Search

130 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

CRITICAL9.8CVE-2025-24893⚠ KEVEPSS 93.7%XWiki Platform allows remote code execution as guest via SolrSearchMacros request2/20/2025
CRITICAL9.8CVE-2024-56145⚠ KEVEPSS 93.9%Craft CMS has potential RCE when PHP `register_argc_argv` config setting is enabled12/18/2024
MEDIUM6.3CVE-2024-44309⚠ KEVEPSS 0.94%Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability11/20/2024
MEDIUM5.5CVE-2024-50302⚠ KEVEPSS 2.6%Linux Kernel Use of Uninitialized Resource Vulnerability11/19/2024
CRITICAL9.8CVE-2024-9680⚠ KEVEPSS 30.8%firefox-esr - security update10/9/2024
CRITICAL9.6CVE-2024-7971⚠ KEVEPSS 1.0%Google Chromium V8 Type Confusion Vulnerability8/21/2024
CRITICAL9.3CVE-2024-42009⚠ KEVEPSS 90.5%RoundCube Webmail Cross-Site Scripting Vulnerability8/5/2024
CRITICAL9.8CVE-2024-36401⚠ KEVEPSS 94.4%Remote Code Execution (RCE) vulnerability in geoserver7/1/2024
CRITICAL9.1CVE-2024-38475⚠ KEVEPSS 93.9%Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path.7/1/2024
CRITICAL9.8CVE-2024-34102⚠ KEVEPSS 94.2%Magento Open Source affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability6/13/2024
MEDIUM6.1CVE-2024-37383⚠ KEVEPSS 64.5%roundcube - security update6/7/2024
CRITICAL9.6CVE-2024-5274⚠ KEVEPSS 6.6%chromium - security update5/28/2024
CRITICAL9.6CVE-2024-4947⚠ KEVEPSS 1.1%chromium - security update5/15/2024
CRITICAL9.6CVE-2024-4671⚠ KEVEPSS 0.57%chromium - security update5/14/2024
CRITICAL9.8CVE-2024-27348⚠ KEVEPSS 94.3%Apache HugeGraph-Server: Command execution in gremlin4/22/2024
CRITICAL9.8CVE-2021-22175⚠ KEVEPSS 80.0%GitLab Server-Side Request Forgery (SSRF) Vulnerability3/6/2024
CRITICAL10.0CVE-2021-22205⚠ KEVEPSS 94.5%GitLab Community and Enterprise Editions Remote Code Execution Vulnerability3/6/2024
CRITICAL9.8CVE-2023-7028⚠ KEVEPSS 93.4%Weak Password Recovery Mechanism for Forgotten Password in GitLab3/6/2024
CRITICAL9.8CVE-2022-24706⚠ KEVEPSS 94.4%Remote Code Execution Vulnerability in Packaging3/6/2024
CRITICAL9.8CVE-2022-24112⚠ KEVEPSS 94.4%apisix/batch-requests plugin allows overwriting the X-REAL-IP header3/6/2024
CRITICAL9.8CVE-2024-23897⚠ KEVEPSS 94.5%Arbitrary file read vulnerability through the Jenkins CLI can lead to RCE1/24/2024
MEDIUM6.5CVE-2023-42916⚠ KEVEPSS 0.05%webkit2gtk - security update11/30/2023
CRITICAL9.6CVE-2023-6345⚠ KEVEPSS 1.9%chromium - security update11/29/2023
CRITICAL10.0CVE-2023-46604⚠ KEVEPSS 94.4%Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack10/27/2023
MEDIUM5.4CVE-2023-5631⚠ KEVEPSS 83.2%roundcube - security update10/18/2023

← PrevPage 2 of 6Next →