Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23873
Total
1707
Critical
7489
High
7624
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2025-60483 | MEDIUM | 5.5 | A NULL pointer dereference in the gf_ac4_pres_b_4_back_channels_present function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying … | Jun 01, 2026 |
| CVE-2025-60481 | MEDIUM | 5.5 | A NULL pointer dereference in the gf_odf_ac4_cfg_dsi_v1 function (/odf/descriptors.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying … | Jun 01, 2026 |
| CVE-2025-55664 | MEDIUM | 5.5 | A heap buffer overflow in the m2tsdmx_send_packet function (filters/dmx_m2ts.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a … | Jun 01, 2026 |
| CVE-2024-40646 | HIGH | 8.6 | Vertex is a management tool for PT (Private Tracker) users to manage streaming and watching videos. Versions prior to commit fbde301b97986d5913fc4bc95f5445750d282e11 are vulnerable to path … | Jun 01, 2026 |
| CVE-2026-9309 | MEDIUM | 5.4 | Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata. A malicious page could inject markup that changed Reader View behavior … | Jun 01, 2026 |
| CVE-2026-9308 | MEDIUM | 5.4 | Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeholders. A malicious page could include a placeholder string … | Jun 01, 2026 |
| CVE-2026-34193 | MEDIUM | 4.3 | Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a write of data outside the … | Jun 01, 2026 |
| CVE-2026-10532 | UNKNOWN | — | Deserialization of untrusted data vulnerability in QOS.CH Sarl logback logback-core (HardenedObjectInputStream (logback-core) modules) allows Object Injection, albeit heavily restricted. More precisely, an attacker able to … | Jun 01, 2026 |
| CVE-2026-10258 | MEDIUM | 6.3 | A weakness has been identified in itsourcecode Content Management System 1.0. Impacted is an unknown function of the file /admin/add_sub_topic.php. This manipulation of the argument … | Jun 01, 2026 |
| CVE-2026-10257 | MEDIUM | 6.3 | A security flaw has been discovered in itsourcecode Content Management System 1.0. This issue affects some unknown processing of the file /admin/update_ss_img.php. The manipulation of … | Jun 01, 2026 |
| CVE-2026-10256 | MEDIUM | 6.3 | A vulnerability was identified in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /save_comment.php. The manipulation of the argument Name … | Jun 01, 2026 |
| CVE-2026-10255 | MEDIUM | 5.3 | A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is the function sell_statement of the file application/controllers/ShowForm.php. … | Jun 01, 2026 |
| CVE-2026-10254 | MEDIUM | 5.3 | A flaw has been found in SourceCodester Pet Grooming Management Software 1.0. Affected is an unknown function of the file /admin/. This manipulation causes file … | Jun 01, 2026 |
| CVE-2026-10253 | HIGH | 7.3 | A vulnerability was detected in itsourcecode Online House Rental System 1.0. This impacts an unknown function of the file /manage_payment.php. The manipulation of the argument … | Jun 01, 2026 |
| CVE-2026-10252 | HIGH | 7.3 | A security vulnerability has been detected in itsourcecode Online House Rental System 1.0. This affects an unknown function of the file /manage_tenant.php. The manipulation of … | Jun 01, 2026 |
| CVE-2026-10251 | HIGH | 7.3 | A weakness has been identified in itsourcecode Online House Rental System 1.0. The impacted element is an unknown function of the file /ajax.php?action=login. Executing a … | Jun 01, 2026 |
| CVE-2026-49328 | MEDIUM | 5.3 | Server-Side Request Forgery (SSRF) in the UrlImageConverter component of Apache Fesod (Incubating) fesod-sheet before 2.0.2-incubating allows attackers to cause outbound network requests to internal or … | Jun 01, 2026 |
| CVE-2026-25600 | MEDIUM | 6.4 | The PDBM application relies on a static, hard‑coded secret embedded in the PDBM.exe executable. This secret is used by the application’s encryption routines, including the … | Jun 01, 2026 |
| CVE-2026-25599 | MEDIUM | 6.3 | Missing authentication and clear‑text transmission of data from the heat pumps to the control server, combined with the absence of input validation on aggregated data, … | Jun 01, 2026 |
| CVE-2026-10250 | HIGH | 7.3 | A security flaw has been discovered in itsourcecode Online Blood Bank Management System 1.0. The affected element is an unknown function of the file /admin/campsdetails.php. … | Jun 01, 2026 |
| CVE-2026-10249 | HIGH | 7.3 | A vulnerability was identified in itsourcecode Online Blood Bank Management System 1.0. Impacted is an unknown function of the file /admin/viewrequest.php. Such manipulation of the … | Jun 01, 2026 |
| CVE-2026-10248 | MEDIUM | 4.7 | A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System up to 1.0. This issue affects the function create_supplier of the file /Export_csv/export of … | Jun 01, 2026 |
| CVE-2026-10247 | LOW | 3.5 | A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This vulnerability affects the function create_generic_name of the file /ShowForm/create_generic_name/main. The manipulation of … | Jun 01, 2026 |
| CVE-2026-10246 | LOW | 3.5 | A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects the function create_medicine_presentation of the file /ShowForm/create_medicine_presentation/main. The manipulation of … | Jun 01, 2026 |
| CVE-2026-10245 | LOW | 3.5 | A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this issue is the function create_supplier of the file /ShowForm/create_supplier/main. … | Jun 01, 2026 |