Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-05-20 CVE-2024-45641 IBM Security ReaQta EDR 3.12 could allow an attacker to perform unauthorized actions due to improper SSL certificate validation.
network
low complexity
CWE-295
6.5
2025-05-20 CVE-2023-33861 IBM Security ReaQta EDR 3.12 could allow an attacker to spoof a trusted entity by interfering with the communication path between the host and client.
network
low complexity
CWE-295
6.5
2025-05-20 CVE-2025-4980 A vulnerability has been found in Netgear DGND3700 1.1.00.15_1.00.15NA and classified as problematic.
network
low complexity
CWE-284
5.3
2025-05-20 CVE-2024-5878 Multiple plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled SimpleLightbox JavaScript library (version 2.1.5) in various versions due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
2025-05-19 CVE-2025-4938 A vulnerability was found in PHPGurukul Employee Record Management System 1.3.
network
low complexity
CWE-74
6.3
2025-05-19 CVE-2025-2892 The All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post Meta Description and Canonical URL parameters in all versions up to, and including, 4.8.1.1 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
2025-05-19 CVE-2025-4903 A vulnerability, which was classified as critical, was found in D-Link DI-7003GV2 24.04.18D1 R(68125).
network
low complexity
CWE-620
5.3
2025-05-19 CVE-2025-4904 A vulnerability has been found in D-Link DI-7003GV2 24.04.18D1 R(68125) and classified as problematic.
network
low complexity
CWE-284
5.3
2025-05-19 CVE-2025-4901 Unspecified vulnerability in Dlink Di-7003G Firmware 24.04.18D1R(68125)
A vulnerability classified as problematic was found in D-Link DI-7003GV2 24.04.18D1 R(68125).
low complexity
dlink
6.5
2025-05-18 CVE-2025-4898 Path Traversal vulnerability in Munyweki Student Result Management System 1.0
A vulnerability was found in SourceCodester Student Result Management System 1.0.
network
low complexity
munyweki CWE-22
5.4