Lista CVE - 2025 / Agosto
Visualizzazione 3601 - 3631 di 3631 CVE per Agosto 2025 (Pagina 37 di 37)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2025-9722 | 2025-08-31 | Portabilis i-Educar educar_tipo_ocorrencia_disciplinar_cad.php cross site scripting |
| CVE-2025-9723 | 2025-08-31 | Portabilis i-Educar educar_tipo_regime_cad.php cross site scripting |
| CVE-2025-9724 | 2025-08-31 | Portabilis i-Educar educar_nivel_ensino_cad.php cross site scripting |
| CVE-2025-9725 | 2025-08-31 | Cudy LT500E Web shadow hard-coded password |
| CVE-2025-9726 | 2025-08-31 | Campcodes Farm Management System review.php sql injection |
| CVE-2025-9727 | 2025-08-31 | D-Link DIR-816L soap.cgi soapcgi_main os command injection |
| CVE-2025-9728 | 2025-08-31 | givanz Vvveb login.tpl cross site scripting |
| CVE-2025-9729 | 2025-08-31 | PHPGurukul Online Course Registration student-registration.php sql injection |
| CVE-2025-9730 | 2025-08-31 | itsourcecode Apartment Management System updateProfile.php sql injection |
| CVE-2025-9731 | 2025-08-31 | Tenda AC9 Administrative shadow hard-coded credentials |
| CVE-2025-9732 | 2025-08-31 | DCMTK dcm2img diybrpxt.h memory corruption |
| CVE-2025-9733 | 2025-08-31 | code-projects Human Resource Integrated System login_timeee.php sql injection |
| CVE-2025-9734 | 2025-08-31 | O2OA Personal Profile stat cross site scripting |
| CVE-2025-9735 | 2025-08-31 | O2OA Personal Profile table cross site scripting |
| CVE-2025-9736 | 2025-08-31 | O2OA Personal Profile statement cross site scripting |
| CVE-2025-9737 | 2025-08-31 | O2OA Personal Profile importmodel cross site scripting |
| CVE-2025-9738 | 2025-08-31 | Portabilis i-Educar educar_tipo_ensino_cad.php cross site scripting |
| CVE-2025-9739 | 2025-08-31 | Campcodes Online Water Billing System process.php sql injection |
| CVE-2025-9740 | 2025-08-31 | code-projects Human Resource Integrated System log_query.php sql injection |
| CVE-2025-9741 | 2025-08-31 | code-projects Human Resource Integrated System login_query12.php sql injection |
| CVE-2025-9742 | 2025-08-31 | code-projects Human Resource Integrated System login.php sql injection |
| CVE-2025-9743 | 2025-08-31 | code-projects Human Resource Integrated System login_attendance2.php sql injection |
| CVE-2025-9744 | 2025-08-31 | Campcodes Online Loan Management System ajax.php sql injection |
| CVE-2025-9745 | 2025-08-31 | D-Link DI-500WF jhttpd version_upgrade.asp os command injection |
| CVE-2025-9746 | 2025-08-31 | Campcodes Hospital Management System Edit Doctor Specialization edit-doctor-specialization.php cross site scripting |
| CVE-2025-9747 | 2025-08-31 | Koillection csrf_protection_controller.js cross-site request forgery |
| CVE-2025-9748 | 2025-08-31 | Tenda CH22 httpd IPSECsave fromIpsecitem stack-based overflow |
| CVE-2025-9749 | 2025-08-31 | HKritesh009 Grocery List Management Web App update.php sql injection |
| CVE-2025-9750 | 2025-08-31 | Campcodes Online Learning Management System login.php sql injection |
| CVE-2025-9751 | 2025-08-31 | Campcodes Online Learning Management System login.php sql injection |
| CVE-2025-9752 | 2025-09-01 | D-Link DIR-852 SOAP Service soap.cgi soapcgi_main os command injection |
| CVE-2025-9753 | 2025-09-01 | Campcodes Online Hospital Management System Patient Search patient-search.php cross site scripting |
| CVE-2025-9754 | 2025-09-01 | Campcodes Online Hospital Management System Edit Profile edit-profile.php cross site scripting |
| CVE-2025-9755 | 2025-09-01 | Khanakag-17 Library Management System index.php cross site scripting |
| CVE-2025-9756 | 2025-09-01 | PHPGurukul User Management System change-emailid.php sql injection |
| CVE-2025-9757 | 2025-09-01 | Campcodes/SourceCodester Courier Management System ajax.php login sql injection |
| CVE-2025-9567 | 2025-09-01 | Sunnet|eHRD CTMS - Reflected Cross-site Scripting |
| CVE-2025-9568 | 2025-09-01 | Sunnet|eHRD CTMS - Reflected Cross-site Scripting |
| CVE-2025-9569 | 2025-09-01 | Sunnet|eHRD CTMS - Reflected Cross-site Scripting |
| CVE-2025-9570 | 2025-09-01 | Sunnet|eHRD CTMS - Arbitrary File Reading through Path Traversal |
| CVE-2025-9758 | 2025-09-01 | deepakmisal24 Chemical Inventory Management System inventory_form.php sql injection |
| CVE-2025-9759 | 2025-09-01 | Campcodes/SourceCodester Courier Management System ajax.php signup sql injection |
| CVE-2025-7405 | 2025-09-01 | Information Disclosure, Information Tampering, and Denial of Service (DoS) Vulnerability in MELSEC iQ-F Series CPU module |
| CVE-2025-7731 | 2025-09-01 | Information Disclosure Vulnerability in MELSEC iQ-F Series CPU module |
| CVE-2025-9760 | 2025-09-01 | Portabilis i-Educar Matricula API matricula improper authorization |
| CVE-2025-9761 | 2025-09-01 | Campcodes Online Feeds Product Inventory System Login index.php sql injection |
| CVE-2025-9763 | 2025-09-01 | Campcodes Online Learning Management System student_signup.php sql injection |
| CVE-2025-6507 | 2025-09-01 | Deserialization of Untrusted Data in h2oai/h2o-3 |
| CVE-2025-20708 | 2025-09-01 | In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a UE has connected to... |
| CVE-2025-20703 | 2025-09-01 | In Modem, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service, if a UE has connected to... |
| CVE-2025-20704 | 2025-09-01 | In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to... |
| CVE-2025-20705 | 2025-09-01 | In monitor_hang, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System... |
| CVE-2025-20706 | 2025-09-01 | In mbrain, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System... |
| CVE-2025-20707 | 2025-09-01 | In geniezone, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System... |
| CVE-2025-54857 | 2025-09-01 | Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in SkyBridge BASIC MB-A130 Ver.1.5.8 and earlier. If exploited, a remote unauthenticated attacker may execute... |
| CVE-2025-9764 | 2025-09-01 | itsourcecode Sports Management System resultdetails.php sql injection |
| CVE-2025-9765 | 2025-09-01 | itsourcecode Sports Management System tournament_details.php sql injection |
| CVE-2025-9766 | 2025-09-01 | itsourcecode Sports Management System facilitator.php sql injection |
| CVE-2025-9767 | 2025-09-01 | itsourcecode Sports Management System sporttype.php sql injection |
| CVE-2025-58318 | 2025-09-01 | DIAView - Authentication Bypass Vulnerability |
| CVE-2022-38691 | 2025-09-01 | In BootROM, there is a possible missing validation for Certificate Type 0. This could lead to local escalation of privilege with no additional execution privileges needed. |
| CVE-2022-38692 | 2025-09-01 | In BootROM, there is a missing size check for RSA keys in Certificate Type 0 validation. This could lead to memory buffer overflow without requiring additional execution privileges. |
| CVE-2022-38693 | 2025-09-01 | In FDL1, there is a possible missing payload size check. This could lead to memory buffer overflow without requiring additional execution privileges. |
| CVE-2022-38694 | 2025-09-01 | In BootRom, there is a possible unchecked write address. This could lead to local escalation of privilege with no additional execution privileges needed. |
| CVE-2022-38695 | 2025-09-01 | In BootRom, there's a possible unchecked command index. This could lead to local escalation of privilege with no additional execution privileges needed. |
| CVE-2022-38696 | 2025-09-01 | In BootRom, there's a possible missing payload size check. This could lead to memory buffer overflow without requiring additional execution privileges. |
| CVE-2025-9768 | 2025-09-01 | itsourcecode Sports Management System mode.php sql injection |
| CVE-2025-9769 | 2025-09-01 | D-Link DI-7400G+ mng_platform.asp sub_478D28 command injection |
| CVE-2025-9770 | 2025-09-01 | Campcodes Hospital Management System Admin Dashboard Login admin sql injection |
| CVE-2025-9771 | 2025-09-01 | SourceCodester Eye Clinic Management System search_index_Diagnosis.php sql injection |
| CVE-2025-9772 | 2025-09-01 | RemoteClinic edit.php unrestricted upload |
| CVE-2025-9773 | 2025-09-01 | RemoteClinic edit.php cross site scripting |
| CVE-2025-9774 | 2025-09-01 | RemoteClinic edit-patient.php information disclosure |
| CVE-2025-9775 | 2025-09-01 | RemoteClinic edit-my-profile.php unrestricted upload |
| CVE-2025-36133 | 2025-09-01 | IBM App Connect Enterprise information disclosure |
| CVE-2025-9778 | 2025-09-01 | Tenda W12 Administrative shadow hard-coded credentials |
| CVE-2024-12914 | 2025-09-01 | XSS in Akinsoft's QR Menu |
| CVE-2025-9779 | 2025-09-01 | TOTOLINK A702R formFilter sub_4162DC buffer overflow |
| CVE-2024-12924 | 2025-09-01 | Open Redirect in Akinsoft's QR Menu |
| CVE-2024-12925 | 2025-09-01 | Host Header Injection in Akinsoft's QR Menu |
| CVE-2025-0610 | 2025-09-01 | CSRF in Akinsoft's QR Menu |
| CVE-2025-2412 | 2025-09-01 | OTP Bypass in Akinsoft's QR Menu |
| CVE-2025-9780 | 2025-09-01 | TOTOLINK A702R formIpQoS sub_419BE0 buffer overflow |
| CVE-2025-9781 | 2025-09-01 | TOTOLINK A702R formFilter sub_4162DC buffer overflow |
| CVE-2025-9782 | 2025-09-01 | TOTOLINK A702R formOneKeyAccessButton sub_4466F8 buffer overflow |
| CVE-2025-33102 | 2025-09-01 | IBM Concert Software information disclosure |
| CVE-2025-33099 | 2025-09-01 | IBM Concert Software information disclosure |
| CVE-2025-33084 | 2025-09-01 | IBM Concert Software information disclosure |
| CVE-2025-33083 | 2025-09-01 | IBM Concert Software cross-site scripting |
| CVE-2025-33082 | 2025-09-01 | IBM Concert Software cross-site scripting |
| CVE-2025-0656 | 2025-09-01 | IBM Concert Software cross-site scripting |
| CVE-2025-9783 | 2025-09-01 | TOTOLINK A702R formParentControl sub_418030 buffer overflow |
| CVE-2025-9786 | 2025-09-01 | Campcodes Online Learning Management System teacher_signup.php sql injection |
| CVE-2025-55007 | 2025-09-01 | Knowage vulnerable to server-side request forgery |
| CVE-2025-57799 | 2025-09-01 | StreamVault can perform remote command execution |
| CVE-2025-9375 | 2025-09-01 | xmltodict 0.14.2 - XML Injection |
| CVE-2025-9788 | 2025-09-01 | SourceCodester/Campcodes School Log Management System admin_class.php sql injection |
| CVE-2025-9789 | 2025-09-01 | SourceCodester Online Hotel Reservation System edituser.php sql injection |
| CVE-2025-3586 | 2025-09-01 | In Liferay Portal 7.4.3.27 through 7.4.3.42, and Liferay DXP 2024.Q1.1 through 2024.Q1.20, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 27 through update 42 (Liferay PaaS, and Liferay Self-Hosted), the... |
| CVE-2025-9790 | 2025-09-01 | SourceCodester Hotel Reservation System updateabout.php sql injection |