Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-04-02 CVE-2025-3123 A vulnerability, which was classified as critical, has been found in WonderCMS 3.5.0.
network
low complexity
CWE-434
4.7
2025-04-02 CVE-2025-3119 A vulnerability was found in SourceCodester Online Tutor Portal 1.0.
network
low complexity
CWE-74
6.3
2025-04-02 CVE-2025-3120 A vulnerability was found in SourceCodester Apartment Visitors Management System 1.0.
network
low complexity
CWE-74
6.3
2025-04-02 CVE-2025-3121 A vulnerability classified as problematic has been found in PyTorch 2.6.0.
local
low complexity
CWE-119
3.3
2025-04-02 CVE-2025-3122 A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36.
network
high complexity
CWE-404
3.1
2025-04-02 CVE-2025-3118 A vulnerability was found in SourceCodester Online Tutor Portal 1.0.
network
low complexity
CWE-74
6.3
2025-04-02 CVE-2025-20120 A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system.
network
low complexity
CWE-79
6.1
2025-04-02 CVE-2025-20139 A vulnerability in chat messaging features of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper validation of user-supplied input to chat entry points.
network
low complexity
CWE-185
7.5
2025-04-02 CVE-2025-20203 A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against users of the interface of an affected system. The vulnerability exists because the web-based management interface does not properly validate user-supplied input.
network
low complexity
CWE-79
4.8
2025-04-02 CVE-2025-20212 A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series devices could allow an authenticated, remote attacker to cause a denial of service (DoS) condition in the Cisco AnyConnect service on an affected device.
network
low complexity
CWE-457
7.7