VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2025-04-08
CVE-2025-2519
The Sreamit theme for WordPress is vulnerable to arbitrary file downloads in all versions up to, and including, 4.0.1.
network
low complexity
CWE-22
6.5
6.5
2025-04-08
CVE-2025-2525
The Streamit theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'st_Authentication_Controller::edit_profile' function in all versions up to, and including, 4.0.1.
network
low complexity
CWE-434
8.8
8.8
2025-04-08
CVE-2025-2526
The Streamit theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.0.2.
network
low complexity
CWE-639
8.8
8.8
2025-04-08
CVE-2025-3361
The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server.
network
low complexity
CWE-78
critical
9.8
9.8
2025-04-08
CVE-2025-3362
The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server.
network
low complexity
CWE-78
critical
9.8
9.8
2025-04-08
CVE-2025-3363
The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server.
network
low complexity
CWE-78
critical
9.8
9.8
2025-04-08
CVE-2025-3397
Cross-site Scripting vulnerability in Yzmcms 7.1
A vulnerability classified as problematic has been found in YzmCMS 7.1.
network
low complexity
yzmcms
CWE-79
6.1
6.1
2025-04-08
CVE-2025-3398
A vulnerability classified as critical was found in lenve VBlog up to 1.0.0.
network
low complexity
CWE-266
6.3
6.3
2025-04-08
CVE-2025-3399
SQL Injection vulnerability in Esafenet CDG 5.6.3.154.20520250114
A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5.6.3.154.205_20250114.
network
low complexity
esafenet
CWE-89
critical
9.8
9.8
2025-04-08
CVE-2025-3400
SQL Injection vulnerability in Esafenet CDG 5.6.3.154.20520250114
A vulnerability, which was classified as critical, was found in ESAFENET CDG 5.6.3.154.205_20250114.
network
low complexity
esafenet
CWE-89
critical
9.8
9.8
«
Previous
1
2
...
42
43
44
(current)
45
46
...
16864
16865
»
Next