Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-03-25 CVE-2025-29789 Relative Path Traversal vulnerability in Open-Emr Openemr
OpenEMR is a free and open source electronic health records and medical practice management application.
network
low complexity
open-emr CWE-23
7.5
7.5
2025-03-25 CVE-2024-13690 The WP Church Donation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several donation form submission parameters in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
7.2
7.2
2025-03-25 CVE-2025-2319 The EZ SQL Reports Shortcode Widget and DB Backup plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 4.11.13 to 5.25.08.
network
low complexity
CWE-352
8.8
8.8
2025-03-24 CVE-2025-0255 OS Command Injection vulnerability in Hcltechsw HCL Devops Deploy and HCL Launch
HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially crafted input containing special elements.
network
low complexity
hcltechsw CWE-78
7.2
7.2
2025-03-24 CVE-2025-2705 A vulnerability classified as critical has been found in Digiwin ERP 5.1.
network
low complexity
CWE-434
7.3
7.3
2025-03-23 CVE-2025-2672 SQL Injection vulnerability in Fabian Payroll Management System 1.0
A vulnerability was found in code-projects Payroll Management System 1.0.
network
low complexity
fabian CWE-89
7.5
7.5
2025-03-23 CVE-2025-2664 Injection vulnerability in Codezips Hospital Management System 1.0
A vulnerability was found in CodeZips Hospital Management System 1.0 and classified as critical.
network
low complexity
codezips CWE-74
7.2
7.2
2025-03-23 CVE-2025-2661 A vulnerability was found in Project Worlds Online Time Table Generator 1.0 and classified as critical.
network
low complexity
CWE-74
7.3
7.3
2025-03-23 CVE-2025-2659 A vulnerability, which was classified as critical, was found in Project Worlds Online Time Table Generator 1.0.
network
low complexity
CWE-74
7.3
7.3
2025-03-23 CVE-2025-2660 A vulnerability has been found in Project Worlds Online Time Table Generator 1.0 and classified as critical.
network
low complexity
CWE-74
7.3
7.3