VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> High
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2025-03-03
CVE-2024-53034
Untrusted Pointer Dereference vulnerability in Qualcomm products
Memory corruption occurs during an Escape call if an invalid Kernel Mode CPU event and sync object handle are passed with the DriverKnownEscape flag reset.
local
low complexity
qualcomm
CWE-822
7.8
7.8
2025-03-03
CVE-2025-21424
Use After Free vulnerability in Qualcomm products
Memory corruption while calling the NPU driver APIs concurrently.
local
low complexity
qualcomm
CWE-416
7.8
7.8
2025-03-03
CVE-2025-1858
A vulnerability classified as critical was found in Codezips Online Shopping Website 1.0.
network
low complexity
CWE-74
7.3
7.3
2025-03-03
CVE-2025-24654
Missing Authorization vulnerability in Squirrly SEO Plugin BY Squirrly SEO
Missing Authorization vulnerability in SEO Squirrly SEO Plugin by Squirrly SEO.This issue affects SEO Plugin by Squirrly SEO: from n/a through 12.4.05.
network
low complexity
squirrly
CWE-862
8.8
8.8
2025-03-03
CVE-2025-1856
A vulnerability was found in Codezips Gym Management System 1.0.
network
low complexity
CWE-74
7.3
7.3
2025-03-03
CVE-2025-1857
A vulnerability classified as critical has been found in PHPGurukul Nipah Virus Testing Management System 1.0.
network
low complexity
CWE-74
7.3
7.3
2025-03-02
CVE-2025-1829
OS Command Injection vulnerability in Totolink X18 Firmware 9.1.0Cu.2024B20220329
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329.
network
low complexity
totolink
CWE-78
8.8
8.8
2025-03-01
CVE-2024-13833
The Album Gallery – WordPress Gallery plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.6.3 via deserialization of untrusted input from gallery meta.
network
low complexity
CWE-502
7.2
7.2
2025-03-01
CVE-2024-13611
The Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.9 via the 'bp-better-messages' directory.
network
low complexity
CWE-200
7.5
7.5
2025-03-01
CVE-2024-13910
The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'database_backup_ajax_delete' function in all versions up to, and including, 2.35.
network
low complexity
CWE-22
7.2
7.2
«
Previous
1
2
...
71
72
73
(current)
74
75
...
6803
6804
»
Next