Skip to main content
CVE-2025-1421 LOW Monitor

Data provided in a request performed to the server while activating a new device are put in a database. Rated low severity (CVSS 2.4), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure
NVD
CVSS 4.0
2.4
EPSS
0.2%
CVE-2025-48070 LOW POC PATCH Monitor

Plane is open-source project management software. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Privilege Escalation XSS Plane
NVD GitHub
CVSS 3.1
3.5
EPSS
0.1%
CVE-2025-48064 LOW Monitor

GitHub Desktop is an open-source, Electron-based GitHub app designed for git development. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Apple Windows macOS
NVD GitHub
CVSS 3.1
3.3
EPSS
0.0%
CVE-2025-5031 LOW Monitor

A vulnerability was found in Ackites KillWxapkg up to 2.4.1. Rated low severity (CVSS 2.3), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Denial Of Service
NVD GitHub VulDB
CVSS 4.0
2.3
EPSS
0.3%
CVE-2025-5030 LOW POC Monitor

A vulnerability was found in Ackites KillWxapkg up to 2.4.1. Rated low severity (CVSS 2.3), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Command Injection Killwxapkg
NVD GitHub VulDB
CVSS 4.0
2.3
EPSS
0.6%
CVE-2025-48009 LOW PATCH Monitor

Missing Authorization vulnerability in Drupal Single Content Sync allows Functionality Misuse.0.0 before 1.4.12. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Single Content Sync Drupal
NVD
CVSS 3.1
3.1
EPSS
0.1%
CVE-2025-1420 LOW Monitor

Input provided in a field containing "activationMessage" in Konsola Proget is not sanitized correctly, allowing a high-privileged user to perform a Stored Cross-Site Scripting attack. Rated low severity (CVSS 2.4), this vulnerability is low attack complexity. No vendor patch available.

XSS
NVD
CVSS 4.0
2.4
EPSS
0.2%
CVE-2025-1419 LOW Monitor

Input provided in comment section of Konsola Proget is not sanitized correctly, allowing a high-privileged user to perform a Stored Cross-Site Scripting attack. Rated low severity (CVSS 2.4), this vulnerability is low attack complexity. No vendor patch available.

XSS
NVD
CVSS 4.0
2.4
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy