NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-4238	A vulnerability was found in PCMan FTP Server 2.0.7. It has been classified as critical. This affects an unknown part of the component MGET Command Ha...	2025-05-03	7.3	NETWORK	HIGH	NVD
CVE-2025-1495	IBM Business Automation Workflow 24.0.0 and 24.0.1 through 24.0.1 IF001 Center may leak sensitive information due to missing authorization validation.	2025-05-03	4.3	NETWORK	MEDIUM	NVD
CVE-2024-58134	Mojolicious versions from 0.999922 through 9.39 for Perl uses a hard coded string, or the application's class name, as a HMAC session secret by defaul...	2025-05-03	N/A	None	None	NVD
CVE-2024-41753	IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF004 and 24.0.1 through 24.0.1 IF001 is vulnerable to cross-site scripting. This vulnerab...	2025-05-03	6.1	NETWORK	MEDIUM	NVD
CVE-2025-4237	A vulnerability was found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this issue is some unknown functionality of the component ...	2025-05-03	7.3	NETWORK	HIGH	NVD
CVE-2025-4236	A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the...	2025-05-03	7.3	NETWORK	HIGH	NVD
CVE-2025-37799	In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp vmxnet3 driver's XDP...	2025-05-03	N/A	None	None	NVD
CVE-2025-4226	A vulnerability classified as critical has been found in PHPGurukul Cyber Cafe Management System 1.0. This affects an unknown part of the file /add-co...	2025-05-03	7.3	NETWORK	HIGH	NVD
CVE-2024-58135	Mojolicious versions from 7.28 through 9.39 for Perl may generate weak HMAC session secrets. When creating a default app with the "mojo generate app"...	2025-05-03	N/A	None	None	NVD
CVE-2025-3815	The SurveyJS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.12.32 du...	2025-05-03	6.4	NETWORK	MEDIUM	NVD
CVE-2025-4222	The Database Toolset plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.4 via backup files...	2025-05-03	5.9	NETWORK	MEDIUM	NVD
CVE-2025-4199	The Abundatrade Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.8.02. This is due to m...	2025-05-03	6.1	NETWORK	MEDIUM	NVD
CVE-2025-4198	The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or ...	2025-05-03	6.1	NETWORK	MEDIUM	NVD
CVE-2025-4188	The Advanced Reorder Image Text Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. Thi...	2025-05-03	6.1	NETWORK	MEDIUM	NVD
CVE-2025-4172	The VerticalResponse Newsletter Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'verticalresponse' shortcode...	2025-05-03	6.4	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.