Total
34640 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-34537 | 1 Typo3 | 1 Typo3 | 2025-09-03 | N/A | 4.9 MEDIUM |
|
TYPO3 before 13.3.1 allows denial of service (interface error) in the Bookmark Toolbar (ext:backend), exploitable by an administrator-level backend user account via manipulated data saved in the bookmark toolbar of the backend user interface. The fixed versions are 10.4.46 ELTS, 11.5.40 LTS, 12.4.21 LTS, and 13.3.1.
|
|||||
| CVE-2025-9461 | 1 Diyhi | 1 Bbs | 2025-09-03 | 4.0 MEDIUM | 4.3 MEDIUM |
|
A weakness has been identified in diyhi bbs up to 6.8. The impacted element is an unknown function of the file src/main/java/cms/web/action/filePackage/FilePackageManageAction.java of the component File Compression Handler. This manipulation of the argument idGroup causes information disclosure. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited.
|
|||||
| CVE-2025-3831 | 1 Checkpoint | 1 Harmony Sase | 2025-09-03 | N/A | 8.1 HIGH |
|
Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties.
|
|||||
| CVE-2025-33051 | 1 Microsoft | 1 Exchange Server | 2025-09-03 | N/A | 7.5 HIGH |
|
Exposure of sensitive information to an unauthorized actor in Microsoft Exchange Server allows an unauthorized attacker to disclose information over a network.
|
|||||
| CVE-2025-46762 | 1 Apache | 1 Parquet | 2025-09-02 | N/A | 8.1 HIGH |
|
Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code.
While 1.15.1 introduced a fix to restrict untrusted packages, the default setting of trusted packages still allows malicious classes from these packages to be executed.
The exploit is only applicable if the client code of parquet-avro uses the "specific" or the "reflect" models deliberately for reading Parquet files. ("generic" model is not impacted)
Users are ...
Show More |
|||||
| CVE-2025-3735 | 1 Panelizer \(obsolete\) Project | 1 Panelizer \(obsolete\) | 2025-09-02 | N/A | 5.9 MEDIUM |
|
Vulnerability in Drupal Panelizer (obsolete).This issue affects Panelizer (obsolete): *.*.
|
|||||
| CVE-2025-3736 | 1 Simple Gtm Project | 1 Simple Gtm | 2025-09-02 | N/A | 5.9 MEDIUM |
|
Vulnerability in Drupal Simple GTM.This issue affects Simple GTM: *.*.
|
|||||
| CVE-2025-3737 | 1 Google Maps\ | 1 Store Locator Project | 2025-09-02 | N/A | 5.9 MEDIUM |
|
Vulnerability in Drupal Google Maps: Store Locator.This issue affects Google Maps: Store Locator: *.*.
|
|||||
| CVE-2025-3738 | 1 Google Optimize Project | 1 Google Optimize | 2025-09-02 | N/A | 5.9 MEDIUM |
|
Vulnerability in Drupal Google Optimize.This issue affects Google Optimize: *.*.
|
|||||
| CVE-2025-3903 | 1 Ueditor Project | 1 Ueditor | 2025-09-02 | N/A | 7.3 HIGH |
|
Vulnerability in Drupal UEditor - 百度编辑器.This issue affects UEditor - 百度编辑器: *.*.
|
|||||
| CVE-2025-3904 | 1 Sportsleague Project | 1 Sportsleague | 2025-09-02 | N/A | 7.3 HIGH |
|
Vulnerability in Drupal Sportsleague.This issue affects Sportsleague: *.*.
|
|||||
| CVE-2025-3060 | 1 Flattern Project | 1 Flattern | 2025-09-02 | N/A | 6.6 MEDIUM |
|
Vulnerability in Drupal Flattern – Multipurpose Bootstrap Business Profile.This issue affects Flattern – Multipurpose Bootstrap Business Profile: *.*.
|
|||||
| CVE-2024-13299 | 1 Boozallen | 1 Megamenu Framework | 2025-09-02 | N/A | 6.6 MEDIUM |
|
Vulnerability in Drupal Megamenu Framework.This issue affects Megamenu Framework: *.*.
|
|||||
| CVE-2024-13300 | 1 Print Anything Project | 1 Print Anything | 2025-09-02 | N/A | 6.6 MEDIUM |
|
Vulnerability in Drupal Print Anything.This issue affects Print Anything: *.*.
|
|||||
| CVE-2024-13310 | 1 Git Utilities Project | 1 Git Utilities | 2025-09-02 | N/A | 6.5 MEDIUM |
|
Vulnerability in Drupal Git Utilities for Drupal.This issue affects Git Utilities for Drupal: *.*.
|
|||||
| CVE-2024-13311 | 1 Allow All File Extensions For File Fields Project | 1 Allow All File Extensions For File Fields | 2025-09-02 | N/A | 7.3 HIGH |
|
Vulnerability in Drupal Allow All File Extensions for file fields.This issue affects Allow All File Extensions for file fields: *.*.
|
|||||
| CVE-2024-13285 | 1 Wkhtmltopdf | 1 Wkhtmltopdf | 2025-09-02 | N/A | 9.8 CRITICAL |
|
Vulnerability in Drupal wkhtmltopdf.This issue affects wkhtmltopdf: *.*.
|
|||||
| CVE-2020-17159 | 1 Redhat | 1 Language Support For Java | 2025-08-28 | 6.8 MEDIUM | 7.8 HIGH |
|
Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17158 | 1 Microsoft | 1 Dynamics 365 | 2025-08-28 | 6.5 MEDIUM | 8.8 HIGH |
|
Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17156 | 1 Microsoft | 2 Visual Studio 2017, Visual Studio 2019 | 2025-08-28 | 6.8 MEDIUM | 7.8 HIGH |
|
Visual Studio Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17153 | 1 Microsoft | 1 Edge | 2025-08-28 | 5.8 MEDIUM | 4.3 MEDIUM |
|
Microsoft Edge for Android Spoofing Vulnerability
|
|||||
| CVE-2020-17152 | 1 Microsoft | 1 Dynamics 365 | 2025-08-28 | 6.5 MEDIUM | 8.8 HIGH |
|
Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17150 | 1 Microsoft | 1 Tslint | 2025-08-28 | 6.8 MEDIUM | 7.8 HIGH |
|
Visual Studio Code Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17148 | 1 Microsoft | 1 Visual Studio Code | 2025-08-28 | 6.8 MEDIUM | 7.8 HIGH |
|
Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17145 | 1 Microsoft | 2 Azure Devops Server, Team Foundation Server | 2025-08-28 | 4.9 MEDIUM | 5.4 MEDIUM |
|
Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
|
|||||
| CVE-2020-17143 | 1 Microsoft | 1 Exchange Server | 2025-08-28 | 6.5 MEDIUM | 8.8 HIGH |
|
Microsoft Exchange Server Information Disclosure Vulnerability
|
|||||
| CVE-2020-17142 | 1 Microsoft | 1 Exchange Server | 2025-08-28 | 6.5 MEDIUM | 9.1 CRITICAL |
|
Microsoft Exchange Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17141 | 1 Microsoft | 1 Exchange Server | 2025-08-28 | 6.0 MEDIUM | 8.4 HIGH |
|
Microsoft Exchange Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17140 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2025-08-28 | 4.0 MEDIUM | 8.1 HIGH |
|
Windows SMB Information Disclosure Vulnerability
|
|||||
| CVE-2020-17139 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2025-08-28 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows Overlay Filter Security Feature Bypass Vulnerability
|
|||||
| CVE-2020-17138 | 1 Microsoft | 2 Windows 10, Windows Server 2016 | 2025-08-28 | 2.1 LOW | 5.5 MEDIUM |
|
Windows Error Reporting Information Disclosure Vulnerability
|
|||||
| CVE-2020-17137 | 1 Microsoft | 2 Windows 10, Windows Server 2016 | 2025-08-28 | 4.6 MEDIUM | 7.8 HIGH |
|
DirectX Graphics Kernel Elevation of Privilege Vulnerability
|
|||||
| CVE-2020-17136 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2025-08-28 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
|
|||||
| CVE-2020-17135 | 1 Microsoft | 1 Azure Devops Server | 2025-08-28 | 4.9 MEDIUM | 6.4 MEDIUM |
|
Azure DevOps Server Spoofing Vulnerability
|
|||||
| CVE-2020-17134 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2025-08-28 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
|
|||||
| CVE-2020-17133 | 1 Microsoft | 1 Dynamics Nav | 2025-08-28 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability
|
|||||
| CVE-2020-17132 | 1 Microsoft | 1 Exchange Server | 2025-08-28 | 6.5 MEDIUM | 9.1 CRITICAL |
|
Microsoft Exchange Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17130 | 1 Microsoft | 2 365 Apps, Excel | 2025-08-28 | 6.0 MEDIUM | 6.5 MEDIUM |
|
Microsoft Excel Security Feature Bypass Vulnerability
|
|||||
| CVE-2020-17129 | 1 Microsoft | 5 365 Apps, Excel, Office and 2 more | 2025-08-28 | 9.3 HIGH | 7.8 HIGH |
|
Microsoft Excel Remote Code Execution Vulnerability
|
|||||
| CVE-2020-17128 | 1 Microsoft | 5 365 Apps, Excel, Office and 2 more | 2025-08-28 | 9.3 HIGH | 7.8 HIGH |
|
Microsoft Excel Remote Code Execution Vulnerability
|
|||||