NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-14247	A vulnerability was determined in code-projects Simple Shopping Cart 1.0. This issue affects some unknown processing of the file /Admin/additems.php. ...	2025-12-08	6.3	NETWORK	MEDIUM	NVD
CVE-2025-14246	A vulnerability was found in code-projects Simple Shopping Cart 1.0. This vulnerability affects unknown code of the file /Customers/settings.php. Perf...	2025-12-08	6.3	NETWORK	MEDIUM	NVD
CVE-2025-42620	In affected versions, vulnerability-lookup handled user-controlled content in comments and bundles in an unsafe way, which could lead to stored Cros...	2025-12-08	8.3	NETWORK	HIGH	NVD
CVE-2025-42616	Some endpoints in vulnerability-lookup that modified application state (e.g. changing database entries, user data, configurations, or other privileg...	2025-12-08	7.0	NETWORK	HIGH	NVD
CVE-2025-14245	A vulnerability has been found in IdeaCMS up to 1.8. This affects the function whereRaw of the file app/common/logic/index/Coupon.php. Such manipulati...	2025-12-08	7.3	NETWORK	HIGH	NVD
CVE-2025-42615	In affected versions, vulnerability-lookup did not track or limit failed One-Time Password (OTP) attempts during Two-Factor Authentication (2FA) ver...	2025-12-08	8.1	NETWORK	HIGH	NVD
CVE-2025-14244	A flaw has been found in GreenCMS 2.3.0603. Affected by this issue is some unknown functionality of the file /Admin/Controller/CustomController.class....	2025-12-08	2.4	NETWORK	LOW	NVD
CVE-2025-14230	A vulnerability was detected in code-projects Daily Time Recording System 4.5.0. The impacted element is an unknown function of the file /admin/add_pa...	2025-12-08	6.3	NETWORK	MEDIUM	NVD
CVE-2025-14229	A security vulnerability has been detected in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the compo...	2025-12-08	4.7	NETWORK	MEDIUM	NVD
CVE-2025-14228	A weakness has been identified in Yealink SIP-T21P E2 52.84.0.15. Impacted is an unknown function of the component Local Directory Page. This manipula...	2025-12-08	3.5	NETWORK	LOW	NVD
CVE-2025-66461	FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers two Windows services with unquoted file paths. A user may execute arbitrary co...	2025-12-08	8.4	LOCAL	HIGH	NVD
CVE-2025-27020	Improper configuration of the SSH service in Infinera MTC-9 allows an unauthenticated attacker to execute arbitrary commands and access data on file s...	2025-12-08	9.8	NETWORK	CRITICAL	NVD
CVE-2025-27019	Remote shell service (RSH) in Infinera MTC-9 version R22.1.1.0275 allows an attacker to utilize password-less user accounts and obtain system access...	2025-12-08	9.8	NETWORK	CRITICAL	NVD
CVE-2025-14262	A wrong permission check in KNIME Business Hub before version 1.17.0 allowed an authenticated user to save jobs of other users as if there were saved ...	2025-12-08	5.3	NETWORK	MEDIUM	NVD
CVE-2025-14227	A security flaw has been discovered in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d958. This issue affects some unknown proc...	2025-12-08	6.3	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.