Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2025-03-14 CVE-2024-11285 The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 7.1.
network
low complexity
CWE-639
critical
9.8
2025-03-14 CVE-2024-11286 The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.1.
network
low complexity
CWE-288
critical
9.8
2025-03-13 CVE-2025-27138 Improper Authentication vulnerability in Dataease
DataEase is an open source business intelligence and data visualization tool.
network
low complexity
dataease CWE-287
critical
9.8
2025-03-12 CVE-2024-13446 The Workreap plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.2.5.
network
low complexity
CWE-288
critical
9.8
2025-03-12 CVE-2025-2218 Incorrect Privilege Assignment vulnerability in Lovecards
A vulnerability has been found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical.
network
low complexity
lovecards CWE-266
critical
9.8
2025-03-12 CVE-2025-2219 Unrestricted Upload of File with Dangerous Type vulnerability in Lovecards
A vulnerability was found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical.
network
low complexity
lovecards CWE-434
critical
9.8
2025-03-12 CVE-2025-2216 Unrestricted Upload of File with Dangerous Type vulnerability in Zzskzy Warehouse Refinement Management System 1.3
A vulnerability, which was classified as critical, has been found in zzskzy Warehouse Refinement Management System 1.3.
network
low complexity
zzskzy CWE-434
critical
9.8
2025-03-12 CVE-2025-2217 Injection vulnerability in Zzskzy Warehouse Refinement Management System 1.3
A vulnerability, which was classified as critical, was found in zzskzy Warehouse Refinement Management System 1.3.
network
low complexity
zzskzy CWE-74
critical
9.8
2025-03-11 CVE-2024-56336 A vulnerability has been identified in SINAMICS S200 (All versions with serial number beginning with SZVS8, SZVS9, SZVS0 or SZVSN and the FS number is 02).
network
low complexity
CWE-287
critical
9.8
2025-03-11 CVE-2025-27494 A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9), SiPass integrated ACC-AP (All versions < V6.4.9).
network
low complexity
CWE-20
critical
9.1