Skip to main content
CVE-2025-40551 CRITICAL POC KEV THREAT Emergency

SolarWinds Web Help Desk contains an unauthenticated Java deserialization vulnerability (CVE-2025-40551, CVSS 9.8) that enables remote code execution. With EPSS 80.6% and KEV listing, this is the more severe of two concurrent WHD vulnerabilities, allowing attackers to execute arbitrary commands on the host server without any credentials.

RCE Deserialization Web Help Desk
NVD
CVSS 3.1
9.8
EPSS
80.6%
Threat
7.4
CVE-2025-40552 CRITICAL POC Act Now

SolarWinds Web Help Desk has an authentication bypass vulnerability (EPSS 9.9%) that allows unauthenticated attackers to gain admin access to the helpdesk system.

Authentication Bypass Web Help Desk
NVD GitHub
CVSS 3.1
9.8
EPSS
9.9%
CVE-2025-40554 CRITICAL POC Act Now

SolarWinds Web Help Desk has a second authentication bypass (EPSS 7.8%) providing yet another path to unauthenticated admin access.

Authentication Bypass Web Help Desk
NVD
CVSS 3.1
9.8
EPSS
7.8%
CVE-2026-23830 CRITICAL POC PATCH Act Now

SandboxJS library prior to 0.8.26 has a CVSS 10.0 sandbox escape via AsyncFunction constructor, allowing execution of arbitrary code outside the sandbox boundary.

RCE Sandboxjs
NVD GitHub
CVSS 3.1
10.0
EPSS
0.2%
CVE-2026-24897 CRITICAL POC PATCH Act Now

Erugo file-sharing platform up to version 0.2.14 has a CVSS 10.0 path traversal allowing authenticated users to read any file on the server including secrets and configuration.

Golang RCE Erugo
NVD GitHub Exploit-DB VulDB
CVSS 3.1
10.0
EPSS
0.2%
CVE-2026-24841 CRITICAL POC PATCH Act Now

Dokploy self-hosted PaaS prior to 0.26.6 has a critical command injection vulnerability (CVSS 9.9) allowing authenticated users to execute arbitrary OS commands on the host.

Docker Command Injection Dokploy
NVD GitHub
CVSS 3.1
9.9
EPSS
0.1%
CVE-2020-36967 CRITICAL POC Act Now

Zortam Mp3 Media Studio 27.60 has a buffer overflow in the library file selection dialog that allows code execution through crafted library files.

RCE Buffer Overflow
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
0.3%
CVE-2020-36962 CRITICAL POC PATCH Act Now

Tendenci 12.3.1 has a CSV formula injection in the contact form message field enabling code execution when administrators export and open data in spreadsheet applications.

Code Injection Tendenci
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
0.3%
CVE-2020-36961 CRITICAL POC Act Now

10-Strike Network Inventory Explorer 8.65 has a buffer overflow in exception handling that allows remote code execution by crashing the application with crafted network data.

Buffer Overflow
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
0.3%
CVE-2026-24857 CRITICAL POC Act Now

bulk_extractor digital forensics tool starting from version 1.4 has a heap buffer overflow in its embedded unrar code that can be triggered by crafted RAR archives.

Industrial Memory Corruption Denial Of Service Bulk Extractor Suse
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2020-36964 CRITICAL POC Act Now

YATinyWinFTP has a denial of service vulnerability allowing remote attackers to crash the FTP service by sending a 272-byte crafted packet.

Buffer Overflow Denial Of Service
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-69602 CRITICAL POC Act Now

66biolinks v62.0.0 has a session fixation vulnerability where the application doesn't regenerate session IDs after authentication, enabling session hijacking.

Information Disclosure 66biolinks
NVD GitHub
CVSS 3.1
9.1
EPSS
0.1%
CVE-2026-24769 CRITICAL POC PATCH Act Now

NocoDB spreadsheet platform prior to 0.301.0 has a stored XSS vulnerability (CVSS 9.0) that enables code execution through malicious cell content in shared views.

XSS Nocodb
NVD GitHub
CVSS 3.1
9.0
EPSS
0.0%
CVE-2025-40553 CRITICAL Act Now

SolarWinds Web Help Desk has a second deserialization vulnerability (EPSS 11.9%) providing another unauthenticated RCE path alongside CVE-2025-40551.

RCE Deserialization Web Help Desk
NVD GitHub
CVSS 3.1
9.8
EPSS
11.9%
CVE-2025-57792 CRITICAL Act Now

Explorance Blue versions before 8.14.9 have a CVSS 10.0 SQL injection vulnerability enabling unauthenticated attackers to fully compromise the survey and assessment database.

SQLi Blue
NVD GitHub
CVSS 3.1
10.0
EPSS
0.1%
CVE-2025-57795 CRITICAL Act Now

Explorance Blue before 8.14.13 has an authenticated remote file download vulnerability in a web service that allows downloading arbitrary files from the server.

RCE Blue
NVD GitHub
CVSS 3.1
9.9
EPSS
0.3%
CVE-2026-1056 CRITICAL Act Now

Snow Monkey Forms WordPress plugin has an arbitrary file deletion vulnerability through insufficient path validation, enabling attackers to delete critical WordPress files.

WordPress PHP RCE
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-61140 CRITICAL PATCH Act Now

jsonpath library 1.1.1 has a prototype pollution vulnerability in the value function that allows attackers to modify JavaScript object prototypes and potentially achieve RCE.

Jsonpath Information Disclosure Prototype Pollution
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-57794 CRITICAL Act Now

Explorance Blue before 8.14.9 has an authenticated file upload vulnerability allowing administrators to upload executable files to the server.

RCE Blue
NVD GitHub
CVSS 3.1
9.1
EPSS
0.4%
CVE-2026-24838 CRITICAL PATCH Act Now

DNN (DotNetNuke) CMS has a stored XSS vulnerability (CVSS 9.1) allowing persistent script injection that executes for all users viewing the affected content.

.NET Dotnetnuke
NVD GitHub
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-24785 CRITICAL PATCH Act Now

Clatter Noise protocol library has a broken cryptographic algorithm implementation that weakens post-quantum security guarantees in encrypted communications.

Information Disclosure Clatter
NVD GitHub
CVSS 3.1
9.1
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy