Skip to main content
CVE-2025-4550 MEDIUM POC This Month

A vulnerability, which was classified as critical, has been found in PHPGurukul Apartment Visitors Management System 1.0.php. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Apartment Visitors Management System
NVD GitHub VulDB
CVSS 4.0
6.9
EPSS
0.2%
CVE-2025-4543 MEDIUM POC This Month

A vulnerability, which was classified as critical, was found in LyLme Spage 2.1. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Lylme Spage
NVD GitHub VulDB
CVSS 4.0
6.9
EPSS
0.1%
CVE-2025-4551 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in ContiNew Admin up to 3.6.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Continew Admin
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.1%
CVE-2025-4530 MEDIUM This Month

A vulnerability was found in feng_ha_ha/megagao ssm-erp and production_ssm 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Java
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.3%
CVE-2025-4549 MEDIUM POC This Week

A vulnerability classified as critical was found in Campcodes Online Food Ordering System 1.0. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Food Ordering System
NVD GitHub VulDB
CVSS 4.0
6.9
EPSS
0.2%
CVE-2025-4548 MEDIUM POC This Week

A vulnerability classified as critical has been found in Campcodes Online Food Ordering System 1.0. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Food Ordering System
NVD GitHub VulDB
CVSS 4.0
6.9
EPSS
0.2%
CVE-2025-4547 MEDIUM POC Monitor

A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Web Based Pharmacy Product Management System
NVD GitHub VulDB
CVSS 4.0
4.8
EPSS
0.2%
CVE-2025-4546 MEDIUM POC This Month

A vulnerability was found in 1Panel-dev MaxKB up to 1.10.7. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Maxkb
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.3%
CVE-2025-4545 MEDIUM POC This Month

A vulnerability was found in CTCMS Content Management System 2.1.2. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Ctcms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.5%
CVE-2025-4541 MEDIUM POC This Month

A vulnerability classified as critical has been found in LmxCMS 1.41. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Lmxcms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2025-4538 MEDIUM This Month

A vulnerability was found in kkFileView 4.4.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass File Upload Kkfileview
NVD VulDB
CVSS 4.0
5.3
EPSS
0.3%
CVE-2025-4536 MEDIUM POC This Week

A vulnerability has been found in Gosuncn Technology Group Audio-Visual Integrated Management Platform 1.0 and classified as critical. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Group Audio Visual Integrated Management
NVD VulDB
CVSS 4.0
6.9
EPSS
0.2%
CVE-2025-4535 MEDIUM POC This Week

A vulnerability, which was classified as problematic, was found in Gosuncn Technology Group Audio-Visual Integrated Management Platform 4.0. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Group Audio Visual Integrated Management
NVD VulDB
CVSS 4.0
6.9
EPSS
0.2%
CVE-2025-4534 MEDIUM This Month

A vulnerability, which was classified as problematic, has been found in SunGrow Logger1000 01_A. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Brute Force Information Disclosure
NVD VulDB
CVSS 4.0
6.3
EPSS
0.2%
CVE-2025-4533 MEDIUM POC This Month

A vulnerability classified as problematic was found in JeecgBoot up to 3.8.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Jeecg Boot
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.7%
CVE-2025-4531 MEDIUM This Month

A vulnerability was found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Oa Web Application System
NVD VulDB
CVSS 4.0
5.3
EPSS
0.3%
CVE-2025-4529 MEDIUM This Month

A vulnerability was found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Oa Web Application System
NVD VulDB
CVSS 4.0
5.3
EPSS
0.4%
CVE-2025-47828 MEDIUM PATCH This Month

Lumi H5P-Nodejs-library before 9.3.3 omits a sanitizeHtml call for plain text strings. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS
NVD GitHub
CVSS 3.1
6.4
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy