NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-8735	A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of th...	2025-08-08	3.3	LOCAL	LOW	NVD
CVE-2025-4796	The Eventin plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.0.34. This is due ...	2025-08-08	8.8	NETWORK	HIGH	NVD
CVE-2012-10053	Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP header. When a remote attacker s...	2025-08-08	9.3	NETWORK	CRITICAL	NVD
CVE-2012-10052	EGallery version 1.2 contains an unauthenticated arbitrary file upload vulnerability in the uploadify.php script. The application fails to validate fi...	2025-08-08	9.3	NETWORK	CRITICAL	NVD
CVE-2012-10051	Photodex ProShow Producer version 5.0.3256 contains a stack-based buffer overflow vulnerability in the handling of plugin load list files. When a spec...	2025-08-08	8.4	LOCAL	HIGH	NVD
CVE-2012-10050	CuteFlow version 2.11.2 and earlier contains an arbitrary file upload vulnerability in the restart_circulation_values_write.php script. The applicatio...	2025-08-08	9.3	NETWORK	CRITICAL	NVD
CVE-2012-10049	WebPageTest version 2.6 and earlier contains an arbitrary file upload vulnerability in the resultimage.php script. The application fails to validate o...	2025-08-08	9.3	NETWORK	CRITICAL	NVD
CVE-2012-10048	Zenoss Core 3.x contains a command injection vulnerability in the showDaemonXMLConfig endpoint. The daemon parameter is passed directly to a Popen() c...	2025-08-08	8.7	NETWORK	HIGH	NVD
CVE-2012-10047	Cyclope Employee Surveillance Solution versions 6.x is vulnerable to a SQL injection flaw in its login mechanism. The username parameter in the auth-l...	2025-08-08	10.0	NETWORK	CRITICAL	NVD
CVE-2012-10046	The E-Mail Security Virtual Appliance (ESVA) (tested on version ESVA_2057) contains an unauthenticated command injection vulnerability in the learn-ms...	2025-08-08	9.3	NETWORK	CRITICAL	NVD
CVE-2012-10045	XODA version 0.4.5 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitrary PHP code on the server. The...	2025-08-08	9.3	NETWORK	CRITICAL	NVD
CVE-2012-10044	MobileCartly version 1.0 contains an arbitrary file creation vulnerability in the savepage.php script. The application fails to perform authentication...	2025-08-08	10.0	NETWORK	CRITICAL	NVD
CVE-2012-10043	A stack-based buffer overflow vulnerability exists in ActFax Server version 4.32, specifically in the "Import Users from File" functionality of the cl...	2025-08-08	9.3	LOCAL	CRITICAL	NVD
CVE-2012-10042	Sflog! CMS 1.0 contains an authenticated arbitrary file upload vulnerability in the blog management interface. The application ships with default cred...	2025-08-08	8.7	NETWORK	HIGH	NVD
CVE-2012-10041	WAN Emulator v2.3 contains two unauthenticated command execution vulnerabilities. The result.php script calls shell_exec() with unsanitized input from...	2025-08-08	9.3	NETWORK	CRITICAL	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.