Skip to main content
CVE-2025-2958 HIGH POC This Week

A vulnerability was found in TRENDnet TEW-818DRU 1.0.14.6. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Tew 818Dru Firmware
NVD VulDB
CVSS 4.0
7.1
EPSS
0.7%
CVE-2025-2960 HIGH POC This Week

A vulnerability classified as problematic has been found in TRENDnet TEW-637AP and TEW-638APB 1.2.7/1.3.0.106. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Tew 637Ap Firmware Tew 638Apb Firmware
NVD VulDB
CVSS 4.0
7.1
EPSS
0.7%
CVE-2025-2959 HIGH POC This Week

A vulnerability was found in TRENDnet TEW-410APB 1.3.06b. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Tew 410Apb Firmware
NVD VulDB
CVSS 4.0
7.1
EPSS
0.7%
CVE-2025-2955 MEDIUM POC This Month

A vulnerability has been found in TOTOLINK A3000RU up to 5.9c.5185 and classified as problematic. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure A3000Ru Firmware TOTOLINK
NVD VulDB
CVSS 4.0
6.9
EPSS
0.2%
CVE-2025-1219 MEDIUM POC PATCH This Month

In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when requesting a HTTP resource using the DOM or SimpleXML extensions, the wrong. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

PHP Authentication Bypass Red Hat Suse
NVD GitHub
CVSS 4.0
6.3
EPSS
0.1%
CVE-2024-13804 CRITICAL Act Now

Unauthenticated RCE in HPE Insight Cluster Management Utility. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass
NVD
CVSS 3.1
9.8
EPSS
0.3%
CVE-2025-2951 MEDIUM POC This Month

A vulnerability classified as critical has been found in Bluestar Micro Mall 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Micro Mall
NVD VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2025-2952 MEDIUM POC This Month

A vulnerability classified as critical was found in Bluestar Micro Mall 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Authentication Bypass File Upload Micro Mall
NVD VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2025-2953 MEDIUM POC PATCH This Month

A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0+cu124. Rated medium severity (CVSS 4.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Pytorch AI / ML Red Hat Suse
NVD GitHub VulDB
CVSS 4.0
4.8
EPSS
0.2%
CVE-2025-2957 HIGH This Week

A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service
NVD VulDB
CVSS 4.0
7.1
EPSS
0.1%
CVE-2025-2956 HIGH This Week

A vulnerability was found in TRENDnet TI-G102i 1.0.7.S0_ /1.0.8.S0_ and classified as problematic. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service
NVD VulDB
CVSS 4.0
7.1
EPSS
0.1%
CVE-2025-1861 MEDIUM PATCH This Month

In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure PHP Ontap Red Hat Suse
NVD GitHub
CVSS 4.0
6.3
EPSS
0.7%
CVE-2025-1736 MEDIUM PATCH This Month

In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when user-supplied headers are sent, the insufficient validation of the end-of-line. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure PHP Ontap Red Hat Suse
NVD GitHub
CVSS 4.0
6.3
EPSS
0.5%
CVE-2025-1734 MEDIUM PATCH This Month

In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when receiving headers from HTTP server, the headers missing a colon (:) are treated as. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure PHP Ontap Red Hat Suse
NVD GitHub
CVSS 4.0
6.3
EPSS
0.4%
CVE-2025-2961 MEDIUM This Month

A vulnerability classified as problematic was found in opensolon up to 3.1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.3%
CVE-2025-2954 MEDIUM This Month

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. Rated medium severity (CVSS 4.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Openmanus
NVD VulDB
CVSS 4.0
4.8
EPSS
0.1%

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. No vendor patch available.

Information Disclosure
NVD

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. No vendor patch available.

Information Disclosure
NVD

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. No vendor patch available.

Information Disclosure
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy