Skip to main content
CVE-2025-3538 HIGH POC This Week

A vulnerability was found in D-Link DI-8100 16.07.26A1. Rated high severity (CVSS 8.7), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

D-Link Buffer Overflow Di 8100 Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
2.4%
CVE-2025-3537 MEDIUM POC This Month

A vulnerability was found in Tutorials-Website Employee Management System 1.0. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Employee Management System
NVD VulDB
CVSS 4.0
6.9
EPSS
0.7%
CVE-2025-3536 MEDIUM POC This Month

A vulnerability was found in Tutorials-Website Employee Management System 1.0 and classified as critical. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Employee Management System
NVD VulDB
CVSS 4.0
6.9
EPSS
0.3%
CVE-2025-3531 MEDIUM POC This Month

A vulnerability classified as problematic has been found in YouDianCMS 9.5.21. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Youdiancms Red Hat
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2025-3533 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in YouDianCMS 9.5.21.html.Attackers. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Youdiancms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2025-3532 MEDIUM POC This Month

A vulnerability classified as problematic was found in YouDianCMS 9.5.21. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Youdiancms Red Hat
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2025-3541 HIGH This Week

A vulnerability, which was classified as critical, has been found in H3C Magic NX15, Magic NX30 Pro, Magic NX400 and Magic R3010 up to V100R014. Rated high severity (CVSS 8.6), this vulnerability is low attack complexity. No vendor patch available.

Command Injection
NVD GitHub VulDB
CVSS 4.0
8.6
EPSS
0.5%
CVE-2025-3540 HIGH This Week

A vulnerability classified as critical was found in H3C Magic NX15, Magic NX30 Pro, Magic NX400 and Magic R3010 up to V100R014. Rated high severity (CVSS 8.6), this vulnerability is low attack complexity. No vendor patch available.

Command Injection
NVD GitHub VulDB
CVSS 4.0
8.6
EPSS
0.5%
CVE-2025-3539 HIGH This Week

A vulnerability classified as critical has been found in H3C Magic NX15, Magic NX30 Pro, Magic NX400, Magic R3010 and Magic BE18000 up to V100R014. Rated high severity (CVSS 8.6), this vulnerability is low attack complexity. No vendor patch available.

Command Injection
NVD VulDB GitHub
CVSS 4.0
8.6
EPSS
0.5%
CVE-2024-56406 HIGH PATCH This Week

A heap buffer overflow vulnerability was discovered in Perl. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity.

Buffer Overflow Heap Overflow RCE Denial Of Service Perl +2
NVD GitHub
CVSS 3.1
8.4
EPSS
0.1%
CVE-2025-3445 HIGH PATCH This Week

A Path Traversal "Zip Slip" vulnerability has been identified in mholt/archiver in Go. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE Path Traversal Privilege Escalation Red Hat Suse
NVD GitHub
CVSS 3.1
8.1
EPSS
0.7%
CVE-2025-3423 MEDIUM This Month

IBM Aspera Faspex 5.0.0 through 5.0.11 is vulnerable to cross-site scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM XSS Aspera Faspex
NVD
CVSS 3.1
5.4
EPSS
0.1%
CVE-2025-3535 MEDIUM This Month

A vulnerability has been found in shuanx BurpAPIFinder up to 2.0.2 and classified as problematic. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.3%
CVE-2025-3534 MEDIUM This Month

A vulnerability, which was classified as critical, was found in PowerCreator CMS 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.1%
CVE-2025-2814 MEDIUM PATCH This Month

Crypt::CBC versions between 1.21 and 3.05 for Perl may use the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Rated medium severity (CVSS 4.0), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Red Hat Suse
NVD GitHub
CVSS 3.1
4.0
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy