Security Dashboard

Priority	CVE	Severity	CVSS	EPSS	Indicators	Published
51	CVE-2023-53985 Zstore, now referred to as Zippy CRM, 6.5.4 contains a reflected cross-site scri	MEDIUM	6.1	0.1%	POC	2026-01-13
51	CVE-2019-25413 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.1%	POC	2026-02-19
51	CVE-2019-25445 Fiverr Clone Script 1.2.2 contains a cross-site scripting vulnerability that all	MEDIUM	6.1	0.1%	POC	2026-02-20
51	CVE-2019-25402 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.1%	POC	2026-02-19
51	CVE-2019-25430 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.1%	POC	2026-02-19
51	CVE-2019-25414 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.1%	POC	2026-02-19
51	CVE-2019-25502 Simple Job Script contains a cross-site scripting vulnerability that allows unau	MEDIUM	6.1	0.1%	POC	2026-03-04
51	CVE-2025-58095 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-58094 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-58093 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-58092 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-58091 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-58090 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-58089 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-58088 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-58087 Multiple reflected cross-site scripting (xss) vulnerabilities exist in the confi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-57787 A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute f	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-55071 A reflected cross-site scripting (xss) vulnerability exists in the modifyAnonymi	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-54852 A reflected cross-site scripting (xss) vulnerability exists in the modifyAeTitle	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-53707 A reflected cross-site scripting (xss) vulnerability exists in the modifyTranscr	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-53516 A reflected cross-site scripting (xss) vulnerability exists in the downloadZip f	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2025-69749 Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute	MEDIUM	6.1	0.1%	POC	2026-01-29
51	CVE-2025-44000 A reflected cross-site scripting (xss) vulnerability exists in the sendOruReport	MEDIUM	6.1	0.1%	POC	2026-01-20
51	CVE-2026-25735 Rucio is a software framework that provides functionality to organize, manage, a	MEDIUM	6.1	0.1%	POC FIX	2026-02-25
51	CVE-2026-25736 Rucio is a software framework that provides functionality to organize, manage, a	MEDIUM	6.1	0.1%	POC FIX	2026-02-25
51	CVE-2026-25734 Rucio is a software framework that provides functionality to organize, manage, a	MEDIUM	6.1	0.1%	POC FIX	2026-02-25
51	CVE-2026-26464 Stored Cross-Site Scripting (XSS) was found in the /admin/edit_user.php page of	MEDIUM	6.1	0.1%	POC	2026-02-23
51	CVE-2019-25397 IPFire 2.21 Core Update 127 contains multiple reflected cross-site scripting vul	MEDIUM	6.1	0.0%	POC	2026-02-18
51	CVE-2019-25398 IPFire 2.21 Core Update 127 contains multiple cross-site scripting vulnerabiliti	MEDIUM	6.1	0.0%	POC	2026-02-18
51	CVE-2019-25396 IPFire 2.21 Core Update 127 contains a reflected cross-site scripting vulnerabil	MEDIUM	6.1	0.0%	POC	2026-02-18
51	CVE-2023-54332 Jetpack 11.4 contains a cross-site scripting vulnerability in the contact form m	MEDIUM	6.1	0.0%	POC	2026-01-13
51	CVE-2020-36919 WPForms 1.7.8 contains a cross-site scripting vulnerability in the slider import	MEDIUM	6.1	0.0%	POC	2026-01-13
51	CVE-2025-56451 Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Managemen	MEDIUM	6.1	0.0%	POC	2026-01-16
51	CVE-2026-23847 SiYuan is a personal knowledge management system. Versions prior to 3.5.4 are vu	MEDIUM	6.1	0.0%	POC FIX	2026-01-19
51	CVE-2025-58080 A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7App	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-57881 A reflected cross-site scripting (xss) vulnerability exists in the modifyEmail f	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-57786 A reflected cross-site scripting (xss) vulnerability exists in the notifynewstud	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-54861 A reflected cross-site scripting (xss) vulnerability exists in the modifyCoercio	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-54853 A reflected cross-site scripting (xss) vulnerability exists in the modifyUser fu	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-54817 A reflected cross-site scripting (xss) vulnerability exists in the autoPurge fun	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-54814 A reflected cross-site scripting (xss) vulnerability exists in the modifyAutopur	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-54778 A reflected cross-site scripting (xss) vulnerability exists in the existingUser	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-54495 A reflected cross-site scripting (xss) vulnerability exists in the emailfailedjo	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-54157 A reflected cross-site scripting (xss) vulnerability exists in the encapsulatedD	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-53854 A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Rout	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-46270 A reflected cross-site scripting (xss) vulnerability exists in the fetchPriorStu	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-36556 A reflected cross-site scripting (xss) vulnerability exists in the ldapUser func	MEDIUM	6.1	0.0%	POC	2026-01-20
51	CVE-2025-70791 Cross Site Scripting vulnerability in the "/admin/order/abandoned" endpoint of M	MEDIUM	6.1	0.0%	POC FIX	2026-02-05
51	CVE-2025-70792 Cross Site Scripting vulnerability in the "/admin/category/create" endpoint of M	MEDIUM	6.1	0.0%	POC FIX	2026-02-05
51	CVE-2026-28771 A Reflected Cross-Site Scripting (XSS) vulnerability exists in the /index.cgi en	MEDIUM	6.1	0.0%	POC	2026-03-04
51	CVE-2026-28772 A Reflected Cross-Site Scripting (XSS) vulnerability in the /IDC_Logging/index.c	MEDIUM	6.1	0.0%	POC	2026-03-04
51	CVE-2019-25356 Bematech (formerly Logic Controls, now Elgin) MP-4200 TH printer contains a cros	MEDIUM	6.1	0.0%	POC	2026-02-18
51	CVE-2021-47750 YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that allows atta	MEDIUM	6.1	0.0%	POC	2026-01-13
51	CVE-2026-30238 Group-Office is an enterprise customer relationship management and groupware too	MEDIUM	6.1	0.0%	POC	2026-03-06
51	CVE-2019-25417 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2019-25423 Comodo Dome Firewall 2.7.0 contains multiple reflected cross-site scripting vuln	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2019-25415 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2026-24415 OpenSTAManager is an open source management software for technical assistance an	MEDIUM	6.1	0.0%	POC FIX	2026-03-03
51	CVE-2019-25421 Comodo Dome Firewall 2.7.0 contains multiple cross-site scripting vulnerabilitie	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2026-29038 changedetection.io is a free open source web page change detection tool. Prior t	MEDIUM	6.1	0.0%	POC FIX	2026-03-06
51	CVE-2026-30565 A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sa	MEDIUM	6.1	0.0%	POC	2026-03-30
51	CVE-2022-50937 Ametys CMS v4.4.1 contains a persistent cross-site scripting vulnerability in th	MEDIUM	6.1	0.0%	POC	2026-01-13
51	CVE-2025-70297 A stored cross-site scripting (XSS) vulnerability in the recipe asset upload and	MEDIUM	6.1	0.0%	POC	2026-02-11
51	CVE-2026-30564 A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sa	MEDIUM	6.1	0.0%	POC	2026-03-30
51	CVE-2019-25429 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2019-25427 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2019-25420 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2026-30566 A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sa	MEDIUM	6.1	0.0%	POC	2026-03-30
51	CVE-2026-30526 A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Zo	MEDIUM	6.1	0.0%	POC	2026-04-01
51	CVE-2026-23727 WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redi	MEDIUM	6.1	0.0%	POC FIX	2026-01-16
51	CVE-2020-37152 PHP-Fusion 9.03.50 panels.php is vulnerable to cross-site scripting (XSS) via th	MEDIUM	6.1	0.0%	POC	2026-02-05
51	CVE-2022-50896 Testa 3.5.1 contains a reflected cross-site scripting vulnerability in the login	MEDIUM	6.1	0.0%	POC	2026-01-13
51	CVE-2019-25393 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site	MEDIUM	6.1	0.0%	POC	2026-02-16
51	CVE-2017-20219 Serviio PRO 1.8 DLNA Media Streaming Server contains a DOM-based cross-site scri	MEDIUM	6.1	0.0%	POC	2026-03-15
51	CVE-2025-71179 Creativeitem Academy LMS 7.0 contains reflected Cross-Site Scripting (XSS) vulne	MEDIUM	6.1	0.0%	POC	2026-02-03
51	CVE-2019-25371 OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allow	MEDIUM	6.1	0.0%	POC	2026-02-15
51	CVE-2016-20027 ZKTeco ZKBioSecurity 3.0 contains multiple reflected cross-site scripting vulner	MEDIUM	6.1	0.0%	POC	2026-03-15
51	CVE-2015-20114 Next Click Ventures RealtyScript 4.0.2 contains a cross-site scripting vulnerabi	MEDIUM	6.1	0.0%	POC	2026-03-15
51	CVE-2026-24671 The Open eClass platform (formerly known as GUnet eClass) is a complete course m	MEDIUM	6.1	0.0%	POC	2026-02-03
51	CVE-2019-25372 OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allow	MEDIUM	6.1	0.0%	POC	2026-02-15
51	CVE-2025-69430 An Incorrect Symlink Follow vulnerability exists in multiple Yottamaster NAS dev	MEDIUM	6.1	0.0%	POC	2026-02-03
51	CVE-2025-69431 The ZSPACE Q2C NAS contains a vulnerability related to incorrect symbolic link f	MEDIUM	6.1	0.0%	POC	2026-02-03
51	CVE-2026-27645 changedetection.io is a free open source web page change detection tool. In vers	MEDIUM	6.1	0.0%	POC FIX	2026-02-25
51	CVE-2019-25407 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2026-27612 Repostat is a React component to fetch and display GitHub repository info. Prior	MEDIUM	6.1	0.0%	POC FIX	2026-02-25
51	CVE-2019-25412 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2019-25425 Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerabili	MEDIUM	6.1	0.0%	POC	2026-02-19
51	CVE-2026-26023 Dify is an open-source LLM app development platform. Prior to 1.13.0, a cross si	MEDIUM	6.1	0.0%	POC FIX	2026-02-11
51	CVE-2026-27120 Leafkit is a templating language with Swift-inspired syntax. Prior to 1.4.1, htm	MEDIUM	6.1	0.0%	POC FIX	2026-02-20
51	CVE-2026-30237 Group-Office is an enterprise customer relationship management and groupware too	MEDIUM	6.1	0.0%	POC	2026-03-06

Oldest Unpatched Critical/High CVEs

CVE	Severity	CVSS	Priority	Days Open
CVE-2024-3400	CRITICAL	10.0	224	730d
CVE-2019-19781	CRITICAL	9.8	223	2298d
CVE-2020-5902	CRITICAL	9.8	223	2111d
CVE-2021-35464	CRITICAL	9.8	223	1725d
CVE-2020-10189	CRITICAL	9.8	223	2228d
CVE-2012-4681	CRITICAL	9.8	223	4976d
CVE-2022-42475	CRITICAL	9.8	223	1196d
CVE-2023-3519	CRITICAL	9.8	223	998d
CVE-2015-7450	CRITICAL	9.8	222	3753d
CVE-2023-34048	CRITICAL	9.8	222	900d

Prev 7 / 77 Next