NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2024-58299	PCMan FTP Server 2.0 contains a buffer overflow vulnerability in the 'pwd' command that allows remote attackers to execute arbitrary code. Attackers c...	2025-12-12	9.8	NETWORK	CRITICAL	NVD
CVE-2024-14010	Typora 1.7.4 contains a command injection vulnerability in the PDF export preferences that allows attackers to execute arbitrary system commands. Atta...	2025-12-12	9.8	NETWORK	CRITICAL	NVD
CVE-2025-8082	Improper neutralization of the title date in the 'VDatePicker' component in Vuetify, allows unsanitized HTML to be inserted into the page. This can le...	2025-12-12	6.3	NETWORK	MEDIUM	NVD
CVE-2025-14571	A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the fi...	2025-12-12	7.3	NETWORK	HIGH	NVD
CVE-2025-14570	A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file ...	2025-12-12	7.3	NETWORK	HIGH	NVD
CVE-2025-14569	A vulnerability was detected in ggml-org whisper.cpp up to 1.8.2. Affected is the function read_audio_data of the file /whisper.cpp/examples/common-wh...	2025-12-12	5.3	LOCAL	MEDIUM	NVD
CVE-2025-14568	A security vulnerability has been detected in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This impacts an unknow...	2025-12-12	6.3	NETWORK	MEDIUM	NVD
CVE-2025-40345	In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automate...	2025-12-12	N/A	None	None	NVD
CVE-2025-67819	An issue was discovered in Weaviate OSS before 1.33.4. Due to a lack of validation of the fileName field in the transfer logic, an attacker who can ca...	2025-12-12	4.9	NETWORK	MEDIUM	NVD
CVE-2025-67818	An issue was discovered in Weaviate OSS before 1.33.4. An attacker with access to insert data into the database can craft an entry name with an absolu...	2025-12-12	7.2	NETWORK	HIGH	NVD
CVE-2025-67342	RuoYi versions 4.8.1 and earlier is affected by a stored XSS vulnerability in the /system/menu/edit endpoint. While the endpoint is protected by an XS...	2025-12-12	4.6	NETWORK	MEDIUM	NVD
CVE-2025-64011	Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference (IDOR) in the /core/preview endpoint. Any authenticated user can access p...	2025-12-12	4.3	NETWORK	MEDIUM	NVD
CVE-2023-29144	Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows a bypass of detection.	2025-12-12	3.3	LOCAL	LOW	NVD
CVE-2025-67344	jshERP v3.5 and earlier is affected by a stored Cross Site Scripting (XSS) vulnerability via the /msg/add endpoint.	2025-12-12	4.6	NETWORK	MEDIUM	NVD
CVE-2025-67341	jshERP versions 3.5 and earlier are affected by a stored XSS vulnerability. This vulnerability allows attackers to upload PDF files containing XSS pay...	2025-12-12	4.6	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.