| 2025-04-20 | CVE-2025-3830 | Unrestricted Upload of File with Dangerous Type vulnerability in Kuangstudy Kuangsimplebbs 1.0
A vulnerability was found in kuangstudy KuangSimpleBBS 1.0. | 9.8 |
| 2025-04-20 | CVE-2025-3828 | Injection vulnerability in PHPgurukul MEN Salon Management System 1.0
A vulnerability was found in PHPGurukul Men Salon Management System 1.0 and classified as critical. | 9.8 |
| 2025-04-20 | CVE-2025-3829 | Injection vulnerability in PHPgurukul MEN Salon Management System 1.0
A vulnerability was found in PHPGurukul Men Salon Management System 1.0. | 9.8 |
| 2025-04-20 | CVE-2025-3827 | Injection vulnerability in PHPgurukul MEN Salon Management System 1.0
A vulnerability has been found in PHPGurukul Men Salon Management System 1.0 and classified as critical. | 9.8 |
| 2025-04-20 | CVE-2025-43928 | Path Traversal vulnerability in Infodraw Pmrs-102 Firmware 7.1.0.0
In Infodraw Media Relay Service (MRS) 7.1.0.0, the MRS web server (on port 12654) allows reading arbitrary files via ../ directory traversal in the username field. | 9.8 |
| 2025-04-19 | CVE-2025-3819 | Injection vulnerability in PHPgurukul MEN Salon Management System 1.0
A vulnerability has been found in PHPGurukul Men Salon Management System 1.0 and classified as critical. | 9.8 |
| 2025-04-19 | CVE-2021-4455 | The Wordpress Plugin Smart Product Review plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.0.4. network low complexity CWE-434 critical | 9.8 |
| 2025-04-19 | CVE-2025-1093 | The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generate_image function in all versions up to, and including, 1.3.7. network low complexity CWE-434 critical | 9.8 |
| 2025-04-19 | CVE-2025-3278 | The UrbanGo Membership plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.0.4. network low complexity CWE-269 critical | 9.8 |
| 2025-04-18 | CVE-2025-3783 | Unrestricted Upload of File with Dangerous Type vulnerability in Seniorwalter Web-Based Pharmacy Product Management System 1.0
A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product Management System 1.0. | 9.8 |