| 2025-04-12 | CVE-2025-32726 | | Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally. | 6.8 |
| 2025-04-08 | CVE-2025-30293 | Adobe | Unspecified vulnerability in Adobe Coldfusion 2021/2023/2025 ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. | 6.8 |
| 2025-04-08 | CVE-2025-30294 | Adobe | Unspecified vulnerability in Adobe Coldfusion 2021/2023/2025 ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. | 6.8 |
| 2025-04-08 | CVE-2025-25002 | | Insertion of sensitive information into log file in Azure Local Cluster allows an authorized attacker to disclose information over an adjacent network. | 6.8 |
| 2025-04-08 | CVE-2025-26654 | | SAP Commerce Cloud (Public Cloud) does not allow to disable unencrypted HTTP (port 80) entirely, but instead allows a redirect from port 80 to 443 (HTTPS). | 6.8 |
| 2025-04-08 | CVE-2025-26681 | | Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. | 6.7 |
| 2025-04-08 | CVE-2025-29999 | | A vulnerability has been identified in Siemens License Server (SLS) (All versions < V4.3). | 6.7 |
| 2025-04-08 | CVE-2025-30000 | | A vulnerability has been identified in Siemens License Server (SLS) (All versions < V4.3). | 6.7 |
| 2025-04-08 | CVE-2025-30013 | | SAP ERP BW Business Content is vulnerable to OS Command Injection through certain function modules. | 6.7 |
| 2025-04-08 | CVE-2025-3364 | | The SSH service of PowerStation from HGiga has a Chroot Escape vulnerability, allowing attackers with root privileges to bypass chroot restrictions and access the entire file system. | 6.7 |
| 2025-04-07 | CVE-2024-49848 | | Memory corruption while processing multiple IOCTL calls from HLOS to DSP. | 6.7 |
| 2025-04-08 | CVE-2025-31332 | | Due to insecure file permissions in SAP BusinessObjects Business Intelligence Platform, an attacker who has local access to the system could modify files potentially disrupting operations or cause service downtime hence leading to a high impact on integrity and availability. | 6.6 |
| 2025-04-07 | CVE-2024-45540 | | Memory corruption while invoking IOCTL map buffer request from userspace. | 6.6 |
| 2025-04-07 | CVE-2024-45543 | | Memory corruption while accessing MSM channel map and mixer functions. | 6.6 |
| 2025-04-07 | CVE-2024-45544 | | Memory corruption while processing IOCTL calls to add route entry in the HW. | 6.6 |
| 2025-04-13 | CVE-2025-3536 | | A vulnerability was found in Tutorials-Website Employee Management System 1.0 and classified as critical. | 6.5 |
| 2025-04-11 | CVE-2025-2128 | | The Cost Calculator Builder plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order_ids’ parameter in all versions up to, and including, 3.2.67 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
| 2025-04-10 | CVE-2023-43037 | | IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform unauthorized actions due to improper input validation. | 6.5 |
| 2025-04-10 | CVE-2025-2719 | | The Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_dismiss function in versions 1.2.8 to 1.4.0. | 6.5 |
| 2025-04-09 | CVE-2025-21595 | | A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause an FPC to crash, leading to Denial of Service (DoS). On all Junos OS and Junos OS Evolved platforms, in an EVPN-VXLAN scenario, when specific ARP packets are received on an IPv4 network, or specific NDP packets are received on an IPv6 network, kernel heap memory leaks, which eventually leads to an FPC crash and restart. This issue does not affect MX Series platforms. Heap size growth on FPC can be seen using below command. user@host> show chassis fpc Temp CPU Utilization (%) CPU Utilization (%) Memory Utilization (%) Slot State (C) Total Interrupt 1min 5min 15min DRAM (MB) Heap Buffer 0 Online 45 3 0 2 2 2 32768 19 0 <<<<<<< Heap increase in all fPCs This issue affects Junos OS: * All versions before 21.2R3-S7, * 21.4 versions before 21.4R3-S4, * 22.2 versions before 22.2R3-S1, * 22.3 versions before 22.3R3-S1, * 22.4 versions before 22.4R2-S2, 22.4R3. and Junos OS Evolved: * All versions before 21.2R3-S7-EVO, * 21.4-EVO versions before 21.4R3-S4-EVO, * 22.2-EVO versions before 22.2R3-S1-EVO, * 22.3-EVO versions before 22.3R3-S1-EVO, * 22.4-EVO versions before 22.4R3-EVO. | 6.5 |
| 2025-04-09 | CVE-2025-30646 | | A Signed to Unsigned Conversion Error vulnerability in the Layer 2 Control Protocol daemon (l2cpd) of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated adjacent attacker sending a specifically malformed LLDP TLV to cause the l2cpd process to crash and restart, causing a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. When an LLDP telemetry subscription is active, receipt of a specifically malformed LLDP TLV causes the l2cpd process to crash and restart. This issue affects: Junos OS: * All versions before 21.2R3-S9, * from 21.4 before 21.4R3-S10, * from 22.2 before 22.2R3-S6, * from 22.4 before 22.4R3-S6, * from 23.2 before 23.2R2-S3, * from 23.4 before 23.4R2-S4, * from 24.2 before 24.2R2; Junos OS Evolved: * All versions before 21.4R3-S10-EVO, * from 22.2-EVO before 22.2R3-S6-EVO, * from 22.4-EVO before 22.4R3-S6-EVO, * from 23.2-EVO before 23.2R2-S3-EVO, * from 23.4-EVO before 23.4R2-S4-EVO, * from 24.2-EVO before 24.2R2-EVO. | 6.5 |
| 2025-04-09 | CVE-2025-30647 | | A Missing Release of Memory after Effective Lifetime vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on MX Series allows an unauthenticated adjacent attacker to cause a Denial-of-Service (DoS). In a subscriber management scenario, login/logout activity triggers a memory leak, and the leaked memory gradually increments and eventually results in a crash. user@host> show chassis fpc Temp CPU Utilization (%) CPU Utilization (%) Memory Utilization (%) Slot State (C) Total Interrupt 1min 5min 15min DRAM (MB) Heap Buffer 2 Online 36 10 0 9 8 9 32768 26 0 This issue affects Junos OS on MX Series: * All versions before 21.2R3-S9 * from 21.4 before 21.4R3-S10 * from 22.2 before 22.2R3-S6 * from 22.4 before 22.4R3-S5 * from 23.2 before 23.2R2-S3 * from 23.4 before 23.4R2-S3 * from 24.2 before 24.2R2. | 6.5 |
| 2025-04-09 | CVE-2025-30653 | | An Expired Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause Denial of Service (DoS).On all Junos OS and Junos OS Evolved platforms, when an MPLS Label-Switched Path (LSP) is configured with node-link-protection and transport-class, and an LSP flaps, rpd crashes and restarts. | 6.5 |
| 2025-04-08 | CVE-2025-21203 | | Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. | 6.5 |
| 2025-04-08 | CVE-2025-26635 | | Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network. | 6.5 |
| 2025-04-08 | CVE-2025-26651 | | Exposed dangerous method or function in Windows Local Session Manager (LSM) allows an authorized attacker to deny service over a network. | 6.5 |
| 2025-04-08 | CVE-2025-26664 | | Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. | 6.5 |
| 2025-04-08 | CVE-2025-26667 | | Exposure of sensitive information to an unauthorized actor in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. | 6.5 |
| 2025-04-08 | CVE-2025-26676 | | Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. | 6.5 |
| 2025-04-08 | CVE-2025-27474 | | Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. | 6.5 |
| 2025-04-08 | CVE-2024-41795 | | A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). | 6.5 |
| 2025-04-08 | CVE-2024-41796 | | A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). | 6.5 |
| 2025-04-08 | CVE-2025-3436 | | The coreActivity: Activity Logging for WordPress plugin for WordPress is vulnerable to SQL Injection via the 'order' and 'orderby' parameters in all versions up to, and including, 2.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
| 2025-04-08 | CVE-2025-2519 | | The Sreamit theme for WordPress is vulnerable to arbitrary file downloads in all versions up to, and including, 4.0.1. | 6.5 |
| 2025-04-07 | CVE-2024-45556 | | Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR. | 6.5 |
| 2025-04-07 | CVE-2025-31173 | Huawei | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 6.5 |
| 2025-04-12 | CVE-2025-1455 | | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Woo Grid widget in all versions up to, and including, 1.7.1012 due to insufficient input sanitization and output escaping. | 6.4 |
| 2025-04-12 | CVE-2025-1456 | | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `widgetGrid`, `widgetCountDown`, and `widgetInstagramFeed` methods in all versions up to, and including, 1.7.1012 due to insufficient input sanitization and output escaping. | 6.4 |
| 2025-04-12 | CVE-2025-3276 | | The SKT Blocks – Gutenberg based Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Post Carousel block in all versions up to, and including, 1.9 due to insufficient input sanitization and output escaping. | 6.4 |
| 2025-04-10 | CVE-2024-10894 | | The Payment Forms for Paystack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes like 'datepicker', 'textarea', and 'text' in all versions up to, and including, 4.0.2 due to insufficient input sanitization and output escaping on user supplied attributes. | 6.4 |
| 2025-04-09 | CVE-2025-3100 | | The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.6.22 due to insufficient input sanitization and output escaping in tasks discussion. | 6.4 |
| 2025-04-08 | CVE-2025-3432 | | The AAWP Obfuscator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'data-aawp-web' parameter in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. | 6.4 |
| 2025-04-13 | CVE-2025-3534 | | A vulnerability, which was classified as critical, was found in PowerCreator CMS 1.0. | 6.3 |
| 2025-04-11 | CVE-2025-3422 | Wpeverest | Code Injection vulnerability in Wpeverest Everest Forms The The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.1.1. | 6.3 |
| 2025-04-08 | CVE-2025-3409 | | A vulnerability classified as critical has been found in Nothings stb up to f056911. | 6.3 |
| 2025-04-08 | CVE-2025-3407 | | A vulnerability was found in Nothings stb up to f056911. | 6.3 |
| 2025-04-08 | CVE-2025-3398 | | A vulnerability classified as critical was found in lenve VBlog up to 1.0.0. | 6.3 |
| 2025-04-07 | CVE-2025-3369 | | A vulnerability was found in xxyopen Novel-Plus 5.1.0. | 6.3 |
| 2025-04-07 | CVE-2025-3348 | | A vulnerability classified as critical was found in code-projects Patient Record Management System 1.0. | 6.3 |
| 2025-04-07 | CVE-2025-3347 | | A vulnerability classified as critical has been found in code-projects Patient Record Management System 1.0. | 6.3 |
| 2025-04-08 | CVE-2025-29819 | | External control of file name or path in Azure Portal Windows Admin Center allows an unauthorized attacker to disclose information locally. | 6.2 |
| 2025-04-07 | CVE-2025-2251 | | A security flaw exists in WildFly and JBoss Enterprise Application Platform (EAP) within the Enterprise JavaBeans (EJB) remote invocation mechanism. | 6.2 |
| 2025-04-07 | CVE-2025-3359 | | A flaw was found in GNUPlot. | 6.2 |
| 2025-04-07 | CVE-2024-45551 | | Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass. | 6.2 |
| 2025-04-12 | CVE-2025-2269 | | The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘image_id’ parameter in all versions up to, and including, 1.8.34 due to insufficient input sanitization and output escaping. | 6.1 |
| 2025-04-11 | CVE-2025-3421 | Wpeverest | Cross-site Scripting vulnerability in Wpeverest Everest Forms The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'form_id' parameter in all versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping. | 6.1 |
| 2025-04-10 | CVE-2025-3489 | Nababur | Unspecified vulnerability in Nababur Simple-User-Management-System 1.0 A vulnerability was found in Nababur Simple-User-Management-System 1.0. | 6.1 |
| 2025-04-08 | CVE-2025-30292 | Adobe | Cross-site Scripting vulnerability in Adobe Coldfusion 2021/2023/2025 ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |
| 2025-04-08 | CVE-2025-3433 | | The Advanced Advertising System plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 1.3.1. | 6.1 |
| 2025-04-08 | CVE-2025-3392 | Hailey888 | Cross-site Scripting vulnerability in Hailey888 OA System A vulnerability was found in hailey888 oa_system up to 2025.01.01 and classified as problematic. | 6.1 |
| 2025-04-08 | CVE-2025-3397 | Yzmcms | Cross-site Scripting vulnerability in Yzmcms 7.1 A vulnerability classified as problematic has been found in YzmCMS 7.1. | 6.1 |
| 2025-04-08 | CVE-2025-3391 | Hailey888 | Cross-site Scripting vulnerability in Hailey888 OA System A vulnerability has been found in hailey888 oa_system up to 2025.01.01 and classified as problematic. | 6.1 |
| 2025-04-08 | CVE-2025-3389 | Hailey888 | Cross-site Scripting vulnerability in Hailey888 OA System A vulnerability, which was classified as problematic, has been found in hailey888 oa_system up to 2025.01.01. | 6.1 |
| 2025-04-08 | CVE-2025-3390 | Hailey888 | Cross-site Scripting vulnerability in Hailey888 OA System A vulnerability, which was classified as problematic, was found in hailey888 oa_system up to 2025.01.01. | 6.1 |
| 2025-04-07 | CVE-2025-3388 | Hailey888 | Cross-site Scripting vulnerability in Hailey888 OA System A vulnerability classified as problematic was found in hailey888 oa_system up to 2025.01.01. | 6.1 |
| 2025-04-07 | CVE-2025-3327 | Iteaj | Cross-site Scripting vulnerability in Iteaj Iboot 1.1.3 A vulnerability was found in iteaj iboot ????? 1.1.3 and classified as problematic. | 6.1 |
| 2025-04-09 | CVE-2025-30652 | | An Improper Handling of Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker executing a CLI command to cause a Denial of Service (DoS). When asregex-optimized is configured and a specific "show route as-path" CLI command is executed, the rpd crashes and restarts. | 5.5 |
| 2025-04-09 | CVE-2025-30654 | | An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the User Interface (UI) of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged, authenticated attacker with access to the CLI to access sensitive information. Through the execution of a specific show mgd command, a user with limited permissions (e.g., a low-privileged login class user) can access sensitive information such as hashed passwords, that can be used to further impact the system. This issue affects Junos OS: * All versions before 21.4R3-S10, * from 22.2 before 22.2R3-S5, * from 22.4 before 22.4R3-S5, * from 23.2 before 23.2R2-S3, * from 23.4 before 23.4R2-S3. Junos OS Evolved: * All versions before 21.4R3-S10-EVO, * from 22.2-EVO before 22.2R3-S6-EVO, * from 22.4-EVO before 22.4R3-S5-EVO, * from 23.2-EVO before 23.2R2-S3-EVO, * from 23.4-EVO before 23.4R2-S3-EVO. | 5.5 |
| 2025-04-09 | CVE-2025-30655 | | An Improper Check for Unusual or Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to cause a Denial-of-Service (DoS). When a specific "show bgp neighbor" CLI command is run, the rpd cpu utilization rises and eventually causes a crash and restart. | 5.5 |
| 2025-04-08 | CVE-2025-30291 | Adobe | Unspecified vulnerability in Adobe Coldfusion 2021/2023/2025 ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass. | 5.5 |
| 2025-04-08 | CVE-2025-30300 | Adobe | NULL Pointer Dereference vulnerability in Adobe Framemaker Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. | 5.5 |
| 2025-04-08 | CVE-2025-30301 | Adobe | NULL Pointer Dereference vulnerability in Adobe Framemaker Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. | 5.5 |
| 2025-04-08 | CVE-2025-30302 | Adobe | Out-of-bounds Read vulnerability in Adobe Framemaker Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-30303 | Adobe | Out-of-bounds Read vulnerability in Adobe Framemaker Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-30305 | Adobe | Out-of-bounds Read vulnerability in Adobe XMP Toolkit Software Development KIT XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-30306 | Adobe | Out-of-bounds Read vulnerability in Adobe XMP Toolkit Software Development KIT XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-30307 | Adobe | Out-of-bounds Read vulnerability in Adobe XMP Toolkit Software Development KIT XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-30308 | Adobe | Out-of-bounds Read vulnerability in Adobe XMP Toolkit Software Development KIT XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-30309 | Adobe | Out-of-bounds Read vulnerability in Adobe XMP Toolkit Software Development KIT XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-27736 | | Exposure of sensitive information to an unauthorized actor in Windows Power Dependency Coordinator allows an authorized attacker to disclose information locally. | 5.5 |
| 2025-04-08 | CVE-2025-29808 | | Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally. | 5.5 |
| 2025-04-08 | CVE-2025-29821 | | Improper input validation in Dynamics Business Central allows an authorized attacker to disclose information locally. | 5.5 |
| 2025-04-08 | CVE-2025-27184 | Adobe | Out-of-bounds Read vulnerability in Adobe After Effects After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-27185 | Adobe | NULL Pointer Dereference vulnerability in Adobe After Effects After Effects versions 25.1, 24.6.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. | 5.5 |
| 2025-04-08 | CVE-2025-27186 | Adobe | Out-of-bounds Read vulnerability in Adobe After Effects After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-27187 | Adobe | Out-of-bounds Read vulnerability in Adobe After Effects After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-27201 | Adobe | Out-of-bounds Read vulnerability in Adobe Animate Animate versions 24.0.7, 23.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-27202 | Adobe | Out-of-bounds Read vulnerability in Adobe Animate Animate versions 24.0.7, 23.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-27204 | Adobe | Out-of-bounds Read vulnerability in Adobe After Effects After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 5.5 |
| 2025-04-08 | CVE-2025-22009 | Linux | NULL Pointer Dereference vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: regulator: dummy: force synchronous probing Sometimes I get a NULL pointer dereference at boot time in kobject_get() with the following call stack: anatop_regulator_probe() devm_regulator_register() regulator_register() regulator_resolve_supply() kobject_get() By placing some extra BUG_ON() statements I could verify that this is raised because probing of the 'dummy' regulator driver is not completed ('dummy_regulator_rdev' is still NULL). In the JTAG debugger I can see that dummy_regulator_probe() and anatop_regulator_probe() can be run by different kernel threads (kworker/u4:*). | 5.5 |
| 2025-04-08 | CVE-2025-22010 | Linux | Improper Locking vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix soft lockup during bt pages loop Driver runs a for-loop when allocating bt pages and mapping them with buffer pages. | 5.5 |
| 2025-04-08 | CVE-2025-22011 | Linux | Unspecified vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: ARM: dts: bcm2711: Fix xHCI power-domain During s2idle tests on the Raspberry CM4 the VPU firmware always crashes on xHCI power-domain resume: root@raspberrypi:/sys/power# echo freeze > state [ 70.724347] xhci_suspend finished [ 70.727730] xhci_plat_suspend finished [ 70.755624] bcm2835-power bcm2835-power: Power grafx off [ 70.761127] USB: Set power to 0 [ 74.653040] USB: Failed to set power to 1 (-110) This seems to be caused because of the mixed usage of raspberrypi-power and bcm2835-power at the same time. | 5.5 |
| 2025-04-08 | CVE-2025-22012 | Linux | Improper Locking vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: Revert "arm64: dts: qcom: sdm845: Affirm IDR0.CCTW on apps_smmu" There are reports that the pagetable walker cache coherency is not a given across the spectrum of SDM845/850 devices, leading to lock-ups and resets. | 5.5 |
| 2025-04-08 | CVE-2025-22014 | Linux | Improper Locking vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pdr: Fix the potential deadlock When some client process A call pdr_add_lookup() to add the look up for the service and does schedule locator work, later a process B got a new server packet indicating locator is up and call pdr_locator_new_server() which eventually sets pdr->locator_init_complete to true which process A sees and takes list lock and queries domain list but it will timeout due to deadlock as the response will queued to the same qmi->wq and it is ordered workqueue and process B is not able to complete new server request work due to deadlock on list lock. Fix it by removing the unnecessary list iteration as the list iteration is already being done inside locator work, so avoid it here and just call schedule_work() here. Process A Process B process_scheduled_works() pdr_add_lookup() qmi_data_ready_work() process_scheduled_works() pdr_locator_new_server() pdr->locator_init_complete=true; pdr_locator_work() mutex_lock(&pdr->list_lock); pdr_locate_service() mutex_lock(&pdr->list_lock); pdr_get_domain_list() pr_err("PDR: %s get domain list txn wait failed: %d\n", req->service_name, ret); Timeout error log due to deadlock: " PDR: tms/servreg get domain list txn wait failed: -110 PDR: service lookup for msm/adsp/sensor_pd:tms/servreg failed: -110 " Thanks to Bjorn and Johan for letting me know that this commit also fixes an audio regression when using the in-kernel pd-mapper as that makes it easier to hit this race. | 5.5 |
| 2025-04-08 | CVE-2025-20934 | Samsung | Unspecified vulnerability in Samsung Android Improper access control in Sticker Center prior to SMR Apr-2025 Release 1 allows local attackers to access image files with system privilege. | 5.5 |
| 2025-04-07 | CVE-2024-43046 | | There may be information disclosure during memory re-allocation in TZ Secure OS. | 5.5 |
| 2025-04-07 | CVE-2025-21431 | | Information disclosure may be there when a guest VM is connected. | 5.5 |
| 2025-04-07 | CVE-2025-31171 | Huawei | Unspecified vulnerability in Huawei Harmonyos 5.0.0 File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 5.5 |
| 2025-04-07 | CVE-2025-31172 | Huawei | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 5.5 |
| 2025-04-13 | CVE-2025-3423 | | IBM Aspera Faspex 5.0.0 through 5.0.11 is vulnerable to cross-site scripting. | 5.4 |
| 2025-04-11 | CVE-2025-2541 | Wedevs | Cross-site Scripting vulnerability in Wedevs WP Project Manager The WP Project Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.6.22 due to insufficient input sanitization and output escaping. | 5.4 |
| 2025-04-11 | CVE-2025-2575 | Wpzita | Cross-site Scripting vulnerability in Wpzita Z Companion The Z Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.1.1 due to insufficient input sanitization and output escaping. | 5.4 |
| 2025-04-10 | CVE-2023-42007 | | IBM Sterling Control Center 6.2.1, 6.3.1, and 6.4.0 is vulnerable to cross-site scripting. | 5.4 |
| 2025-04-09 | CVE-2023-33844 | | IBM Security Verify Governance 10.0.2 is vulnerable to cross-site scripting. | 5.4 |
| 2025-04-08 | CVE-2025-27205 | | Adobe Experience Manager Screens versions FP11.3 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. | 5.4 |
| 2025-04-08 | CVE-2025-2808 | | The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Phone Number parameter in all versions up to, and including, 1.4.63 due to insufficient input sanitization and output escaping. | 5.4 |
| 2025-04-07 | CVE-2025-3387 | Renrenio | Unspecified vulnerability in Renrenio Renren-Security A vulnerability classified as problematic has been found in renrenio renren-security up to 5.4.0. | 5.4 |
| 2025-04-13 | CVE-2025-3537 | | A vulnerability was found in Tutorials-Website Employee Management System 1.0. | 5.3 |
| 2025-04-12 | CVE-2024-13338 | | The Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3.1. | 5.3 |
| 2025-04-12 | CVE-2025-3282 | | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.3 via the user_registration_membership_register_member() due to missing validation on the 'membership_id' user controlled key. | 5.3 |
| 2025-04-12 | CVE-2025-2841 | | The Cart66 Cloud plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.7 through the publicly accessible phpinfo.php script. | 5.3 |
| 2025-04-12 | CVE-2025-2881 | | The Developer Toolbar plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.3 through the publicly accessible phpinfo.php script. | 5.3 |
| 2025-04-10 | CVE-2025-32275 | AYS PRO | Authentication Bypass by Spoofing vulnerability in Ays-Pro Survey Maker Authentication Bypass by Spoofing vulnerability in Ays Pro Survey Maker allows Identity Spoofing. | 5.3 |
| 2025-04-09 | CVE-2025-21597 | | An Improper Check for Unusual or Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, logically adjacent BGP peer to cause Denial of Service (DoS). On all Junos OS and Junos OS Evolved platforms, when BGP rib-sharding and update-threading are configured, and a BGP peer flap is done with specific timing, rpd crashes and restarts. | 5.3 |
| 2025-04-09 | CVE-2025-30657 | | An Improper Encoding or Escaping of Output vulnerability in the Sampling Route Record Daemon (SRRD) of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). When a device configured for flow-monitoring receives a specific BGP update message, it is correctly processed internally by the routing protocol daemon (rpd), but when it's sent to SRRD it's encoded incorrectly which leads to a crash and momentary interruption of jflow processing until it automatically restarts. | 5.3 |
| 2025-04-08 | CVE-2025-27190 | | Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. | 5.3 |
| 2025-04-08 | CVE-2025-27191 | | Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. | 5.3 |
| 2025-04-08 | CVE-2025-2568 | | The Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce plugin for WordPress is vulnerable to unauthorized access and modification of data due to missing capability checks on the 'vayu_blocks_get_toggle_switch_values_callback' and 'vayu_blocks_save_toggle_switch_callback' function in versions 1.0.4 to 1.2.1. | 5.3 |
| 2025-04-08 | CVE-2025-2876 | | The MelaPress Login Security and MelaPress Login Security Premium plugins for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'monitor_admin_actions' function in version 2.1.0. | 5.3 |
| 2025-04-08 | CVE-2025-2883 | | The Accept SagePay Payments Using Contact Form 7 plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.0 through the publicly accessible phpinfo.php script. | 5.3 |
| 2025-04-08 | CVE-2025-26657 | | SAP KMC WPC allows an unauthenticated attacker to remotely retrieve usernames by a simple parameter query which could expose sensitive information causing low impact on confidentiality of the application. | 5.3 |
| 2025-04-08 | CVE-2025-2882 | | The GreenPay(tm) by Green.Money plugin for WordPress is vulnerable to Sensitive Information Exposure in versions between 3.0.0 and 3.0.9 through the publicly accessible phpinfo.php script. | 5.3 |
| 2025-04-08 | CVE-2024-13820 | | The Melhor Envio plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.15.9 via the 'run' function, which uses a hardcoded hash. | 5.3 |
| 2025-04-08 | CVE-2025-26644 | | Automated recognition mechanism with inadequate detection or handling of adversarial input perturbations in Windows Hello allows an unauthorized attacker to perform spoofing locally. | 5.1 |
| 2025-04-10 | CVE-2024-13909 | | The Accredible Certificates & Open Badges plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 1.4.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2025-04-09 | CVE-2025-25023 | | IBM Security Guardium 11.4 and 12.1 could allow a privileged user to read any file on the system due to incorrect privilege assignment. | 4.9 |
| 2025-04-08 | CVE-2019-25223 | | The Team Circle Image Slider With Lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2025-04-08 | CVE-2025-3427 | | The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'infill_text' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2025-04-08 | CVE-2025-3428 | | The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'coating_text' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2025-04-08 | CVE-2025-3429 | | The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'material_text' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2025-04-08 | CVE-2025-3430 | | The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'printer_text' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2025-04-07 | CVE-2025-3385 | PB CMS Project | Unspecified vulnerability in Pb-Cms Project Pb-Cms 2.0 A vulnerability was found in LinZhaoguan pb-cms 2.0. | 4.8 |
| 2025-04-07 | CVE-2025-3386 | PB CMS Project | Unspecified vulnerability in Pb-Cms Project Pb-Cms 2.0 A vulnerability was found in LinZhaoguan pb-cms 2.0. | 4.8 |
| 2025-04-08 | CVE-2025-26653 | | SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to Stored Cross-Site Scripting (XSS) vulnerability. | 4.7 |
| 2025-04-11 | CVE-2024-11679 | | An input validation weakness was reported in the TpmSetup module for some legacy System x server products that could allow a local attacker with elevated privileges to read the contents of memory. | 4.4 |
| 2025-04-08 | CVE-2025-30017 | | Due to a missing authorization check, an authenticated attacker could upload a file as a template for solution documentation in SAP Solution Manager 7.1. | 4.4 |
| 2025-04-13 | CVE-2025-3535 | | A vulnerability has been found in shuanx BurpAPIFinder up to 2.0.2 and classified as problematic. | 4.3 |
| 2025-04-13 | CVE-2025-3533 | | A vulnerability, which was classified as problematic, has been found in YouDianCMS 9.5.21. | 4.3 |
| 2025-04-13 | CVE-2025-3531 | | A vulnerability classified as problematic has been found in YouDianCMS 9.5.21. | 4.3 |
| 2025-04-13 | CVE-2025-3532 | | A vulnerability classified as problematic was found in YouDianCMS 9.5.21. | 4.3 |
| 2025-04-12 | CVE-2024-13337 | | The Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3.2. | 4.3 |
| 2025-04-12 | CVE-2025-3292 | | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.3 via the user_registration_update_profile_details() due to missing validation on the 'user_id' user controlled key. | 4.3 |
| 2025-04-12 | CVE-2025-2871 | | The WordPress Mega Menu – QuadMenu plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.2.0. | 4.3 |
| 2025-04-11 | CVE-2024-51461 | | IBM QRadar WinCollect Agent 10.0 through 10.1.13 could allow a remote attacker to cause a denial of service by interrupting an HTTP request that could consume memory resources. | 4.3 |
| 2025-04-08 | CVE-2025-27189 | Adobe | Cross-Site Request Forgery (CSRF) vulnerability in Adobe Commerce B2B Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could be exploited to cause a denial-of-service condition. | 4.3 |
| 2025-04-08 | CVE-2025-3437 | | The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in the ajax_actions.php file in all versions up to, and including, 1.4.66. | 4.3 |
| 2025-04-08 | CVE-2025-27437 | | A Missing Authorization Check vulnerability exists in the Virus Scanner Interface of SAP NetWeaver Application Server ABAP. | 4.3 |
| 2025-04-08 | CVE-2025-31331 | | SAP NetWeaver allows an attacker to bypass authorization checks, enabling them to view portions of ABAP code that would normally require additional validation. | 4.3 |
| 2025-04-08 | CVE-2025-31333 | | SAP S4CORE OData meta-data property is vulnerable to data tampering, due to which entity set could be externally modified by an attacker causing low impact on integrity of the application. | 4.3 |
| 2025-04-08 | CVE-2025-3405 | | A vulnerability was found in FCJ Venture Builder appclientefiel 3.0.27. | 4.3 |
| 2025-04-08 | CVE-2025-3406 | | A vulnerability was found in Nothings stb up to f056911. | 4.3 |
| 2025-04-08 | CVE-2025-27435 | | Under specific conditions and prerequisites, an unauthenticated attacker could access customer coupon codes exposed in the URL parameters of the Coupon Campaign URL in SAP Commerce. | 4.2 |
| 2025-04-08 | CVE-2025-30015 | | Due to incorrect memory address handling in ABAP SQL of SAP NetWeaver and ABAP Platform (Application Server ABAP), an authenticated attacker with high privileges could execute certain forms of SQL queries leading to manipulation of content in the output variable. | 4.1 |
| 2025-04-10 | CVE-2023-43035 | | IBM Sterling Control Center 6.2.1, 6.3.1, and 6.4.0 allows web pages to be stored locally which can be read by another user on the system. | 4.0 |