CVE / JVNDB Latest 100

Operator-sdk: privilege escalation due to incorrect permissions of /etc/passwd

Petlibro Smart Pet Feeder Platform through 1.7.31 Broken Access Control via API endpoint

Petlibro Smart Pet Feeder through 1.7.31 Platform Improper Access Control via API endpoint

Petlibro Smart Pet Feeder Platform through 1.7.31 Information Disclosure via API endpoint

Petlibro Smart Pet Feeder Platform through 1.7.31 Authorization Bypass via Device Share API

Petlibro Smart Pet Feeder Platform through 1.7.31 Audio Information Disclosure via API endpoint

Petlibro Smart Pet Feeder Platform through 1.7.31 Authentication Bypass via API endpoint

CasaOS <= 0.4.15 Unauthenticated File and Debug Data Exposure

Genymobile/scrcpy <= 3.3.3 Global Buffer Overflow

Zillya Total Security 3.0.2367.0 Local Privilege Escalation via Quarantine Module

Keycloak: xss via assertion consumer service url in saml post-binding flow

Golang-fips: golang fips zeroed buffer

Containers/image: digest type does not guarantee valid type

Keycloak: org.keycloak.protocol.oidc: unvalidated cross-origin messages in checkloginiframe leads to ddos

Not used

Not used

Not used

Not used

Not used

Not used

Not used

Not used

Not used

AnythingLLM Vulnerable to Username Enumeration w/ Password Recovery

Nuvation Energy Multi-Stack Controller OS Command Injection

Nuvation Energy Multi-Stack Controller Proxy service allows arbitrary BMS access

Nuvation Energy nCloud Client-to-Client Communication

WordPress Arcane theme <= 3.6.6 - Broken Access Control vulnerability

WordPress Backpack Traveler theme <= 2.10.3 - Insecure Direct Object References (IDOR) vulnerability

WordPress Struktur theme <= 2.5.1 - Insecure Direct Object References (IDOR) vulnerability

givanz VvvebJs 1.7.2 is vulnerable to Insecure File Upload.

givanz VvvebJs 1.7.2 suffers from a File Upload vulnerability via save.php.

WordPress weForms plugin <= 1.6.25 - Broken Access Control vulnerability

WordPress Product Delivery Date for WooCommerce – Lite plugin <= 3.2.0 - Broken Access Control vulnerability

Nuvation Energy Multi-Stack Controller Private Key Stored on Device

Nuvation Energy Multi-Stack Controller Authentication Bypass

Nuvation Energy Multi-Stack Controller OS Command Injection

Bagisto has IDOR in Customer Order Reorder Functionality

Bagisto has Normal & Blind SSTI from low-privilege user when ordering product

Bagisto has SSTI via first and last name from low-privilege user (not admin)

Nuvation Energy BMS Client-side Authentication

Bagisto has HTML Filter Bypass that Enables Stored XSS

WordPress PopupKit plugin <= 2.1.5 - Sensitive Data Exposure vulnerability

Bagisto has SSTI in parameter that can lead to RCE

MessagePack-Java Vulnerable to Remote Denial of Service via Malicious .msgpack Model File Triggering Unbounded EXT Payload Allocation

JM-DATA ONU JF511-TV 1.0.67 Authenticated Stored Cross-Site Scripting (XSS) Vulnerability

listmonk Vulnerable to Stored XSS Leading to Admin Account Takeover

Ninja Forms < 3.13.3 - Unauthenticated Token Generation and Submission Disclosure

Shopbuilder < 3.2.2 - Reflected XSS

Logo Slider < 4.9.0 - Contributor+ Stored XSS

WPBookit <= 1.0.7 - Customer Deletion via CSRF

WordPress Poptics: AI-Powered Popup Builder for Lead Generation, Conversions, Exit-Intent, Email Opt-ins & WooCommerce Sales plugin <= 1.0.20 - Sensitive Data Exposure vulnerability

code-projects Online Music Site ViewSongs.php sql injection

code-projects Content Management System pages.php sql injection

Emlog has Broken Access Control (BAC)

Daptin Aggregate API resource_aggregate.go goqu.L sql injection

In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token can retrieve share tokens (intended for unrelated access) via a shared_servers endpoint.

In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token can retrieve other tokens (intended for unrelated access) via clients.plex.tv/devices.xml.

In Plex Media Server (PMS) through 1.42.2.10156, ability to access /myplex/account with a device token is not properly aligned with whether the device is currently associated with an account.

Plex Media Server (PMS) through 1.42.2.10156 allows retrieval of a permanent access token via a /myplex/account call with a transient access token.

code-projects Content Management System edit_posts.php unrestricted upload

UTT 进取 512W formFtpServerDirConfig strcpy buffer overflow

UTT 进取 512W formFtpServerShareDirSelcet strcpy buffer overflow

UTT 进取 512W formConfigCliForEngineerOnly strcpy buffer overflow

STVS ProVision 5.9.10 Authenticated Reflected Cross-Site Scripting via Files Parameter

WordPress BizPrint plugin <= 4.6.7 - Broken Access Control vulnerability

WordPress Discussion Board plugin <= 2.5.7 - Broken Access Control vulnerability

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.

In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

KZTech JT3500V 4G LTE CPE 2.0.1 Insufficient Session Expiration Vulnerability

COMMAX Biometric Access Control System 1.0.0 Reflected XSS via Cookie Parameters

WordPress HR Management Lite plugin <= 3.5 - Broken Access Control vulnerability

WordPress Popup box plugin <= 6.0.7 - Cross Site Request Forgery (CSRF) vulnerability

Selea CarPlateServer 4.0.1.6 Local Privilege Escalation via Unquoted Service Path

Selea CarPlateServer 4.0.1.6 Remote Program Execution via Configuration Endpoint

NuCom 11N Wireless Router 5.07.90 Privilege Escalation via Configuration Backup

ZBL EPON ONU Broadband Router V100R001 Privilege Escalation via Configuration Endpoint

Epic Games Psyonix Rocket League <=1.95 Elevation of Privileges via Insecure Permissions

yeqifu warehouse AppFileUtils.java createResponseEntity path traversal

SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated Stored Cross-Site Scripting

SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Hardcoded Credentials Authentication Bypass

SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x ICMP Flood Attack via Network Commands

Windows Kernel Information Disclosure Vulnerability

Storage Spaces Direct Information Disclosure Vulnerability

Microsoft Configuration Manager Spoofing Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Azure Notification Service Elevation of Privilege Vulnerability

Azure Compute Resource Provider Elevation of Privilege Vulnerability

Azure Event Grid System Elevation of Privilege Vulnerability

Copilot Information Disclosure Vulnerability

Azure Monitor Log Analytics Spoofing Vulnerability

Copilot Information Disclosure Vulnerability

Redis Enterprise Elevation of Privilege Vulnerability

Azure PlayFab Elevation of Privilege Vulnerability

M365 Copilot Information Disclosure Vulnerability

Azure Entra ID Elevation of Privilege Vulnerability

Azure Entra ID Elevation of Privilege Vulnerability

Microsoft Defender for Linux Denial of Service Vulnerability

Windows Server Update Service (WSUS) Remote Code Execution Vulnerability

Windows Bluetooth Service Elevation of Privilege Vulnerability