring System 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP SQLi Online Nurse Hiring System
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-1581 MEDIUM This Month

A vulnerability was found in PHPGurukul Online Nurse Hiring System 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP SQLi Online Nurse Hiring System
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-1575 MEDIUM This Month

A vulnerability classified as problematic has been found in Harpia DiagSystem 12. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure PHP
NVD VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-1593 MEDIUM This Month

A vulnerability classified as critical has been found in SourceCodester Best Employee Management System 1.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass File Upload Best Employee Management System
NVD VulDB
CVSS 4.0
5.1
EPSS
0.2%
CVE-2025-1590 MEDIUM This Month

A vulnerability was found in SourceCodester E-Learning System 1.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Authentication Bypass File Upload E Learning System
NVD VulDB
CVSS 4.0
5.1
EPSS
0.2%
CVE-2025-1591 MEDIUM This Month

A vulnerability was found in SourceCodester Employee Management System 1.0. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Employee Management System
NVD VulDB
CVSS 4.0
4.8
EPSS
0.1%
CVE-2025-1592 MEDIUM This Month

A vulnerability was found in SourceCodester Best Employee Management System 1.0. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Best Employee Management System
NVD VulDB
CVSS 4.0
4.8
EPSS
0.1%
CVE-2025-1467 LOW PATCH Monitor

Versions of the package tarteaucitronjs before 1.17.0 are vulnerable to Cross-site Scripting (XSS) via the getElemWidth() and getElemHeight(). Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS
NVD GitHub
CVSS 4.0
2.0
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy