Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-01-28 CVE-2025-0785 A vulnerability was found in ESAFENET CDG V5 and classified as problematic.
network
low complexity
CWE-94
3.5
3.5
2025-01-28 CVE-2025-0784 A vulnerability has been found in Intelbras InControl up to 2.21.58 and classified as problematic.
network
high complexity
CWE-319
3.7
3.7
2025-01-28 CVE-2025-0783 A vulnerability, which was classified as problematic, was found in pankajindevops scale up to 20241113.
network
low complexity
CWE-266
6.3
6.3
2025-01-28 CVE-2025-23055 Unspecified vulnerability in Arubanetworks Fabric Composer
A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack.
network
low complexity
arubanetworks
5.4
5.4
2025-01-28 CVE-2025-23056 Unspecified vulnerability in Arubanetworks Fabric Composer
A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack.
network
low complexity
arubanetworks
5.4
5.4
2025-01-28 CVE-2025-23057 Unspecified vulnerability in Arubanetworks Fabric Composer
A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack.
network
low complexity
arubanetworks
5.4
5.4
2025-01-28 CVE-2024-11956 A vulnerability, which was classified as critical, has been found in Pimcore customer-data-framework up to 4.2.0.
network
low complexity
CWE-74
4.7
4.7
2025-01-28 CVE-2025-0752 A flaw was found in OpenShift Service Mesh 2.6.3 and 2.5.6.
network
low complexity
CWE-444
6.3
6.3
2025-01-28 CVE-2025-0754 The vulnerability was found in OpenShift Service Mesh 2.6.3 and 2.5.6.
network
low complexity
CWE-117
4.3
4.3
2025-01-28 CVE-2024-13527 Cross-site Scripting vulnerability in Philantro
The Philantro – Donations and Donor Management plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes like 'donate' in all versions up to, and including, 5.3 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
philantro CWE-79
5.4
5.4