Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-03-03 CVE-2024-45782 A flaw was found in the HFS filesystem.
local
low complexity
gnu redhat
7.8
2025-03-03 CVE-2025-0678 A flaw was found in grub2.
local
low complexity
gnu redhat
7.8
2025-03-03 CVE-2025-25301 Server-Side Request Forgery (SSRF) vulnerability in Danielgatis Rembg
Rembg is a tool to remove images background.
network
low complexity
danielgatis CWE-918
7.5
2025-03-03 CVE-2024-41770 Insufficiently Protected Credentials vulnerability in IBM Engineering Requirements Management Doors Next 7.0.2/7.0.3/7.1
IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information.
network
low complexity
ibm CWE-522
7.5
2025-03-03 CVE-2024-41771 Insufficiently Protected Credentials vulnerability in IBM Engineering Requirements Management Doors Next 7.0.2/7.0.3/7.1
IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information.
network
low complexity
ibm CWE-522
7.5
2025-03-03 CVE-2025-25185 Link Following vulnerability in Binary-Husky GPT Academic
GPT Academic provides interactive interfaces for large language models.
network
low complexity
binary-husky CWE-59
7.5
2025-03-03 CVE-2025-27419 Allocation of Resources Without Limits or Throttling vulnerability in Wegia
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users.
network
low complexity
wegia CWE-770
7.5
2025-03-03 CVE-2025-1801 A flaw was found in the Ansible aap-gateway.
network
low complexity
CWE-362
8.1
2025-03-03 CVE-2025-26967 Deserialization of Untrusted Data vulnerability in Stiofan Events Calendar for GeoDirectory allows Object Injection.
network
low complexity
CWE-502
8.8
2025-03-03 CVE-2025-26988 SQL Injection vulnerability in Cozyvision SMS Alert Order Notifications
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vision SMS Alert Order Notifications – WooCommerce allows SQL Injection.
network
low complexity
cozyvision CWE-89
7.5