Skip to main content
CVE-2025-5139 LOW POC Monitor

A vulnerability was found in Qualitor 8.20/8.24. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Microsoft Command Injection PHP
NVD VulDB
CVSS 4.0
2.9
EPSS
2.9%
CVE-2025-5145 LOW Monitor

A vulnerability, which was classified as critical, was found in Netcore NBR1005GPEV2, B6V2, COVER5, NAP830, NAP930, NBR100V2, NBR200V2 and POWER13 up to 20250508. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection
NVD GitHub VulDB
CVSS 4.0
2.1
EPSS
1.1%
CVE-2025-5138 LOW Monitor

A vulnerability was found in Bitwarden up to 2.25.1. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS
NVD GitHub VulDB
CVSS 4.0
2.0
EPSS
0.1%
CVE-2025-5158 MEDIUM This Month

A vulnerability was found in H3C SecCenter SMP-E1114P02 up to 20250513. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Seccenter Smp 1114P02
NVD VulDB
CVSS 4.0
5.3
EPSS
0.8%
CVE-2025-5157 MEDIUM This Month

A vulnerability was found in H3C SecCenter SMP-E1114P02 up to 20250513. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Seccenter Smp 1114P02
NVD VulDB
CVSS 4.0
5.3
EPSS
0.8%
CVE-2025-5156 HIGH This Month

A vulnerability was found in H3C GR-5400AX up to 100R008 and classified as critical. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Gr 5400Ax Firmware
NVD GitHub VulDB
CVSS 4.0
8.7
EPSS
0.8%
CVE-2025-5155 MEDIUM POC This Month

A vulnerability has been found in qianfox FoxCMS 1.2.5 and classified as critical. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Foxcms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2025-5154 MEDIUM POC Monitor

A vulnerability, which was classified as problematic, was found in PhonePe App 25.03.21.0 on Android. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Google Information Disclosure Phonepe Android
NVD GitHub VulDB
CVSS 4.0
4.6
EPSS
0.1%
CVE-2025-5153 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in CMS Made Simple 2.2.21. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Cms Made Simple
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.1%
CVE-2025-5152 MEDIUM POC This Month

A vulnerability classified as critical was found in Chanjet CRM up to 20250510. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Chanjet Cms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.1%
CVE-2025-5151 MEDIUM POC Monitor

A vulnerability classified as critical has been found in defog-ai introspect up to 0.1.4. Rated medium severity (CVSS 4.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Introspect
NVD GitHub VulDB
CVSS 4.0
4.8
EPSS
0.1%
CVE-2025-5150 MEDIUM POC This Month

A vulnerability was found in docarray up to 0.40.1. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection Docarray
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.4%
CVE-2025-5149 MEDIUM POC This Month

A vulnerability was found in WCMS up to 8.3.11. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

PHP Authentication Bypass Wcms
NVD VulDB
CVSS 4.0
6.3
EPSS
0.9%
CVE-2025-5148 MEDIUM Monitor

A vulnerability was found in FunAudioLLM InspireMusic up to bf32364bcb0d136497ca69f9db622e9216b029dd. Rated medium severity (CVSS 4.8), this vulnerability is low attack complexity. No vendor patch available.

Deserialization
NVD GitHub VulDB
CVSS 4.0
4.8
EPSS
0.2%
CVE-2025-5147 MEDIUM This Month

A vulnerability was found in Netcore NBR1005GPEV2, NBR200V2 and B6V2 up to 20250508 and classified as critical. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
1.1%
CVE-2025-5146 MEDIUM This Month

A vulnerability has been found in Netcore NBR1005GPEV2, B6V2, COVER5, NAP830, NAP930, NBR100V2 and NBR200V2 up to 20250508 and classified as critical. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
1.1%
CVE-2025-5140 MEDIUM This Month

A vulnerability classified as critical has been found in Seeyon Zhiyuan OA Web Application System up to 8.1 SP2. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSRF
NVD VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2025-5137 MEDIUM POC This Month

A vulnerability was found in DedeCMS 5.7.117. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Dedecms
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.2%
CVE-2025-5136 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in Tmall Demo up to 20250505. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Tmall Demo
NVD GitHub VulDB
CVSS 4.0
6.3
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy