Lista CVE - 2025 / Giugno
Visualizzazione 901 - 1000 di 3683 CVE per Giugno 2025 (Pagina 10 di 37)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2025-5865 | 2025-06-09 | RT-Thread Parameter lwp_syscall.c sys_select memory corruption |
| CVE-2025-5893 | 2025-06-09 | Honding Technology Smart Parking Management System - Exposure of Sensitive Information |
| CVE-2025-5866 | 2025-06-09 | RT-Thread lwp_syscall.c sys_sigprocmask array index |
| CVE-2025-5867 | 2025-06-09 | RT-Thread lwp_syscall.c csys_sendto null pointer dereference |
| CVE-2025-5894 | 2025-06-09 | Honding Technology Smart Parking Management System - Missing Authorization |
| CVE-2025-5868 | 2025-06-09 | RT-Thread lwp_syscall.c sys_thread_sigprocmask array index |
| CVE-2025-5869 | 2025-06-09 | RT-Thread lwp_syscall.c sys_recvfrom memory corruption |
| CVE-2025-5870 | 2025-06-09 | TRENDnet TV-IP121W Web Interface setup.cgi improper authentication |
| CVE-2025-5871 | 2025-06-09 | Papendorf SOL Connect Center Web Interface missing authentication |
| CVE-2025-40675 | 2025-06-09 | Reflected Cross-Site Scripting (XSS) in Bagisto |
| CVE-2025-5872 | 2025-06-09 | eGauge EG3000 Energy Monitor Setting missing authentication |
| CVE-2025-3835 | 2025-06-09 | Remote Code Execution |
| CVE-2025-5873 | 2025-06-09 | eCharge Hardy Barth Salia PLCC Web UI firmware.php unrestricted upload |
| CVE-2025-41437 | 2025-06-09 | Reflected XSS |
| CVE-2025-5874 | 2025-06-09 | Redash getattr python.py run_query sandbox |
| CVE-2025-27709 | 2025-06-09 | SQL Injection |
| CVE-2025-36528 | 2025-06-09 | SQL Injection |
| CVE-2025-41444 | 2025-06-09 | SQL Injection |
| CVE-2025-5875 | 2025-06-09 | TP-LINK Technologies TL-IPC544EP-W4 main sub_69064 buffer overflow |
| CVE-2025-5876 | 2025-06-09 | Lucky LM-520-SC/LM-520-FSC/LM-520-FSC-SAM missing authentication |
| CVE-2025-40668 | 2025-06-09 | Incorrect Authorization vulnerability in TCMAN GIM |
| CVE-2025-40669 | 2025-06-09 | Incorrect Authorization vulnerability in TCMAN GIM |
| CVE-2025-40670 | 2025-06-09 | Incorrect Authorization vulnerability in TCMAN GIM |
| CVE-2025-48053 | 2025-06-09 | Discourse vulnerable to DoS via large URL payload in PM to a bot |
| CVE-2025-5877 | 2025-06-09 | Fengoffice Feng Office Document Upload ApplicationDataObject.class.php xml external entity reference |
| CVE-2025-48062 | 2025-06-09 | Discourse vulnerable to HTML injection when inviting to topic via email |
| CVE-2025-48877 | 2025-06-09 | Discourse vulnerable to auto-executing of third-party code in embedded CodePen iframe |
| CVE-2025-49006 | 2025-06-09 | Wasp has case insensitive OAuth ID vulnerability |
| CVE-2025-49131 | 2025-06-09 | FastGPT Sandbox Vulnerable to Sandbox Bypass |
| CVE-2025-49013 | 2025-06-09 | WilderForge vulnerable to code Injection via GitHub Actions Workflows |
| CVE-2025-49130 | 2025-06-09 | Laravel Translation Manager Vulnerable to Stored Cross-site Scripting |
| CVE-2025-5879 | 2025-06-09 | WuKongOpenSource WukongCRM File Upload AdminSysConfigController.java cross site scripting |
| CVE-2025-5880 | 2025-06-09 | Whistle get-temp-file path traversal |
| CVE-2025-5881 | 2025-06-09 | code-projects Chat System confirm_password.php sql injection |
| CVE-2025-5884 | 2025-06-09 | Konica Minolta bizhub Display MFP Information List cross site scripting |
| CVE-2025-5885 | 2025-06-09 | Konica Minolta bizhub cross-site request forgery |
| CVE-2025-49297 | 2025-06-09 | WordPress Grill and Chow <= 1.6 - Local File Inclusion Vulnerability |
| CVE-2025-49296 | 2025-06-09 | WordPress GrandPrix <= 1.6 - Local File Inclusion Vulnerability |
| CVE-2025-49295 | 2025-06-09 | WordPress MediClinic <= 2.1 - Local File Inclusion Vulnerability |
| CVE-2025-49282 | 2025-06-09 | WordPress Magze <= 1.0.9 - Local File Inclusion Vulnerability |
| CVE-2025-49281 | 2025-06-09 | WordPress Magways <= 1.2.1 - Local File Inclusion Vulnerability |
| CVE-2025-49280 | 2025-06-09 | WordPress Magty <= 1.0.6 - Local File Inclusion Vulnerability |
| CVE-2025-49279 | 2025-06-09 | WordPress Blogvy <= 1.0.7 - Local File Inclusion Vulnerability |
| CVE-2025-49278 | 2025-06-09 | WordPress Blogty <= 1.0.11 - Local File Inclusion Vulnerability |
| CVE-2025-49277 | 2025-06-09 | WordPress Blogprise <= 1.0.9 - Local File Inclusion Vulnerability |
| CVE-2025-49276 | 2025-06-09 | WordPress Blogmine <= 1.1.7 - Local File Inclusion Vulnerability |
| CVE-2025-49275 | 2025-06-09 | WordPress Blogbyte <= 1.1.1 - Local File Inclusion Vulnerability |
| CVE-2025-49265 | 2025-06-09 | WordPress Membership For WooCommerce <= 2.8.1 - Broken Access Control Vulnerability |
| CVE-2025-48281 | 2025-06-09 | WordPress MyStyle Custom Product Designer <= 3.21.1 - SQL Injection Vulnerability |
| CVE-2025-48279 | 2025-06-09 | WordPress WC MyParcel Belgium plugin <= 4.5.5-beta - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-48267 | 2025-06-09 | WordPress WP Pipes plugin <= 1.4.2 - Arbitrary File Deletion Vulnerability |
| CVE-2025-48261 | 2025-06-09 | WordPress MultiVendorX <= 4.2.22 - Sensitive Data Exposure Vulnerability |
| CVE-2025-48147 | 2025-06-09 | WordPress CryptoCloud - Crypto Payment Gateway <= 2.1.2 - Broken Access Control Vulnerability |
| CVE-2025-48143 | 2025-06-09 | WordPress Formulario de contacto SalesUp! plugin <= 1.0.14 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-48141 | 2025-06-09 | WordPress Multi CryptoCurrency Payments <= 2.0.3 - SQL Injection Vulnerability |
| CVE-2025-48140 | 2025-06-09 | WordPress MetalpriceAPI <= 1.1.4 - Remote Code Execution (RCE) Vulnerability |
| CVE-2025-48139 | 2025-06-09 | WordPress StyleAI <= 1.0.4 - Broken Access Control Vulnerability |
| CVE-2025-48130 | 2025-06-09 | WordPress Spice Blocks <= 2.0.7.2 - Arbitrary File Download Vulnerability |
| CVE-2025-48129 | 2025-06-09 | WordPress Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light <= 2.4.37 - Privilege Escalation Vulnerability |
| CVE-2025-48126 | 2025-06-09 | WordPress Essential Real Estate <= 5.2.1 - Local File Inclusion Vulnerability |
| CVE-2025-48125 | 2025-06-09 | WordPress WP Event Manager <= 3.1.49 - Local File Inclusion Vulnerability |
| CVE-2025-48124 | 2025-06-09 | WordPress Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light <= 2.4.37 - Arbitrary File Download Vulnerability |
| CVE-2025-48123 | 2025-06-09 | WordPress Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light <= 2.4.37 - Remote Code Execution (RCE) Vulnerability |
| CVE-2025-48122 | 2025-06-09 | WordPress Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light <= 2.4.37 - SQL Injection Vulnerability |
| CVE-2025-47651 | 2025-06-09 | WordPress Infility Global <= 2.12.4 - SQL Injection Vulnerability |
| CVE-2025-47608 | 2025-06-09 | WordPress Recover abandoned cart for WooCommerce <= 2.5 - SQL Injection Vulnerability |
| CVE-2025-47598 | 2025-06-09 | WordPress History Log by click5 <= 1.0.13 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47561 | 2025-06-09 | WordPress MapSVG plugin < 8.6.13 - Privilege Escalation Vulnerability |
| CVE-2025-47527 | 2025-06-09 | WordPress Icegram Collect – Easy Form, Lead Collection and Subscription plugin <= 1.3.18 - Broken Access Control Vulnerability |
| CVE-2025-47511 | 2025-06-09 | WordPress Welcart e-Commerce <= 2.11.13 - Arbitrary File Deletion Vulnerability |
| CVE-2025-47487 | 2025-06-09 | WordPress MC Woocommerce Wishlist <= 1.9.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47477 | 2025-06-09 | WordPress Backup and Staging by WP Time Capsule plugin <= 1.22.23 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-47463 | 2025-06-09 | WordPress Stock Locations for WooCommerce <= 2.8.6 - Broken Access Control Vulnerability |
| CVE-2025-39539 | 2025-06-09 | WordPress Soho Hotel <= 4.2.5 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-39476 | 2025-06-09 | WordPress Revo theme <= 4.0.26 - Local File Inclusion Vulnerability |
| CVE-2025-39475 | 2025-06-09 | WordPress Arlo <= 6.0.3 - Local File Inclusion Vulnerability |
| CVE-2025-39473 | 2025-06-09 | WordPress Seofy Core <= 1.4.5 - Local File Inclusion Vulnerability |
| CVE-2025-32595 | 2025-06-09 | WordPress Krowd <= 1.4.1 - Local File Inclusion Vulnerability |
| CVE-2025-32308 | 2025-06-09 | WordPress Team Builder <= 1.5.7 - Broken Access Control Vulnerability |
| CVE-2025-32305 | 2025-06-09 | WordPress FlatNews theme <= 5.8 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-32291 | 2025-06-09 | WordPress SUMO Affiliates Pro <= 10.7.0 - Arbitrary File Upload Vulnerability |
| CVE-2025-31925 | 2025-06-09 | WordPress SHOUT plugin <= 3.5.3 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31920 | 2025-06-09 | WordPress WP Guppy <= 4.3.3 - SQL Injection Vulnerability |
| CVE-2025-31917 | 2025-06-09 | WordPress Universal Video Player plugin <= 3.8.3 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31638 | 2025-06-09 | WordPress Spare <= 1.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-31635 | 2025-06-09 | WordPress CLEVER <= 2.6 - Arbitrary File Download Vulnerability |
| CVE-2025-31429 | 2025-06-09 | WordPress PressGrid - Frontend Publish Reaction & Multimedia Theme <= 1.3.1 - Deserialization of untrusted data Vulnerability |
| CVE-2025-31426 | 2025-06-09 | WordPress Sticky Radio Player plugin <= 3.4 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31424 | 2025-06-09 | WordPress WP Lead Capturing Pages plugin <= 2.3 - SQL Injection vulnerability |
| CVE-2025-31398 | 2025-06-09 | WordPress PIMP - Creative MultiPurpose <= 1.7 - Deserialization of untrusted data Vulnerability |
| CVE-2025-31396 | 2025-06-09 | WordPress FLAP - Business WordPress Theme <= 1.5 - PHP Object Injection Vulnerability |
| CVE-2025-31061 | 2025-06-09 | WordPress Wishlist plugin <= 2.1.0 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31059 | 2025-06-09 | WordPress WBW Product Table PRO <= 2.1.3 - SQL Injection Vulnerability |
| CVE-2025-31058 | 2025-06-09 | WordPress Revolution Video Player plugin <= 2.9.2 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31057 | 2025-06-09 | WordPress Universal Video Player plugin <= 1.4.0 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31052 | 2025-06-09 | WordPress The Fashion - Model Agency One Page Beauty Theme <= 1.4.4 - Deserialization of untrusted data Vulnerability |
| CVE-2025-31050 | 2025-06-09 | WordPress Apptha Slider Gallery plugin <= 2.5 - Arbitrary File Read vulnerability |
| CVE-2025-31045 | 2025-06-09 | WordPress elfsight Contact Form widget <= 2.3.1 - Sensitive Data Exposure Vulnerability |
| CVE-2025-31039 | 2025-06-09 | WordPress Category Icon plugin <= 1.0.2 - XML External Entity (XXE) vulnerability |
| CVE-2025-31022 | 2025-06-09 | WordPress PayU India plugin < 3.8.8 - Account Takeover vulnerability |