- CVE-2025-34028 - Commvault Command Center Innovation Release Remote Code Execution Path Traversal
- CVE-2025-23176 - Apache Web Server SQL Injection Vulnerability
- CVE-2025-1950 - IBM Hardware Management Console - Local Command Execution Vulnerability
- CVE-2025-1951 - IBM Hardware Management Console Privilege Escalation Vulnerability
- CVE-2025-3616 - Greenshift WordPress Animation and Page Builder Blocks Unvalidated File Upload Vulnerability
- CVE-2025-3854 - H3C GR-3000AX HTTP POST Request Handler Buffer Overflow Vulnerability
- CVE-2024-58250 - ppp Passprompt Privilege Escalation Vulnerability
- CVE-2025-32956 - ManageWiki SQL Injection Vulnerability
- CVE-2025-32958 - Adept Language GitHub Token Exposure
- CVE-2025-29659 - Yi IOT XY-3820 Remote Command Execution Vulnerability
- CVE-2025-29660 - Yi IOT XY-3820 Remote Code Execution Vulnerability
- CVE-2025-29287 - MCMS Ueditor Unrestricted File Upload Vulnerability
- CVE-2025-32408 - Soffid Console Java Deserialization Remote Code Execution
- CVE-2025-3820 - Tenda W12 and i24 Remote Stack-Based Buffer Overflow
- CVE-2025-43917 - Pritunl Client Privilege Escalation Vulnerability
- CVE-2025-3803 - Tenda W12 and i24 Stack-Based Buffer Overflow Vulnerability
- CVE-2025-3802 - Tenda W12 and i24 HTTPd cgiPingSet Stack-Based Buffer Overflow
- CVE-2025-3278 - "UrbanGo Membership Plugin Privilege Escalation Vulnerability"
- CVE-2025-32953 - Z80pack GitHub Token Exposure
- CVE-2025-3785 - D-Link DWR-M961 Stack-Based Buffer Overflow Vulnerability
- CVE-2025-3786 - Tenda AC15 Wireless Repeat Buffer Overflow Vulnerability
- CVE-2025-1863 - Yokogawa Electric Corporation Paperless Recorders Authentication Bypass
- CVE-2025-39471 - Pantherius Modal Survey SQL Injection Vulnerability
- CVE-2025-39470 - ThimPress Ivy School PHP Local File Inclusion Vulnerability
- CVE-2025-42599 - Active! Mail Stack-Based Buffer Overflow Vulnerability
- CVE-2025-3520 - "WordPress Avatar Plugin File Deletion Vulnerability"
- CVE-2025-39526 - Nicdark Hotel Booking PHP RFI Vulnerability
- CVE-2025-39527 - BestWebSoft Rating Object Injection Vulnerability
- CVE-2025-39436 - Aidraw I Draw Unrestricted Upload of File with Dangerous Type Vulnerability
- CVE-2025-32665 - WebbyTemplate Office Locator SQL Injection
- CVE-2025-32682 - RomanCode MapSVG Lite Unrestricted File Upload Vulnerability
- CVE-2025-32686 - WordPress Speedo Team Members Object Injection Vulnerability
- CVE-2025-32660 - JoomSky JS Job Manager Unrestricted File Upload Vulnerability
- CVE-2025-32662 - Stylemix uListing Deserialization of Untrusted Data Object Injection
- CVE-2025-32652 - Solacewp Solace Extra Unrestricted File Upload Vulnerability
- CVE-2025-32658 - HelpGent wpWax Object Injection Vulnerability
- CVE-2025-32636 - Oracle Local Magic SQL Injection
- CVE-2025-32647 - PickPlugins Question Answer Object Injection Vulnerability
- CVE-2025-32648 - Projectopia Privilege Escalation Vulnerability
- CVE-2025-43715 - NSIS Local Privilege Escalation Vulnerability
- CVE-2025-0756 - Hitachi Vantara Pentaho Unrestricted JNDI Identifier Vulnerability (CWE-99)
- CVE-2025-32848 - "TeleControl Server Basic SQL Injection Vulnerability"
- CVE-2025-20236 - "Cisco Webex App URL Parser Remote Command Execution Vulnerability"
- CVE-2025-39601 - WPFactory Custom CSS, JS & PHP CSRF Remote Code Inclusion
- CVE-2025-39570 - Lomu WPCOM Member PHP Local File Inclusion Vulnerability
- CVE-2025-39557 - Ben Ritner Kadence WooCommerce Email Designer Unrestricted File Upload Vulnerability
- CVE-2025-30960 - FS Poster Unauthorized Access Vulnerability
- CVE-2024-22036 - Rancher Chroot Jail Escape and Privilege Escalation
- CVE-2024-52281 - SUSE Rancher Stored XSS
- CVE-2025-3495 - Delta Electronics COMMGR Session ID Brute Force Vulnerability
- CVE-2025-26927 - EPC AI Hub Unrestricted File Upload Vulnerability
- CVE-2025-26748 - LOOS,Inc. Arkhe CSRF Remote Code Execution
- CVE-2025-24297 - Apache Web Portal Cross-Site Scripting (XSS)
- CVE-2025-30735 - Oracle PeopleSoft PeopleSoft Enterprise CC Common Application Objects HTTP Unauthorized Access Vulnerability
- CVE-2025-30727 - Oracle E-Business Suite iSurvey Module Remote Takeover Vulnerability
- CVE-2025-30712 - Oracle VM VirtualBox Core Unauthorized Access and Data Manipulation Vulnerability
- CVE-2025-30511 - Apache Struts Stored Cross-Site Scripting
- CVE-2025-29281 - PerfreeBlog Arbitrary File Upload Vulnerability
- CVE-2025-1782 - HylaFAX Enterprise Web Interface and AvantFAX File Inclusion Vulnerability
- CVE-2025-2160 - Pega Platform Cross-Site Scripting Vulnerability
- CVE-2025-3545 - H3C Magic NX Series HTTP POST Request Handler Command Injection Vulnerability
- CVE-2025-3546 - H3C Magic NX15/Business Ethernet Switch HTTP Command Injection Vulnerability
- CVE-2025-3544 - H3C Magic NX15/30 Pro/400/BE18000 HTTP POST Request Handler Command Injection
- CVE-2025-3543 - H3C Magic NX Series HTTP POST Request Handler Command Injection Vulnerability
- CVE-2025-3542 - H3C Magic NX15, Magic NX400 and Magic R3010 Command Injection Vulnerability
- CVE-2025-3541 - H3C Magic NX15/Magic NX30 Pro/Magic NX400/Magic R3010 Command Injection Vulnerability
- CVE-2025-3540 - H3C Magic NX15, Magic NX30 Pro, Magic NX400 and Magic R3010 Command Injection Vulnerability
- CVE-2025-3539 - H3C Magic NX Series HCF CGI Command Injection Vulnerability
- CVE-2025-3445 - Apache Archiver Path Traversal Zip Slip Vulnerability
- CVE-2025-3538 - D-Link jhttpd Auth Asp Stack-Based Buffer Overflow
- CVE-2025-3418 - WordPress WPC Admin Columns Privilege Escalation Vulnerability
- CVE-2025-32577 - Build App Online PHP Remote File Inclusion Vulnerability
- CVE-2025-32579 - SoftClever Limited Sync Posts Unrestricted File Upload RCE
- CVE-2025-32567 - Easy Post Duplicator SQL Injection Vulnerability
- CVE-2025-32568 - EmpikPlace for Woocommerce Deserialization of Untrusted Data Object Injection Vulnerability
- CVE-2025-32569 - RealMag777 TableOn WordPress Posts Table Filterable Object Injection Vulnerability
- CVE-2025-32558 - Apache Duplicate Title Checker SQL Injection
- CVE-2025-32565 - Vertim Neon Product Designer SQL Injection
- CVE-2025-32542 - EazyPlugins Eazy Plugin Manager Missing Authorization Vulnerability
- CVE-2025-32519 - ThemeAtelier IDonate PHP Remote File Inclusion
- CVE-2025-32743 - ConnMan DNS Truncated Response Denial of Service/Arbitrary Code Execution Vulnerability
- CVE-2025-29017 - Code Astro Internet Banking System RCE File Upload Validation Bypass
- CVE-2025-27812 - MSI Center TOCTOU Local Privilege Escalation
- CVE-2025-27813 - MSI Center Missing PE Signature Validation
- CVE-2025-32202 - Brian Batt - elearningfreak.com WordPress Articulate Content Unrestricted File Upload RCE
- CVE-2025-32206 - LABCAT Processing Projects Unrestricted File Upload Vulnerability
- CVE-2025-32140 - Nirmal Kumar Ram WP Remote Thumbnail Unrestricted File Upload Vulnerability
- CVE-2025-32145 - Magepeopleteam WpEvently Deserialization of Untrusted Data Object Injection
- CVE-2025-31524 - WordPress User Profiles Privilege Escalation
- CVE-2025-32119 - CardGate CardGate Payments for WooCommerce SQL Injection
- CVE-2025-30582 - Aytechnet DyaPress ERP/CRM Path Traversal Vulnerability
- CVE-2025-3417 - WordPress Embedder Privilege Escalation Vulnerability
- CVE-2025-3102 - WordPress SureTriggers Plugin Authentication Bypass Vulnerability
- CVE-2025-27690 - Dell PowerScale OneFS Default Password Vulnerability (Remote Authentication Bypass)
- CVE-2024-58136 - Yii 2 Behavior Array Key Attachment Vulnerability
- CVE-2024-55210 - TOTVS Framework (Linha Protheus) Websocket MFA Bypass
- CVE-2025-32695 - Mestres do WP Checkout Mestres WP Privilege Escalation
- CVE-2025-32641 - Anant Addons for Elementor CSRF Vulnerability
- CVE-2025-32642 - Appsbd Vite Coupon CSRF Remote Code Inclusion Vulnerability
- CVE-2025-32576 - Eoxia Montpellier WP Shop CSRF Web Shell Upload
Franck Ridel
