Skip to main content
CVE-2025-59403 CRITICAL POC Act Now

Missing authentication in Flock Safety Collins Android app for ANPR cameras. EPSS 2.7%. PoC available.

Denial Of Service RCE Information Disclosure Flock Safety Android
NVD
CVSS 3.1
9.8
EPSS
2.7%
CVE-2025-59740 CRITICAL POC Act Now

OS command injection in AndSoft e-TMS v25.03 transportation management system. One of 8+ critical command injection CVEs in the same product.

Command Injection E Tms
NVD GitHub
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-59739 CRITICAL POC Act Now

OS command injection in AndSoft e-TMS v25.03 transportation management system. One of 8+ critical command injection CVEs in the same product.

Command Injection E Tms
NVD GitHub
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-59738 CRITICAL POC Act Now

OS command injection in AndSoft e-TMS v25.03 transportation management system. One of 8+ critical command injection CVEs in the same product.

Command Injection E Tms
NVD GitHub
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-59737 CRITICAL POC Act Now

OS command injection in AndSoft e-TMS v25.03 transportation management system. One of 8+ critical command injection CVEs in the same product.

Command Injection E Tms
NVD GitHub
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-59736 CRITICAL POC Act Now

OS command injection in AndSoft e-TMS v25.03 transportation management system. One of 8+ critical command injection CVEs in the same product.

Command Injection E Tms
NVD GitHub
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-59407 CRITICAL POC Act Now

Hardcoded cryptographic key in Flock Safety DetectionProcessing app for ANPR. PoC available.

Information Disclosure Java Flock Safety Android
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-61605 CRITICAL POC PATCH Act Now

Second SQL injection in WeGIA 3.4.12. PoC and patch available.

SQLi PHP Wegia
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2025-61603 CRITICAL POC PATCH Act Now

SQL injection in WeGIA 3.4.12 and below. PoC and patch available.

SQLi PHP Wegia
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2025-61666 HIGH POC PATCH This Week

Traccar is an open source GPS tracking system. Default installs of Traccar on Windows between versions 6.1- 6.8.1 and non default installs between versions 5.8 - 6.0 are vulnerable to unauthenticated local file inclusion attacks which can lead to leakage of passwords or any file on the file system including the Traccar configuration file. Versions 5.8 - 6.0 are only vulnerable if <entry key='web.override'>./override</entry> is set in the configuration file. Versions 6.1 - 6.8.1 are vulnerable by default as the web override is enabled by default. The vulnerable code is removed in version 6.9.0.

Path Traversal Windows
NVD GitHub
CVSS 4.0
8.7
EPSS
1.0%
CVE-2025-54286 HIGH POC PATCH This Week

Cross-Site Request Forgery (CSRF) in LXD-UI in Canonical LXD versions >= 5.0 on Linux allows an attacker to create and start container instances without user consent via crafted HTML form submissions exploiting client certificate authentication.

CSRF Ubuntu Debian Lxd Suse
NVD GitHub
CVSS 3.1
8.8
EPSS
0.0%
CVE-2025-54289 HIGH POC PATCH This Week

Privilege Escalation in operations API in Canonical LXD <6.5 on multiple platforms allows attacker with read permissions to hijack terminal or console sessions and execute arbitrary commands via WebSocket connection hijacking format

Privilege Escalation Ubuntu Debian Lxd Suse
NVD GitHub
CVSS 3.1
8.1
EPSS
0.0%
CVE-2025-61665 HIGH POC PATCH This Week

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain a Broken Access Control vulnerability, identified in the get_relatorios_socios.php endpoint. This vulnerability allows unauthenticated attackers to directly access sensitive personal and financial information of members without requiring authentication or authorization. This issue is fixed in version 3.5.0.

Information Disclosure PHP Wegia
NVD GitHub
CVSS 3.1
7.5
EPSS
0.2%
CVE-2025-56161 HIGH POC This Week

YOSHOP 2.0 allows unauthenticated information disclosure via comment-list API endpoints in the Goods module. The Comment model eagerly loads the related User model without field filtering; because User.php defines no $hidden or $visible attributes, sensitive fields (bcrypt password hash, mobile number, pay_money, expend_money.) are exposed in JSON responses. Route names vary per deployment (e.g. /api/goods.pinglun/list), but all call the same vulnerable model logic.

Information Disclosure PHP Firefly Mall
NVD GitHub
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-34208 HIGH POC This Week

Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA/SaaS deployments) store user passwords using unsalted SHA-512 hashes with a fall-back to unsalted SHA-1. The hashing is performed via PHP's `hash()` function in multiple files (server_write_requests_users.php, update_database.php, legacy/Login.php, tests/Unit/Api/IdpControllerTest.php). No per-user salt is used and the fast hash algorithms are unsuitable for password storage. An attacker who obtains the password database can recover cleartext passwords via offline dictionary or rainbow table attacks. The vulnerable code also contains logic that migrates legacy SHA-1 hashes to SHA-512 on login, further exposing users still on the old hash. This vulnerability was partially resolved, but still present within the legacy authentication platform.

Information Disclosure PHP Virtual Appliance Application Virtual Appliance Host
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-60663 HIGH POC This Week

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanMTU parameter in the fromAdvSetMacMtuWan function.

Buffer Overflow Memory Corruption Ac18 Firmware Tenda
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-60662 HIGH POC This Week

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanSpeed parameter in the fromAdvSetMacMtuWan function.

Buffer Overflow Memory Corruption Ac18 Firmware Tenda
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-60660 HIGH POC This Week

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the mac parameter in the fromAdvSetMacMtuWan function.

Buffer Overflow Memory Corruption Ac18 Firmware Tenda
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-59405 HIGH POC This Week

The Flock Safety Peripheral com.flocksafety.android.peripheral application 7.38.3 for Android (installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices) contains a cleartext DataDog API key within in its codebase. Because application binaries can be trivially decompiled or inspected, attackers can recover the OAuth secret without special privileges. This secret is intended to remain confidential and should never be embedded directly in client-side software.

Information Disclosure Flock Safety Android
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-59409 HIGH POC This Week

Flock Safety Falcon and Sparrow License Plate Readers OPM1.171019.026 ship with development Wi-Fi credentials (test_flck) stored in cleartext in production firmware.

Information Disclosure License Plate Reader Firmware
NVD
CVSS 3.1
7.5
EPSS
0.0%
CVE-2025-61604 HIGH POC PATCH This Week

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain a Cross-Site Request Forgery (CSRF) vulnerability. The delete operation for the Almoxarifado entity is exposed via HTTP GET without CSRF protection, allowing a third-party site to trigger the action using the victim’s authenticated session. This issue is fixed in version 3.5.0.

CSRF Wegia
NVD GitHub
CVSS 3.1
7.1
EPSS
0.0%
CVE-2025-54288 MEDIUM POC PATCH This Month

Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration, and device information via spoofed process names in the command line.

Authentication Bypass Ubuntu Debian Lxd Suse
NVD GitHub
CVSS 3.1
6.8
EPSS
0.1%
CVE-2025-56162 MEDIUM POC This Month

YOSHOP 2.0 suffers from an unauthenticated SQL injection in the goodsIds parameter of the /api/goods/listByIds endpoint. The getListByIds function concatenates user input into orderRaw('field(goods_id, ...)'), allowing attackers to: (a) enumerate or modify database data, including dumping admin password hashes; (b) write web-shell files or invoke xp_cmdshell, leading to remote code execution on servers configured with sufficient DB privileges.

SQLi RCE Firefly Mall
NVD GitHub
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-56019 MEDIUM POC This Month

An insecure permission vulnerability exists in the Agasta Easytouch+ version 9.3.97 The device allows unauthorized mobile applications to connect via Bluetooth Low Energy (BLE) without authentication. Once an unauthorized connection is established, legitimate applications are unable to connect, causing a denial of service. The attack requires proximity to the device, making it exploitable from an adjacent network location.

Denial Of Service Easy Touch Plus Firmware
NVD GitHub
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-57305 MEDIUM POC This Month

VitaraCharts 5.3.5 is vulnerable to Server-Side Request Forgery in fileLoader.jsp.

SSRF Vitaracharts
NVD
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-54293 MEDIUM POC PATCH This Month

Path Traversal in the log file retrieval function in Canonical LXD 5.0 LTS on Linux allows authenticated remote attackers to read arbitrary files on the host system via crafted log file names or symbolic links.

Path Traversal Ubuntu Debian Lxd Suse
NVD GitHub
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-54287 MEDIUM POC PATCH This Month

A arbitrary file access vulnerability (CVSS 6.5) that allows an attacker with instance configuration permissions. Risk factors: public PoC available.

Code Injection Ubuntu Debian Lxd Suse
NVD GitHub
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-61096 MEDIUM POC This Month

PHPGurukul Online Shopping Portal Project v2.1 is vulnerable to SQL Injection in /shopping/login.php via the fullname parameter.

SQLi PHP Online Shopping Portal Project
NVD GitHub
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-56381 MEDIUM POC This Month

ERPNEXT v15.67.0 was discovered to contain multiple SQL injection vulnerabilities in the /api/method/frappe.desk.reportview.get endpoint via the order_by and group_by parameters.

SQLi Erpnext Frappe
NVD GitHub
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-56380 MEDIUM POC This Month

Frappe Framework v15.72.4 was discovered to contain a SQL injection vulnerability via the fieldname parameter in the frappe.client.get_value API endpoint and a crafted script to the fieldname parameter

SQLi Erpnext Frappe
NVD GitHub
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-59406 MEDIUM POC This Month

The Flock Safety Pisco com.flocksafety.android.pisco application 6.21.11 for Android (installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices) has a cleartext Auth0 client secret in its codebase. Because application binaries can be trivially decompiled or inspected, attackers can recover this OAuth secret without special privileges. This secret is intended to remain confidential and should never be embedded directly in client-side software.

Information Disclosure Flock Safety Android
NVD
CVSS 3.1
6.2
EPSS
0.0%
CVE-2025-61606 MEDIUM POC PATCH This Month

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain an Open Redirect vulnerability, identified in the control.php endpoint, specifically in the nextPage parameter (metodo=listarUmnomeClasse=FuncionarioControle). This vulnerability allows attackers to redirect users to arbitrary external domains, enabling phishing campaigns, malicious payload distribution, or user credential theft. This issue is fixed in version 3.5.0.

PHP Open Redirect Wegia
NVD GitHub
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-61087 MEDIUM POC This Month

SourceCodester Pet Grooming Management Software 1.0 is vulnerable to Cross Site Scripting (XSS) via the Customer Name field under Customer Management Section.

XSS Pet Grooming Management Software
NVD GitHub
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-59741 CRITICAL Act Now

OS command injection in AndSoft e-TMS v25.03 transportation management system. One of 8+ critical command injection CVEs in the same product.

Command Injection E Tms
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-59735 CRITICAL Act Now

OS command injection in AndSoft e-TMS v25.03 transportation management system. One of 8+ critical command injection CVEs in the same product.

Command Injection E Tms
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-9697 CRITICAL Act Now

SQLi in Ajax WooSearch WordPress plugin through 1.0.0.

SQLi WordPress PHP
NVD WPScan
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-59743 CRITICAL Act Now

SQL injection in AndSoft e-TMS v25.03 allows database compromise.

SQLi E Tms
NVD
CVSS 3.1
9.8
EPSS
0.0%
CVE-2025-59742 CRITICAL Act Now

SQL injection in AndSoft e-TMS v25.03 allows database compromise.

SQLi E Tms
NVD
CVSS 3.1
9.8
EPSS
0.0%
CVE-2025-34210 MEDIUM POC This Month

CVE-2025-34210 is a security vulnerability (CVSS 5.5). Risk factors: public PoC available.

Information Disclosure Virtual Appliance Host Virtual Appliance Application
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2025-56379 MEDIUM POC This Month

A stored cross-site scripting (XSS) vulnerability in the blog post feature of ERPNEXT v15.67.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the content field.

XSS Frappe Erpnext
NVD GitHub
CVSS 3.1
5.4
EPSS
0.0%
CVE-2025-60782 MEDIUM POC This Month

PHP Education Manager v1.0 is vulnerable to Cross Site Scripting (XSS) stored Cross-Site Scripting (XSS) vulnerability in the topics management module (topics.php). Attackers can inject malicious JavaScript payloads into the Titlefield during topic creation or updates.

XSS PHP Php Education Management
NVD
CVSS 3.1
5.4
EPSS
0.0%
CVE-2025-54290 MEDIUM POC PATCH This Month

Information disclosure in image export API in Canonical LXD before 6.5 and 5.21.4 on Linux allows network attackers to determine project existence without authentication via crafted requests using wildcard fingerprints.

Information Disclosure Ubuntu Debian Lxd Suse
NVD GitHub
CVSS 3.1
5.3
EPSS
0.1%
CVE-2025-54291 MEDIUM POC PATCH This Month

Information disclosure in images API in Canonical LXD before 6.5 and 5.21.4 on all platforms allows unauthenticated remote attackers to determine project existence via differing HTTP status code responses.

Information Disclosure Debian Lxd Suse
NVD GitHub
CVSS 3.1
5.3
EPSS
0.1%
CVE-2025-41064 CRITICAL Act Now

Auth impersonation via Cl@ve in OpenSIAC.

Authentication Bypass
NVD
CVSS 4.0
9.3
EPSS
0.1%
CVE-2025-60661 MEDIUM POC This Month

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the cloneType parameter in the fromAdvSetMacMtuWan function.

Buffer Overflow Memory Corruption Ac18 Firmware Tenda
NVD
CVSS 3.1
5.3
EPSS
0.0%
CVE-2025-11221 HIGH This Week

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Unrestricted Upload of File with Dangerous Type vulnerability in GTONE ChangeFlow allows Path Traversal, Accessing Functionality Not Properly Constrained by ACLs.This issue affects ChangeFlow: from All versions through v9.0.1.1.

Path Traversal File Upload
NVD
CVSS 3.1
8.8
EPSS
0.0%
CVE-2025-11020 HIGH This Week

An attacker can obtain server information using Path Traversal vulnerability to conduct SQL Injection, which possibly exploits Unrestricted Upload of File with Dangerous Type vulnerability in MarkAny SafePC Enterprise on Windows, Linux.This issue affects SafePC Enterprise: V7.0.* (V7.0.YYYY.MM.DD) before V7.0.1, and V5.*.*.

SQLi Path Traversal File Upload Windows
NVD
CVSS 3.1
8.8
EPSS
0.0%
CVE-2025-40645 HIGH This Week

Exposure of sensitive information in Viday. This vulnerability could allow an unauthenticated attacker to obtain sensitive information about customers by sending an HTTP GET request to “/api/reserva/web/clients” using the “phone” parameter.

Information Disclosure
NVD
CVSS 4.0
8.7
EPSS
0.1%
CVE-2025-61668 HIGH PATCH This Week

Volto is a ReactJS-based frontend for the Plone Content Management System. Versions 16.34.0 and below, 17.0.0 through 17.22.1, 18.0.0 through 18.27.1, and 19.0.0-alpha.1 through 19.0.0-alpha.5, an anonymous user could cause the NodeJS server part of Volto to quit with an error when visiting a specific URL. This issue is fixed in versions 16.34.1, 17.22.2, 18.27.2 and 19.0.0-alpha.6.

Denial Of Service Null Pointer Dereference
NVD GitHub
CVSS 4.0
8.7
EPSS
0.1%
CVE-2025-9587 HIGH This Week

The CTL Behance Importer Lite WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection.

SQLi WordPress PHP
NVD WPScan
CVSS 3.1
8.6
EPSS
0.1%
Page 1 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy