Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-3620 |
Description: Use after free in USB in Google Chrome prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
EPSS Score: 0.12%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-3619 |
Description: Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
EPSS Score: 0.19%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-29710 |
Description: SourceCodester Company Website CMS 1.0 is vulnerable to Cross Site Scripting (XSS) via /dashboard/Services.
EPSS Score: 0.02%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-29709 |
Description: SourceCodester Company Website CMS 1.0 has a File upload vulnerability via the "Create portfolio" file /dashboard/portfolio.
EPSS Score: 0.04%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-29708 |
Description: SourceCodester Company Website CMS 1.0 contains a file upload vulnerability via the "Create Services" file /dashboard/Services.
EPSS Score: 0.04%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-29653 |
Description: SQL Injection vulnerability exists in the TP-Link M7450 4G LTE Mobile Wi-Fi Router Firmware Version: 1.0.2 Build 170306 Rel.1015n, allowing an unauthenticated attacker to inject malicious SQL statements via the username and password fields.
EPSS Score: 0.04%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-29652 |
Description: SQL Injection vulnerability exists in the TP-Link M7000 4G LTE Mobile Wi-Fi Router Firmware Version: 1.0.7 Build 180127 Rel.55998n, allowing an unauthenticated attacker to inject malicious SQL statements via the username and password fields
EPSS Score: 0.04%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-29651 |
Description: SQL Injection vulnerability exists in the TP-Link M7650 4G LTE Mobile Wi-Fi Router Firmware Version: 1.0.7 Build 170623 Rel.1022n, allowing an unauthenticated attacker to inject malicious SQL statements via the username and password fields.
EPSS Score: 0.04%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-28072 |
PHPGurukul Pre-School Enrollment System is vulnerable to Directory Traversal in manage-teachers.php.
Description: PHPGurukul Pre-School Enrollment System is vulnerable to Directory Traversal in manage-teachers.php.
EPSS Score: 0.16%
April 16th, 2025 (4 days ago)
|
|
CVE-2025-26153 |
Description: A Stored XSS vulnerability exists in the message compose feature of Chamilo LMS 1.11.28. Attackers can inject malicious scripts into messages, which execute when victims, such as administrators, reply to the message.
EPSS Score: 0.02%
April 16th, 2025 (4 days ago)
|