Lista CVE - 2025 / Giugno
Visualizzazione 401 - 500 di 3683 CVE per Giugno 2025 (Pagina 5 di 37)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2025-5630 | 2025-06-05 | D-Link DIR-816 form2lansetup.cgi stack-based overflow |
| CVE-2025-5631 | 2025-06-05 | code-projects/anirbandutta9 Content Management System/News-Buzz publicposts.php sql injection |
| CVE-2025-5632 | 2025-06-05 | code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection |
| CVE-2025-5633 | 2025-06-05 | code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection |
| CVE-2025-5634 | 2025-06-05 | PCMan FTP Server NOOP Command buffer overflow |
| CVE-2025-5635 | 2025-06-05 | PCMan FTP Server PLS Command buffer overflow |
| CVE-2025-5636 | 2025-06-05 | PCMan FTP Server SET Command buffer overflow |
| CVE-2025-5637 | 2025-06-05 | PCMan FTP Server SYSTEM Command buffer overflow |
| CVE-2025-1793 | 2025-06-05 | SQL Injection in run-llama/llama_index |
| CVE-2025-5638 | 2025-06-05 | PHPGurukul Notice Board System admin-profile.php sql injection |
| CVE-2025-3054 | 2025-06-05 | WP User Frontend Pro <= 4.1.3 - Authenticated (Subscriber+) Arbitrary File Upload |
| CVE-2025-3055 | 2025-06-05 | WP User Frontend Pro <= 4.1.3 - Authenticated (Subscriber+) Arbitrary File Deletion |
| CVE-2025-5639 | 2025-06-05 | PHPGurukul Notice Board System forgot-password.php sql injection |
| CVE-2025-5683 | 2025-06-05 | When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4,... |
| CVE-2025-5640 | 2025-06-05 | PX4-Autopilot TRAJECTORY_REPRESENTATION_WAYPOINTS Message mavlink_receiver.cpp stack-based overflow |
| CVE-2025-5641 | 2025-06-05 | Radare2 radiff2 cons.c r_cons_is_breaked memory corruption |
| CVE-2025-5642 | 2025-06-05 | Radare2 radiff2 pal.c r_cons_pal_init memory corruption |
| CVE-2025-5643 | 2025-06-05 | Radare2 radiff2 cons.c cons_stack_load memory corruption |
| CVE-2025-5644 | 2025-06-05 | Radare2 radiff2 cons.c r_cons_flush use after free |
| CVE-2025-5645 | 2025-06-05 | Radare2 radiff2 pal.c r_cons_pal_init memory corruption |
| CVE-2025-5646 | 2025-06-05 | Radare2 radiff2 pal.c r_cons_rainbow_free memory corruption |
| CVE-2025-5647 | 2025-06-05 | Radare2 radiff2 cons.c r_cons_context_break_pop memory corruption |
| CVE-2025-5648 | 2025-06-05 | Radare2 radiff2 pal.c r_cons_pal_init memory corruption |
| CVE-2025-5649 | 2025-06-05 | SourceCodester Student Result Management System Register Interface new_user access control |
| CVE-2025-5650 | 2025-06-05 | 1000projects Online Notice Board register.php sql injection |
| CVE-2025-5651 | 2025-06-05 | code-projects Traffic Offense Reporting System saveuser.php cross site scripting |
| CVE-2025-5652 | 2025-06-05 | PHPGurukul Complaint Management System between-date-complaintreport.php sql injection |
| CVE-2025-4568 | 2025-06-05 | SQL Injection in 2ClickPortal |
| CVE-2025-5653 | 2025-06-05 | PHPGurukul Complaint Management System between-date-userreport.php sql injection |
| CVE-2025-5654 | 2025-06-05 | PHPGurukul Complaint Management System edit-state.php sql injection |
| CVE-2025-5655 | 2025-06-05 | PHPGurukul Complaint Management System edit-subcategory.php sql injection |
| CVE-2025-5701 | 2025-06-05 | HyperComments <= 1.2.2 - Unauthenticated (Subscriber+) Arbitrary Options Update |
| CVE-2025-5341 | 2025-06-05 | Forminator <= 1.44.1 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via id and data-size Parameters |
| CVE-2025-5656 | 2025-06-05 | PHPGurukul Complaint Management System edit-category.php sql injection |
| CVE-2011-10007 | 2025-06-05 | File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()` encounters a crafted file name |
| CVE-2025-5657 | 2025-06-05 | PHPGurukul Complaint Management System manage-users.php sql injection |
| CVE-2025-5658 | 2025-06-05 | PHPGurukul Complaint Management System updatecomplaint.php sql injection |
| CVE-2025-5659 | 2025-06-05 | PHPGurukul Complaint Management System profile.php sql injection |
| CVE-2025-5660 | 2025-06-05 | PHPGurukul Complaint Management System register-complaint.php sql injection |
| CVE-2025-30084 | 2025-06-05 | Extension - rsjoomla.com - Reflected XSS vulnerability RSMail! component 1.19.20-1.22.26 for Joomla |
| CVE-2025-27445 | 2025-06-05 | Extension - rsjoomla.com - A path traversal vulnerability RSFirewall component 2.9.7 - 3.1.5 for Joomla |
| CVE-2025-27753 | 2025-06-05 | Extension - rsjoomla.com - A SQLi vulnerability RSMediaGallery component 1.7.4 - 2.1.6 for Joomla |
| CVE-2025-27754 | 2025-06-05 | Extension - rsjoomla.com - A stored XSS vulnerability RSBlog! component 1.11.6 - 1.14.4 for Joomla |
| CVE-2025-5661 | 2025-06-05 | code-projects Traffic Offense Reporting System Setting save-settings.php cross site scripting |
| CVE-2025-3768 | 2025-06-05 | Improper access control in Tor network blocking feature in Devolutions Server 2025.1.10.0 and earlier allows an authenticated user to bypass the tor blocking feature when the Devolutions hosted endpoint is... |
| CVE-2025-5382 | 2025-06-05 | Improper access control in users MFA feature in Devolutions Server 2025.1.7.0 and earlier allows a user with user management permission to remove or change administrators MFA. |
| CVE-2025-0691 | 2025-06-05 | Improper access control in permissions component in Devolutions Server 2025.1.10.0 and earlier allows an authenticated user to bypass the "Edit permission" permission by bypassing the client side validation. |
| CVE-2025-5663 | 2025-06-05 | PHPGurukul Auto Taxi Stand Management System search-autoortaxi.php sql injection |
| CVE-2025-5664 | 2025-06-05 | FreeFloat FTP Server RESTART Command buffer overflow |
| CVE-2025-5665 | 2025-06-05 | FreeFloat FTP Server XCWD Command buffer overflow |
| CVE-2025-5666 | 2025-06-05 | FreeFloat FTP Server XMKD Command buffer overflow |
| CVE-2025-5667 | 2025-06-05 | FreeFloat FTP Server REIN Command buffer overflow |
| CVE-2025-5668 | 2025-06-05 | PHPGurukul Medical Card Generation System readenq.php sql injection |
| CVE-2025-5669 | 2025-06-05 | PHPGurukul Medical Card Generation System unreadenq.php sql injection |
| CVE-2025-48493 | 2025-06-05 | Yii 2 Redis may expose AUTH paramters in logs in case of connection failure |
| CVE-2025-49009 | 2025-06-05 | Para Inserts Sensitive Information into Log File for Facebook authentication |
| CVE-2025-5670 | 2025-06-05 | PHPGurukul Medical Card Generation System manage-card.php sql injection |
| CVE-2025-5671 | 2025-06-05 | TOTOLINK N302R Plus HTTP POST Request formPortFw buffer overflow |
| CVE-2025-5672 | 2025-06-05 | TOTOLINK N302R Plus HTTP POST Request formFilter buffer overflow |
| CVE-2025-46257 | 2025-06-05 | WordPress Element Pack Pro Plugin < 8.0.0 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-46258 | 2025-06-05 | WordPress Element Pack Pro Plugin < 8.0.0 - Broken Access Control vulnerability |
| CVE-2025-5674 | 2025-06-05 | code-projects Patient Record Management System urinalysis_form.php sql injection |
| CVE-2025-5702 | 2025-06-05 | The strcmp implementation optimized for the Power10 processor in the GNU C Library version 2.39 and later writes to vector registers v20 to v31 without saving contents from the caller... |
| CVE-2025-5675 | 2025-06-05 | Campcodes Online Teacher Record Management System bwdates-reports-details.php sql injection |
| CVE-2025-5676 | 2025-06-05 | Campcodes Online Recruitment Management System ajax.php sql injection |
| CVE-2025-5677 | 2025-06-05 | Campcodes Online Recruitment Management System ajax.php sql injection |
| CVE-2025-5679 | 2025-06-05 | Shenzhen Dashi Tongzhou Information Technology AgileBPM SysToolsController.java parseStrByFreeMarker deserialization |
| CVE-2025-5745 | 2025-06-05 | The strncmp implementation optimized for the Power10 processor in the GNU C Library version 2.40 and later writes to vector registers v20 to v31 without saving contents from the caller... |
| CVE-2025-5680 | 2025-06-05 | Shenzhen Dashi Tongzhou Information Technology AgileBPM Groovy Script SysScriptController.java executeScript deserialization |
| CVE-2025-43026 | 2025-06-05 | HP Support Assistant – Potential Escalation of Privilege |
| CVE-2025-5685 | 2025-06-05 | Tenda CH22 Natlimit formNatlimit stack-based overflow |
| CVE-2025-5693 | 2025-06-05 | PHPGurukul Human Metapneumovirus Testing Management System bwdates-report-result.php sql injection |
| CVE-2025-5694 | 2025-06-05 | PHPGurukul Human Metapneumovirus Testing Management System search-report-result.php sql injection |
| CVE-2025-48133 | 2025-06-05 | WordPress Uncanny Automator <= 6.4.0.2 - Broken Access Control Vulnerability |
| CVE-2025-47966 | 2025-06-05 | Power Automate Elevation of Privilege Vulnerability |
| CVE-2025-5695 | 2025-06-05 | Teledyne FLIR AX8 Backend subscriptions.php subscribe_to_alarm command injection |
| CVE-2025-5696 | 2025-06-05 | Brilliance Golden Link Secondary System rentChangeCheckInfoPage.htm sql injection |
| CVE-2025-5697 | 2025-06-05 | Brilliance Golden Link Secondary System tcCustDeferPosiQuery.htm sql injection |
| CVE-2025-5698 | 2025-06-05 | Brilliance Golden Link Secondary System logSelect.htm sql injection |
| CVE-2025-49012 | 2025-06-05 | Himmelblau's Name-Based Group Matching in `pam_allow_groups` Leads to Potential Security Bypass |
| CVE-2025-5704 | 2025-06-05 | code-projects Real Estate Property Management System User.php sql injection |
| CVE-2025-5705 | 2025-06-05 | code-projects Real Estate Property Management System Property.php sql injection |
| CVE-2025-49599 | 2025-06-06 | Huawei EG8141A5 devices through V5R019C00S100, EG8145V5 devices through V5R019C00S100, and EG8145V5-V2 devices through V5R021C00S184 allow the Epuser account to disable ONT firewall functionality, e.g., to remove the default blocking of... |
| CVE-2025-5706 | 2025-06-06 | PHPGurukul Human Metapneumovirus Testing Management System new-user-testing.php sql injection |
| CVE-2025-5707 | 2025-06-06 | PHPGurukul Human Metapneumovirus Testing Management System registered-user-testing.php sql injection |
| CVE-2025-5708 | 2025-06-06 | code-projects Real Estate Property Management System NewsReport.php sql injection |
| CVE-2024-22330 | 2025-06-06 | IBM Security Verify Governance information disclosure |
| CVE-2024-56342 | 2025-06-06 | IBM Verify Identity Access Digital Credentials information disclosure |
| CVE-2024-56343 | 2025-06-06 | IBM Verify Identity Access Digital Credentials denial of service |
| CVE-2025-5709 | 2025-06-06 | code-projects Real Estate Property Management System InsertCategory.php sql injection |
| CVE-2025-5710 | 2025-06-06 | code-projects Real Estate Property Management System InsertState.php sql injection |
| CVE-2025-5711 | 2025-06-06 | code-projects Real Estate Property Management System InsertCity.php sql injection |
| CVE-2025-5712 | 2025-06-06 | SourceCodester Open Source Clinic Management System appointment.php sql injection |
| CVE-2025-5713 | 2025-06-06 | SoluçõesCoop iSoluçõesWEB Flow fluxos-dashboard cross site scripting |
| CVE-2025-5714 | 2025-06-06 | SoluçõesCoop iSoluçõesWEB Profile Information Update up.upload.php path traversal |
| CVE-2025-5715 | 2025-06-06 | Signal App Biometric Authentication missing critical step in authentication |
| CVE-2024-46941 | 2025-06-06 | SystemUI component protection settings vulnerability |
| CVE-2025-5716 | 2025-06-06 | SourceCodester Open Source Clinic Management System login.php sql injection |
| CVE-2025-5719 | 2025-06-06 | The wallet has an authentication bypass vulnerability that allows access to specific pages. |
| CVE-2025-5733 | 2025-06-06 | Modern Events Calendar <= 7.21.9 - Information Exposure |