NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2024-58283	WBCE CMS version 1.6.2 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files through the El...	2025-12-10	8.7	NETWORK	HIGH	NVD
CVE-2024-58282	Serendipity 2.5.0 contains a remote code execution vulnerability that allows authenticated administrators to upload malicious PHP files through the me...	2025-12-10	8.6	NETWORK	HIGH	NVD
CVE-2024-58281	Dotclear 2.29 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files through the media uploa...	2025-12-10	8.7	NETWORK	HIGH	NVD
CVE-2024-58280	CMSimple 5.15 contains a remote command execution vulnerability that allows authenticated attackers to modify file extensions and upload malicious PHP...	2025-12-10	8.6	NETWORK	HIGH	NVD
CVE-2024-58279	appRain CMF 4.0.5 contains an authenticated remote code execution vulnerability that allows administrative users to upload malicious PHP files through...	2025-12-10	8.6	NETWORK	HIGH	NVD
CVE-2023-53776	Screen SFT DAB 1.9.3 contains an authentication bypass vulnerability that allows attackers to exploit weak session management by reusing IP-bound sess...	2025-12-10	8.7	ADJACENT	HIGH	NVD
CVE-2023-53775	Screen SFT DAB 1.9.3 contains an authentication bypass vulnerability that allows attackers to change user passwords by exploiting weak session managem...	2025-12-10	7.1	ADJACENT	HIGH	NVD
CVE-2025-67461	External control of file name or path in Zoom Rooms for macOS before version 6.6.0 may allow an authenticated user to conduct a disclosure of informat...	2025-12-10	5.0	LOCAL	MEDIUM	NVD
CVE-2025-67460	Protection Mechanism Failure of Software Downgrade in Zoom Rooms for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation o...	2025-12-10	7.8	LOCAL	HIGH	NVD
CVE-2025-65950	WBCE CMS is a content management system. In versions 1.6.4 and below, the user management module allows a low-privileged authenticated user with permi...	2025-12-10	9.4	NETWORK	CRITICAL	NVD
CVE-2025-65832	The mobile application insecurely handles information stored within memory. By performing a memory dump on the application after a user has logged out...	2025-12-10	4.6	PHYSICAL	MEDIUM	NVD
CVE-2025-65831	The application uses an insecure hashing algorithm (MD5) to hash passwords. If an attacker obtained a copy of these hashes, either through exploiting ...	2025-12-10	7.5	NETWORK	HIGH	NVD
CVE-2025-65830	Due to a lack of certificate validation, all traffic from the mobile application can be intercepted. As a result, an adversary located "upstream" can ...	2025-12-10	9.1	NETWORK	CRITICAL	NVD
CVE-2025-65829	The ESP32 system on a chip (SoC) that powers the Meatmeet basestation device was found to lack Secure Boot. The Secure Boot feature ensures that only ...	2025-12-10	6.8	PHYSICAL	MEDIUM	NVD
CVE-2025-65828	An unauthenticated attacker within proximity of the Meatmeet device can issue several commands over Bluetooth Low Energy (BLE) to these devices which ...	2025-12-10	N/A	None	None	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.