CVE List - 2025 / May

Showing 2601 - 2700 of 3984 CVEs for May 2025 (Page 27 of 40)

Back to List Previous Next

CVE ID	Date	Title
CVE-2025-4867	2025-05-18	Tenda A15 ArpNerworkSet formArpNerworkSet denial of service
CVE-2025-4868	2025-05-18	merikbest ecommerce-spring-reactjs File Upload Endpoint admin path traversal
CVE-2025-4869	2025-05-18	itsourcecode Restaurant Management System member_update.php sql injection
CVE-2025-4870	2025-05-18	itsourcecode Restaurant Management System menu_save.php sql injection
CVE-2025-4871	2025-05-18	PCMan FTP Server REST Command buffer overflow
CVE-2025-4872	2025-05-18	FreeFloat FTP Server CCC Command buffer overflow
CVE-2025-4873	2025-05-18	PHPGurukul News Portal Login index.php sql injection
CVE-2025-4874	2025-05-18	PHPGurukul News Portal Project contactus.php sql injection
CVE-2025-4875	2025-05-18	Campcodes Online Shopping Portal forgot-password.php sql injection
CVE-2025-4880	2025-05-18	PHPGurukul News Portal aboutus.php sql injection
CVE-2025-4881	2025-05-18	itsourcecode Restaurant Management System user_save.php sql injection
CVE-2025-4882	2025-05-18	itsourcecode Restaurant Management System team_update.php sql injection
CVE-2025-4883	2025-05-18	D-Link DI-8100 Connection Limit Page ctxz.asp ctxz_asp stack-based overflow
CVE-2025-4884	2025-05-18	itsourcecode Restaurant Management System assign_save.php sql injection
CVE-2025-4885	2025-05-18	itsourcecode Sales and Inventory System product_add.php sql injection
CVE-2025-4886	2025-05-18	itsourcecode Sales and Inventory System product_update.php sql injection
CVE-2025-4887	2025-05-18	SourceCodester Online Student Clearance System cross-site request forgery
CVE-2025-4888	2025-05-18	code-projects Pharmacy Management System Add Order Details take_order buffer overflow
CVE-2025-4889	2025-05-18	code-projects Tourism Management System User Registration AddUser buffer overflow
CVE-2025-4890	2025-05-18	code-projects Tourism Management System Login User LoginUser stack-based overflow
CVE-2025-4891	2025-05-18	code-projects Police Station Management System Display Record source.cpp display buffer overflow
CVE-2025-4892	2025-05-18	code-projects Police Station Management System Delete Record source.cpp remove stack-based overflow
CVE-2025-4893	2025-05-18	jammy928 CoinExchange_CryptoExchange_Java File Upload Endpoint UploadFileUtil.java uploadLocalImage path traversal
CVE-2025-4894	2025-05-18	calmkart Django-sso-server crypto.py gen_rsa_keys inadequate encryption
CVE-2025-4895	2025-05-18	SourceCodester Doctors Appointment System delete-session.php sql injection
CVE-2025-4896	2025-05-18	Tenda AC10 UserCongratulationsExec buffer overflow
CVE-2025-4897	2025-05-18	Tenda A15 HTTP POST Request multimodalAdd buffer overflow
CVE-2025-4898	2025-05-18	SourceCodester Student Result Management System Logo File update_system.php unlink path traversal
CVE-2025-4899	2025-05-18	Campcodes Sales and Inventory System transaction_update.php sql injection
CVE-2025-4900	2025-05-18	Campcodes Sales and Inventory System payment.php sql injection
CVE-2025-4901	2025-05-18	D-Link DI-7003GV2 HTTP Endpoint state_view.data sub_41E304 information disclosure
CVE-2024-51106	2025-05-19	A cross-site scripting (XSS) vulnerability in the component mcgs/admin/aboutus.php of...
CVE-2024-55063	2025-05-19	Multiple Code Injection vulnerabilities in EasyVirt DC NetScope <= 8.7.0...
CVE-2025-28371	2025-05-19	EnGenius ENH500 AP 2T2R V3.0 FW3.7.22 is vulnerable to Incorrect...
CVE-2025-30072	2025-05-19	Tiiwee X1 Alarm System TWX1HAKV2 allows Authentication Bypass by Capture-replay,...
CVE-2025-43714	2025-05-19	The ChatGPT system through 2025-03-30 performs inline rendering of SVG...
CVE-2025-44108	2025-05-19	A stored Cross-Site Scripting (XSS) vulnerability exists in the administration...
CVE-2025-4902	2025-05-19	D-Link DI-7003GV2 versionupdate.data sub_48F4F0 information disclosure
CVE-2025-4903	2025-05-19	D-Link DI-7003GV2 webgl.asp sub_41F4F0 unverified password change
CVE-2025-4904	2025-05-19	D-Link DI-7003GV2 webgl.data sub_41F0FC information disclosure
CVE-2025-23167	2025-05-19	A flaw in Node.js 20's HTTP parser allows improper termination...
CVE-2025-23164	2025-05-19	A misconfigured access token mechanism in the Unifi Protect Application...
CVE-2025-23166	2025-05-19	The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on...
CVE-2025-23123	2025-05-19	A malicious actor with access to the management network could...
CVE-2025-23165	2025-05-19	In Node.js, the `ReadFileUtf8` internal binding leaks memory due to...
CVE-2025-4905	2025-05-19	iop-apl-uw basestation3 QC.py load_qc_pickl deserialization
CVE-2025-4906	2025-05-19	PHPGurukul Notice Board System login.php sql injection
CVE-2025-4907	2025-05-19	PHPGurukul Daily Expense Tracker System forgot-password.php sql injection
CVE-2025-4908	2025-05-19	PHPGurukul Daily Expense Tracker System expense-datewise-reports-detailed.php sql injection
CVE-2025-4909	2025-05-19	SourceCodester Client Database Management System exposure of information through directory listing
CVE-2025-4910	2025-05-19	PHPGurukul Zoo Management System edit-animal-details.php sql injection
CVE-2025-2892	2025-05-19	All in One SEO Pack <= 4.8.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Post Meta Description and Canonical URL
CVE-2025-4911	2025-05-19	PHPGurukul Zoo Management System view-foreigner-ticket.php sql injection
CVE-2025-4912	2025-05-19	SourceCodester Student Result Management System Image File update_student.php path traversal
CVE-2025-4913	2025-05-19	PHPGurukul Auto Taxi Stand Management System index.php sql injection
CVE-2025-4477	2025-05-19	TeamT5 ThreatSonar Anti-Ransomware - Privilege Escalation
CVE-2025-1625	2025-05-19	Qi Blocks < 1.4 - Contributor+ Stored XSS via Counter Block
CVE-2025-1626	2025-05-19	Qi Blocks < 1.4 - Contributor+ Stored XSS vi Countdown Block
CVE-2025-1627	2025-05-19	Qi Blocks < 1.4 - Contributor+ Stored XSS via ToC Block
CVE-2025-2524	2025-05-19	Ninja Forms < 3.10.1 - Admin+ Stored XSS
CVE-2025-2560	2025-05-19	Ninja Forms < 3.10.1 - Admin+ Stored XSS
CVE-2025-2561	2025-05-19	Ninja Forms < 3.10.1 - Admin+ Stored XSS
CVE-2025-4914	2025-05-19	PHPGurukul Auto Taxi Stand Management System forgot-password.php sql injection
CVE-2025-4915	2025-05-19	PHPGurukul Auto Taxi Stand Management System auto-taxi-entry-detail.php sql injection
CVE-2025-4916	2025-05-19	PHPGurukul Auto Taxi Stand Management System admin-profile.php sql injection
CVE-2025-46801	2025-05-19	Pgpool-II provided by PgPool Global Development Group contains an authentication...
CVE-2025-37891	2025-05-19	ALSA: ump: Fix buffer overflow at UMP SysEx message conversion
CVE-2025-4917	2025-05-19	PHPGurukul Auto Taxi Stand Management System new-autoortaxi-entry-form.php sql injection
CVE-2025-47749	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with free of...
CVE-2025-47750	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds write...
CVE-2025-47751	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds write...
CVE-2025-47752	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds write...
CVE-2025-47753	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds read...
CVE-2025-47754	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds read...
CVE-2025-47755	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds read...
CVE-2025-47756	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds read...
CVE-2025-47757	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds read...
CVE-2025-47758	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with stack-based buffer...
CVE-2025-47759	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with stack-based buffer...
CVE-2025-47760	2025-05-19	V-SFT v6.2.5.0 and earlier contains an issue with stack-based buffer...
CVE-2025-4923	2025-05-19	SourceCodester Client Database Management System user_delivery_update.php unrestricted upload
CVE-2025-41429	2025-05-19	a-blog cms multiple versions neutralize logs improperly. If this vulnerability...
CVE-2025-36560	2025-05-19	Server-side request forgery vulnerability exists in a-blog cms multiple versions....
CVE-2025-32999	2025-05-19	Cross-site scripting vulnerability exists in a-blog cms versions prior to...
CVE-2025-27566	2025-05-19	Path traversal vulnerability exists in a-blog cms versions prior to...
CVE-2025-4924	2025-05-19	SourceCodester Client Database Management System user_void_transaction.php sql injection
CVE-2025-4925	2025-05-19	PHPGurukul Daily Expense Tracker System expense-monthwise-reports-detailed.php sql injection
CVE-2025-4926	2025-05-19	PHPGurukul Car Rental Project post-avehical.php unrestricted upload
CVE-2025-4927	2025-05-19	PHPGurukul Online Marriage Registration System between-dates-application-report.php sql injection
CVE-2025-4928	2025-05-19	projectworlds Online Lawyer Management System save_lawyer_edit_profile.php sql injection
CVE-2025-4929	2025-05-19	Campcodes Online Shopping Portal my-account.php sql injection
CVE-2025-2099	2025-05-19	Regular Expression Denial of Service (ReDoS) in huggingface/transformers
CVE-2025-4930	2025-05-19	Campcodes Online Shopping Portal my-cart.php sql injection
CVE-2025-4931	2025-05-19	projectworlds Online Lawyer Management System user_registation.php sql injection
CVE-2025-4932	2025-05-19	projectworlds Online Lawyer Management System lawyer_registation.php sql injection
CVE-2025-4933	2025-05-19	ponaravindb Hospital-Management-System doctor-panel.php sql injection
CVE-2025-4934	2025-05-19	PHPGurukul User Registration & Login and User Management System edit-profile.php sql injection
CVE-2025-4935	2025-05-19	SourceCodester Stock Management System changePassword.php sql injection
CVE-2025-4936	2025-05-19	projectworlds Online Food Ordering System admin-page.php sql injection
CVE-2025-48232	2025-05-19	WordPress Xpro Addons For Beaver Builder – Lite <= 1.5.5 - Cross Site Scripting (XSS) Vulnerability