NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-36744	SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and wait...	2025-12-12	2.4	PHYSICAL	LOW	NVD
CVE-2025-36743	SolarEdge SE3680H has an exposed debug/test interface accessible to unauthenticated actors, allowing disclosure of system internals and execution of d...	2025-12-12	8.6	PHYSICAL	HIGH	NVD
CVE-2025-13506	Execution with Unnecessary Privileges vulnerability in Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP allows Expanding Control over the ...	2025-12-12	8.8	NETWORK	HIGH	NVD
CVE-2025-14442	The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to sensitive information exposure due to storage of exported...	2025-12-12	5.3	NETWORK	MEDIUM	NVD
CVE-2025-14159	The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and inc...	2025-12-12	4.3	NETWORK	MEDIUM	NVD
CVE-2025-14065	The Simple Bike Rental plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'simpbire_carica_pre...	2025-12-12	5.3	NETWORK	MEDIUM	NVD
CVE-2025-14030	The AI Feeds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'aife_post_meta' shortcode in all versions up to, and including...	2025-12-12	6.4	NETWORK	MEDIUM	NVD
CVE-2025-12965	The Magical Posts Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'mpac_title_tag' parameter in the Magical Posts Ac...	2025-12-12	6.4	NETWORK	MEDIUM	NVD
CVE-2025-12408	The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Information Exposure in all versions up to, and incl...	2025-12-12	5.3	NETWORK	MEDIUM	NVD
CVE-2025-12407	The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, an...	2025-12-12	4.3	NETWORK	MEDIUM	NVD
CVE-2025-12841	The Bookit WordPress plugin before 2.5.1 has a publicly accessible REST endpoint that allows unauthenticated update of the plugins Stripe payment opti...	2025-12-12	5.3	NETWORK	MEDIUM	NVD
CVE-2025-12835	The WooMulti WordPress plugin through 17 does not validate a file parameter when deleting files, which could allow any authenticated users, such as su...	2025-12-12	7.3	NETWORK	HIGH	NVD
CVE-2025-58137	Authorization Bypass Through User-Controlled Key vulnerability in Apache Fineract. This issue affects Apache Fineract: through 1.11.0. The issue is f...	2025-12-12	8.1	NETWORK	HIGH	NVD
CVE-2025-58130	Insufficiently Protected Credentials vulnerability in Apache Fineract. This issue affects Apache Fineract: through 1.11.0. The issue is fixed in vers...	2025-12-12	9.1	NETWORK	CRITICAL	NVD
CVE-2025-26866	A remote code execution vulnerability exists where a malicious Raft node can exploit insecure Hessian deserialization within the PD store. The fix enf...	2025-12-12	8.8	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.