CVE List - 2025 / March
Showing 601 - 700 of 4018 CVEs for March 2025 (Page 7 of 41)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-27658 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27659 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27660 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27661 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27662 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27663 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27664 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27665 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27666 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27667 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27668 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27669 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27670 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27671 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27672 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27673 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27674 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27675 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27676 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27677 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27678 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27679 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application... |
| CVE-2025-27680 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.750 Application... |
| CVE-2025-27681 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application... |
| CVE-2025-27682 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application... |
| CVE-2025-27683 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application... |
| CVE-2025-27684 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application... |
| CVE-2025-27685 | 2025-03-05 | Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application... |
| CVE-2025-1963 | 2025-03-05 | projectworlds Online Hotel Booking reservation.php sql injection |
| CVE-2025-24924 | 2025-03-05 | GMOD Apollo Missing Authentication for Critical Function |
| CVE-2025-20002 | 2025-03-05 | GMOD Apollo Generation of Error Message Containing Sensitive Information |
| CVE-2025-1964 | 2025-03-05 | projectworlds Online Hotel Booking booknow.php sql injection |
| CVE-2025-1965 | 2025-03-05 | projectworlds Online Hotel Booking login.php sql injection |
| CVE-2025-1966 | 2025-03-05 | PHPGurukul Pre-School Enrollment System index.php sql injection |
| CVE-2024-0141 | 2025-03-05 | NVIDIA Hopper HGX for 8-GPU contains a vulnerability in the... |
| CVE-2024-0114 | 2025-03-05 | NVIDIA Hopper HGX for 8-GPU contains a vulnerability in the... |
| CVE-2025-1967 | 2025-03-05 | code-projects Blood Bank Management System donor.php cross site scripting |
| CVE-2025-1914 | 2025-03-05 | Out of bounds read in V8 in Google Chrome prior... |
| CVE-2025-1915 | 2025-03-05 | Improper Limitation of a Pathname to a Restricted Directory in... |
| CVE-2025-1916 | 2025-03-05 | Use after free in Profiles in Google Chrome prior to... |
| CVE-2025-1917 | 2025-03-05 | Inappropriate implementation in Browser UI in Google Chrome on Android... |
| CVE-2025-1918 | 2025-03-05 | Out of bounds read in PDFium in Google Chrome prior... |
| CVE-2025-1919 | 2025-03-05 | Out of bounds read in Media in Google Chrome prior... |
| CVE-2025-1921 | 2025-03-05 | Inappropriate implementation in Media Stream in Google Chrome prior to... |
| CVE-2025-1922 | 2025-03-05 | Inappropriate implementation in Selection in Google Chrome on Android prior... |
| CVE-2025-1923 | 2025-03-05 | Inappropriate implementation in Permission Prompts in Google Chrome prior to... |
| CVE-2025-1393 | 2025-03-05 | Weidmueller: Authentication Vulnerability due to Hard-coded Credentials |
| CVE-2025-1435 | 2025-03-05 | bbPress <= 2.6.11 - Cross-Site Request Forgery to Limited Privilege Escalation |
| CVE-2025-0990 | 2025-03-05 | I Am Gloria <= 1.1.4 - Cross-Site Request Forgery |
| CVE-2024-8682 | 2025-03-05 | JNews - WordPress Newspaper Magazine Blog AMP Theme <= 11.6.6 - Unauthorized User Registration |
| CVE-2024-13350 | 2025-03-05 | SearchIQ – The Search Solution <= 4.7 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2024-13827 | 2025-03-05 | Razorpay Subscription Button Elementor Plugin <= 1.0.3 - Reflected Cross-Site Scripting via add_query_arg and remove_query_arg Functions |
| CVE-2025-1008 | 2025-03-05 | Recently Purchased Products For Woo <= 1.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via view Parameter |
| CVE-2024-13866 | 2025-03-05 | Simple Notification <= 1.3 - Authenticated (Administrator+) Stored Cross-Site Scripting |
| CVE-2025-22493 | 2025-03-05 | Improper cookie attributes in Foreseer Reporting Software (FRS) |
| CVE-2025-0956 | 2025-03-05 | WooCommerce Recover Abandoned Cart <= 24.3.0 - Unauthenticated PHP Object Injection |
| CVE-2024-13780 | 2025-03-05 | Hero Mega Menu - Responsive WordPress Menu Plugin <= 1.16.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Directory Deletion |
| CVE-2024-13779 | 2025-03-05 | Hero Mega Menu - Responsive WordPress Menu Plugin <= 1.16.5 - Reflected Cross-Site Scripting |
| CVE-2024-13777 | 2025-03-05 | ZoomSounds - WordPress Wave Audio Player with Playlist <= 6.91 - Unauthenticated PHP Object Injection |
| CVE-2024-13757 | 2025-03-05 | Master Slider – Responsive Touch Slider <= 3.10.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via ms_layer Shortcode |
| CVE-2024-5667 | 2025-03-05 | Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Featherlight.js JavaScript Library |
| CVE-2024-13811 | 2025-03-05 | Lafka - Multi Store Burger - Pizza & Food Delivery WooCommerce Theme <= 4.5.7 - Missing Authorization to Authenticated (Subscriber+) Demo Import |
| CVE-2024-13778 | 2025-03-05 | Hero Mega Menu - Responsive WordPress Menu Plugin <= 1.16.5 - Authenticated (Subscriber+) SQL Injection |
| CVE-2025-0954 | 2025-03-05 | WP Online Contract <= 5.1.4 - Missing Authorization to Unauthenticated Settings Import |
| CVE-2024-13839 | 2025-03-05 | Company Directory <= 4.3 - Reflected Cross-Site Scripting via add_query_arg Function |
| CVE-2025-1515 | 2025-03-05 | WP Real Estate Manager <= 2.8 - Authentication Bypass via Account Takeover |
| CVE-2024-13809 | 2025-03-05 | Hero Slider - WordPress Slider Plugin <= 1.3.5 - Authenticated (Subscriber+) SQL Injection |
| CVE-2024-12815 | 2025-03-05 | Point Maker <= 0.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2024-13787 | 2025-03-05 | VEDA - MultiPurpose WordPress Theme <= 4.2 - Authenticated (Subscriber+) PHP Object Injection |
| CVE-2024-13810 | 2025-03-05 | Zass - WooCommerce Theme for Handmade Artists and Artisans <= 3.9.9.10 - Missing Authorization to Authenticated (Subscriber+) Demo Import |
| CVE-2024-13815 | 2025-03-05 | Listingo - Business Listing and Directory WordPress Theme <= 3.2.7 - Unauthenticated Arbitrary Shortcode Execution |
| CVE-2024-13747 | 2025-03-05 | WooMail - WooCommerce Email Customizer <= 3.0.34 - Authenticated (Subscriber+) Missing Authorization to SQL Injection |
| CVE-2024-11731 | 2025-03-05 | Master Slider – Responsive Touch Slider <= 3.10.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via ms_slider Shortcode |
| CVE-2024-13232 | 2025-03-05 | WordPress Awesome Import & Export Plugin - Import & Export WordPress Data <= 4.1.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary SQL Execution/Privilege Escalation |
| CVE-2025-25015 | 2025-03-05 | Kibana arbitrary code execution via prototype pollution |
| CVE-2025-1463 | 2025-03-05 | Spreadsheet Integration <= 3.8.2 - Cross-Site Request Forgery to Arbitrary Post Publish |
| CVE-2024-13471 | 2025-03-05 | DesignThemes Core Features <= 4.7 - Missing Authorization to Unauthenticated Arbitrary File Read via dt_process_imported_file |
| CVE-2024-13423 | 2025-03-05 | Sparkling <= 2.4.9 - Missing Authorization to Unauthenticated Arbitrary Plugin Activation/Deactivation |
| CVE-2025-1702 | 2025-03-05 | Ultimate Member <= 2.10.0 - Unauthenticated SQL Injection via search Parameter |
| CVE-2024-12281 | 2025-03-05 | Homey <= 2.4.2 - Unauthenticated Privilege Escalation in homey_save_profile |
| CVE-2024-11951 | 2025-03-05 | Homey Login Register <= 2.4.0 - Unauthenticated Privilege Escalation in homey_register |
| CVE-2024-11153 | 2025-03-05 | Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More <= 2.5.0 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure |
| CVE-2024-12650 | 2025-03-05 | Wago: Vulnerability in libwagosnmp |
| CVE-2024-11216 | 2025-03-05 | Broken Access Control in PozitifIK's Pik Online |
| CVE-2024-12097 | 2025-03-05 | SQLi in Boceksoft Informatics' E-Travel |
| CVE-2024-13147 | 2025-03-05 | SQLi in Merkur Software's B2B Login Panel |
| CVE-2024-12799 | 2025-03-05 | Insufficiently Protected Credentials |
| CVE-2025-1714 | 2025-03-05 | Username Enumeration in Gliffy |
| CVE-2025-24494 | 2025-03-05 | Keysight Ixia Vision Product Family Path Traversal |
| CVE-2025-22212 | 2025-03-05 | Extension - tassos.gr - SQL injection in Convert Forms component version 1.0.0-1.0.0 - 4.4.9 for Joomla |
| CVE-2025-24521 | 2025-03-05 | Keysight Ixia Vision Product Family Improper Restriction of XML External Entity Reference |
| CVE-2025-21095 | 2025-03-05 | Keysight Ixia Vision Product Family Path Traversal |
| CVE-2025-23416 | 2025-03-05 | Keysight Ixia Vision Product Family Path Traversal |
| CVE-2023-38693 | 2025-03-05 | RCE in Lucee REST endpoint |
| CVE-2025-27411 | 2025-03-05 | REDAXO allows Arbitrary File Upload in the mediapool page |
| CVE-2025-27412 | 2025-03-05 | REDAXO allows Authenticated Reflected Cross Site Scripting - packages installation |
| CVE-2025-27497 | 2025-03-05 | OpenDJ Denial of Service (Dos) using alias loop |
| CVE-2025-20206 | 2025-03-05 | Cisco Secure Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability |
| CVE-2025-20208 | 2025-03-05 | A vulnerability in the web-based management interface of Cisco TelePresence... |
| CVE-2024-11035 | 2025-03-05 | Carbon Black Cloud Windows Sensor Information Leak |