Total
291867 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-24938 | 1 Silabs | 1 Emberznet | 2025-04-30 | 6.5 Medium |
| A malformed packet causes a stack overflow in the Ember ZNet stack. This causes an assert which leads to a reset, immediately clearing the error. | ||||
| CVE-2022-24937 | 1 Silabs | 1 Emberznet | 2025-04-30 | 6.5 Medium |
| Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Silicon Labs Ember ZNet allows Overflow Buffers. | ||||
| CVE-2025-4020 | 1 Phpgurukul | 1 Old Age Home Management System | 2025-04-30 | 7.3 High |
| A vulnerability was found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /contact.php. The manipulation of the argument fname leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. | ||||
| CVE-2025-4135 | 2025-04-30 | 6.3 Medium | ||
| A vulnerability was found in Netgear WG302v2 up to 5.2.9 and classified as critical. Affected by this issue is the function ui_get_input_value. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way. | ||||
| CVE-2025-46619 | 2025-04-30 | N/A | ||
| A security issue has been discovered in Couchbase Server before 7.6.4 and fixed in v.7.6.4 and v.7.2.7 for Windows that could allow unauthorized access to sensitive files. Depending on the level of privileges, this vulnerability may grant access to files such as /etc/passwd or /etc/shadow. | ||||
| CVE-2025-46400 | 2025-04-30 | N/A | ||
| Red Hat Product Security has come to the conclusion that this CVE is not needed. | ||||
| CVE-2025-46399 | 2025-04-30 | N/A | ||
| Red Hat Product Security has come to the conclusion that this CVE is not needed. | ||||
| CVE-2025-46398 | 2025-04-30 | N/A | ||
| Red Hat Product Security has come to the conclusion that this CVE is not needed. | ||||
| CVE-2025-46397 | 2025-04-30 | N/A | ||
| Red Hat Product Security has come to the conclusion that this CVE is not needed. | ||||
| CVE-2025-44194 | 2025-04-30 | N/A | ||
| SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_household. | ||||
| CVE-2025-44193 | 2025-04-30 | N/A | ||
| SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_complaint. | ||||
| CVE-2025-44192 | 2025-04-30 | N/A | ||
| SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_clearance. | ||||
| CVE-2025-3471 | 2025-04-30 | 4.9 Medium | ||
| The SureForms WordPress plugin before 1.4.4 does not have proper authorisation check when updating its settings via the REST API, which could allow Contributor and above roles to perform such action | ||||
| CVE-2025-3269 | 2025-04-30 | N/A | ||
| Red Hat Product Security has come to the conclusion that this CVE is not needed. | ||||
| CVE-2025-39413 | 2025-04-30 | 4.3 Medium | ||
| Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap.This issue affects Simple Sitemap – Create a Responsive HTML Sitemap: from n/a through 3.5.14. | ||||
| CVE-2025-33074 | 2025-04-30 | 7.5 High | ||
| Improper verification of cryptographic signature in Microsoft Azure Functions allows an authorized attacker to execute code over a network. | ||||
| CVE-2025-30392 | 2025-04-30 | 9.8 Critical | ||
| Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network. | ||||
| CVE-2025-30391 | 2025-04-30 | 8.1 High | ||
| Improper input validation in Microsoft Dynamics allows an unauthorized attacker to disclose information over a network. | ||||
| CVE-2025-30390 | 2025-04-30 | 9.9 Critical | ||
| Improper authorization in Azure allows an authorized attacker to elevate privileges over a network. | ||||
| CVE-2025-30389 | 2025-04-30 | 8.7 High | ||
| Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network. | ||||