CVE List - 2025 / March
Showing 2601 - 2700 of 4018 CVEs for March 2025 (Page 27 of 41)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-2661 | 2025-03-23 | Project Worlds Online Time Table Generator index.php sql injection |
| CVE-2025-2662 | 2025-03-23 | Project Worlds Online Time Table Generator studentdashboard.php sql injection |
| CVE-2025-2663 | 2025-03-23 | PHPGurukul Bank Locker Management System search-locker-details.php sql injection |
| CVE-2025-2664 | 2025-03-23 | CodeZips Hospital Management System suadpeted.php sql injection |
| CVE-2025-2665 | 2025-03-23 | PHPGurukul Online Security Guards Hiring System bwdates-reports-details.php sql injection |
| CVE-2025-2671 | 2025-03-23 | Yue Lao Blind Box 月老盲盒 Upload.php base64image unrestricted upload |
| CVE-2018-25109 | 2025-03-23 | Nintendo Animal Crossing Letter Trigram ac-exploit-gc memory corruption |
| CVE-2025-2672 | 2025-03-23 | code-projects Payroll Management System add_deductions.php sql injection |
| CVE-2025-2673 | 2025-03-23 | code-projects Payroll Management System home_employee.php cross site scripting |
| CVE-2024-55279 | 2025-03-24 | Uguu through 1.8.9 allows Cross Site Scripting (XSS) via JavaScript... |
| CVE-2025-29100 | 2025-03-24 | Tenda AC8 V16.03.34.06 is vulnerable to Buffer Overflow in the... |
| CVE-2025-29135 | 2025-03-24 | A stack-based buffer overflow vulnerability in Tenda AC7 V15.03.06.44 allows... |
| CVE-2025-29310 | 2025-03-24 | An issue in onos v2.7.0 allows attackers to trigger a... |
| CVE-2025-29311 | 2025-03-24 | Limited secret space in LLDP packets used in onos v2.7.0... |
| CVE-2025-29312 | 2025-03-24 | An issue in onos v2.7.0 allows attackers to trigger unexpected... |
| CVE-2025-29313 | 2025-03-24 | Use of incorrectly resolved name or reference in OpenDaylight Service... |
| CVE-2025-29314 | 2025-03-24 | Insecure Shiro cookie configurations in OpenDaylight Service Function Chaining (SFC)... |
| CVE-2025-29315 | 2025-03-24 | An issue in the Shiro-based RBAC (Role-based Access Control) mechanism... |
| CVE-2025-30112 | 2025-03-24 | On 70mai Dash Cam 1S devices, by connecting directly to... |
| CVE-2025-2674 | 2025-03-24 | PHPGurukul Bank Locker Management System aboutus.php sql injection |
| CVE-2025-2675 | 2025-03-24 | PHPGurukul Bank Locker Management System add-lockertype.php sql injection |
| CVE-2025-2676 | 2025-03-24 | PHPGurukul Bank Locker Management System add-subadmin.php sql injection |
| CVE-2025-2677 | 2025-03-24 | PHPGurukul Bank Locker Management System changeidproof.php sql injection |
| CVE-2025-2678 | 2025-03-24 | PHPGurukul Bank Locker Management System changeimage1.php sql injection |
| CVE-2025-2679 | 2025-03-24 | PHPGurukul Bank Locker Management System contact-us.php sql injection |
| CVE-2025-2680 | 2025-03-24 | PHPGurukul Bank Locker Management System edit-assign-locker.php sql injection |
| CVE-2025-2681 | 2025-03-24 | PHPGurukul Bank Locker Management System edit-locker.php sql injection |
| CVE-2025-2682 | 2025-03-24 | PHPGurukul Bank Locker Management System edit-subadmin.php sql injection |
| CVE-2025-2683 | 2025-03-24 | PHPGurukul Bank Locker Management System profile.php sql injection |
| CVE-2025-2684 | 2025-03-24 | PHPGurukul Bank Locker Management System search-report-details.php sql injection |
| CVE-2025-2686 | 2025-03-24 | mingyuefusu 明月复苏 tushuguanlixitong 图书管理系统 Backend admin doFilter access control |
| CVE-2024-10558 | 2025-03-24 | Form Maker by 10Web < 1.15.30 - Admin+ Stored XSS |
| CVE-2024-13124 | 2025-03-24 | Photo Gallery by 10Web < 1.8.33 - Admin+ Stored XSS |
| CVE-2025-1062 | 2025-03-24 | Slider, Gallery, Carousel by MetaSlider < 3.95.0 - Editor+ Stored XSS |
| CVE-2025-1203 | 2025-03-24 | Slider, Gallery, Carousel by MetaSlider < 3.95.0 - Editor+ Stored XSS |
| CVE-2025-2687 | 2025-03-24 | PHPGurukul eLearning System Image index.php unrestricted upload |
| CVE-2025-2688 | 2025-03-24 | TOTOLINK A3000RU Syslog Configuration File ExportSyslog.sh access control |
| CVE-2025-2689 | 2025-03-24 | yiisoft Yii2 SortableIterator.php getIterator deserialization |
| CVE-2025-2690 | 2025-03-24 | yiisoft Yii2 MockClass.php generate deserialization |
| CVE-2025-2699 | 2025-03-24 | GetmeUK ContentTools Image cross site scripting |
| CVE-2025-2700 | 2025-03-24 | michelson Dante Editor Insert Link cross site scripting |
| CVE-2025-2701 | 2025-03-24 | AMTT Hotel Broadband Operation System port_setup.php popen os command injection |
| CVE-2025-2702 | 2025-03-24 | Softwin WMX3 ImageAdd.ashx ImageAdd unrestricted upload |
| CVE-2025-0478 | 2025-03-24 | GPU DDK - PMMETA_PROTECT PMR can be exported as dma-buf file / GEM object |
| CVE-2025-0835 | 2025-03-24 | GPU DDK - _WrapExtMemReleasePages called twice if _FlushUMVirtualRange fails |
| CVE-2024-8773 | 2025-03-24 | Protocol Downgrade in SIMPLE.ERP |
| CVE-2024-8774 | 2025-03-24 | Privilege Escalation in SIMPLE.ERP |
| CVE-2025-30521 | 2025-03-24 | WordPress GP Back To Top plugin <= 3.0 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30522 | 2025-03-24 | WordPress Contact Form 7 Material Design plugin <= 1.0.0 - CSRF to Stored XSS vulnerability |
| CVE-2025-30523 | 2025-03-24 | WordPress Super Simple Subscriptions plugin <= 1.1.0 - SQL Injection vulnerability |
| CVE-2025-30525 | 2025-03-24 | WordPress WP Profitshare plugin <= 1.4.9 - SQL Injection vulnerability |
| CVE-2025-30526 | 2025-03-24 | WordPress Typekit plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30527 | 2025-03-24 | WordPress My Bootstrap Menu plugin <= 1.2.1 - Stored Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30528 | 2025-03-24 | WordPress Awesome Logos plugin <= 1.2 - CSRF to SQL Injection vulnerability |
| CVE-2025-30529 | 2025-03-24 | WordPress Auto Load Next Post plugin <= 1.5.14 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30530 | 2025-03-24 | WordPress AI Preloader plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30531 | 2025-03-24 | WordPress WP Ride Booking plugin <= 2.4 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-30532 | 2025-03-24 | WordPress Weather Layer plugin <= 4.2.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30533 | 2025-03-24 | WordPress Message ticker plugin <= 9.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-30534 | 2025-03-24 | WordPress Image Captcha plugin <= 1.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability |
| CVE-2025-30535 | 2025-03-24 | WordPress External image replace plugin <= 1.0.8 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability |
| CVE-2025-30536 | 2025-03-24 | WordPress Beautiful Link Preview plugin <= 1.5.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30537 | 2025-03-24 | WordPress Upload Quota per User - <= <= 1.3 Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-30538 | 2025-03-24 | WordPress Simple Optimizer plugin <= 1.2.7 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30539 | 2025-03-24 | WordPress BMo Expo plugin <= 1.0.15 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30540 | 2025-03-24 | WordPress AvaiBook plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30541 | 2025-03-24 | WordPress Info Boxes Shortcode And Widgets plugin <= 1.15 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30542 | 2025-03-24 | WordPress WP SoundCloud Ultimate plugin <= 1.5 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30543 | 2025-03-24 | WordPress Menu Duplicator plugin <= 1.0 - Broken Access Control vulnerability |
| CVE-2025-30545 | 2025-03-24 | WordPress issuuPress plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30546 | 2025-03-24 | WordPress Cackle plugin <= 4.33 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30549 | 2025-03-24 | WordPress Yummly Rich Recipes plugin <= 4.2 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30550 | 2025-03-24 | WordPress CallPhone'r plugin <= 1.1.1 - CSRF to Stored XSS vulnerability |
| CVE-2025-30551 | 2025-03-24 | WordPress Pretty file links plugin <= 0.9 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30552 | 2025-03-24 | WordPress WordPress Admin Bar Improved plugin <= 3.3.5 - CSRF to Stored XSS vulnerability |
| CVE-2025-30553 | 2025-03-24 | WordPress GMO Font Agent plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-30555 | 2025-03-24 | WordPress WordPres 同步微博 plugin <= 1.1.0 - CSRF to Stored XSS vulnerability |
| CVE-2025-30556 | 2025-03-24 | WordPress Fix Rss Feeds plugin <= 3.1 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30557 | 2025-03-24 | WordPress Easy 301 Redirects plugin <= 1.33 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-30558 | 2025-03-24 | WordPress ANAC XML Render plugin <= 1.5.7 - CSRF to Stored XSS vulnerability |
| CVE-2025-30560 | 2025-03-24 | WordPress jQuery Dropdown Menu plugin <= 3.0 - CSRF to Stored XSS vulnerability |
| CVE-2025-30561 | 2025-03-24 | WordPress CAS Maestro plugin <= 1.1.3 - CSRF to Stored XSS vulnerability |
| CVE-2025-30564 | 2025-03-24 | WordPress Custom Script Integration - <= <= 2.1 Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-30565 | 2025-03-24 | WordPress banner-manager plugin <= 16.04.19 - CSRF to Stored XSS vulnerability |
| CVE-2025-30566 | 2025-03-24 | WordPress Clink - <= <= 1.2.2 Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-30568 | 2025-03-24 | WordPress Super Static Cache - <= <= 3.3.5 Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-30569 | 2025-03-24 | WordPress WP Featured Entries - <= <= 1.0 SQL Injection Vulnerability |
| CVE-2025-30570 | 2025-03-24 | WordPress دکمه، شبکه اجتماعی خرید - <= <= 2.0.6 SQL Injection Vulnerability |
| CVE-2025-30571 | 2025-03-24 | WordPress STEdb Forms - <= <= 1.0.4 SQL Injection Vulnerability |
| CVE-2025-30572 | 2025-03-24 | WordPress Simple Rating plugin <= 1.4 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability |
| CVE-2025-30573 | 2025-03-24 | WordPress My Default Post Content - <= <= 0.7.3 Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-30574 | 2025-03-24 | WordPress Mobile Navigation - <= <= 1.5 Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-30575 | 2025-03-24 | WordPress Login Redirect - <= <= 1.0.5 Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-30576 | 2025-03-24 | WordPress Hacklog Remote Image Autosave - <= <= 2.1.0 Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-30577 | 2025-03-24 | WordPress Browser Address Bar Color plugin <= 3.3 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability |
| CVE-2025-30578 | 2025-03-24 | WordPress AdSense Privacy Policy plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability |
| CVE-2025-30581 | 2025-03-24 | WordPress Top Bar - <= <=3.3 Broken Access Control Vulnerability |
| CVE-2025-30583 | 2025-03-24 | WordPress Pro Rank Tracker plugin <= 1.0.0 - CSRF to Stored XSS Vulnerability |
| CVE-2025-30584 | 2025-03-24 | WordPress AlphaOmega Captcha & Anti-Spam Filter plugin <= 3.3 - CSRF to Stored XSS Vulnerability |
| CVE-2025-30585 | 2025-03-24 | WordPress Generate Post Thumbnails - <= <= 0.8 Cross Site Request Forgery (CSRF) Vulnerability |