NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-5921	The SureForms WordPress plugin before 1.7.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cr...	2025-08-01	5.8	NETWORK	MEDIUM	NVD
CVE-2025-54939	LiteSpeed QUIC (LSQUIC) Library before 4.3.1 has an lsquic_engine_packet_in memory leak.	2025-08-01	5.3	NETWORK	MEDIUM	NVD
CVE-2025-31716	In bootloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional ex...	2025-08-01	5.1	LOCAL	MEDIUM	NVD
CVE-2025-8435	A vulnerability was found in code-projects Online Movie Streaming 1.0. It has been declared as critical. Affected by this vulnerability is an unknown ...	2025-08-01	7.3	NETWORK	HIGH	NVD
CVE-2025-7845	The Stratum – Elementor Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Advanced Google Maps and Image Hots...	2025-08-01	6.4	NETWORK	MEDIUM	NVD
CVE-2025-7725	The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal or Stripe, Social Share Buttons, Ope...	2025-08-01	7.2	NETWORK	HIGH	NVD
CVE-2025-7443	The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnera...	2025-08-01	8.1	NETWORK	HIGH	NVD
CVE-2025-4523	The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to unauthorized access of data due to a missing c...	2025-08-01	6.5	NETWORK	MEDIUM	NVD
CVE-2025-8434	A vulnerability was found in code-projects Online Movie Streaming 1.0. It has been classified as critical. Affected is an unknown function of the file...	2025-08-01	7.3	NETWORK	HIGH	NVD
CVE-2025-8433	A vulnerability was found in code-projects Document Management System 1.0 and classified as critical. This issue affects the function unlink of the fi...	2025-08-01	5.4	NETWORK	MEDIUM	NVD
CVE-2025-5947	The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via authentication bypass in all versions up to, and including,...	2025-08-01	9.8	NETWORK	CRITICAL	NVD
CVE-2025-53399	In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inj...	2025-08-01	6.9	NETWORK	MEDIUM	NVD
CVE-2019-19145	Quantum SuperLoader 3 V94.0 005E.0h devices allow attackers to access the hardcoded fa account because there are only 65536 possible passwords.	2025-08-01	5.8	NETWORK	MEDIUM	NVD
CVE-2025-5954	The Service Finder SMS System plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2....	2025-08-01	9.8	NETWORK	CRITICAL	NVD
CVE-2025-8431	A vulnerability has been found in PHPGurukul Boat Booking System 1.0 and classified as critical. This vulnerability affects unknown code of the file /...	2025-08-01	7.3	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.