NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-4674	The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is ...	2025-07-29	N/A	None	None	NVD
CVE-2025-40600	Use of Externally-Controlled Format String vulnerability in the SonicOS SSL VPN interface allows a remote unauthenticated attacker to cause service di...	2025-07-29	9.8	NETWORK	CRITICAL	NVD
CVE-2025-5684	The MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via th...	2025-07-29	6.4	NETWORK	MEDIUM	NVD
CVE-2025-53902	Tuleap is an Open Source Suite created to facilitate management of software development and collaboration. In Tuleap Community Edition prior to versio...	2025-07-29	4.3	NETWORK	MEDIUM	NVD
CVE-2025-53541	Tuleap is an Open Source Suite created to facilitate management of software development and collaboration. In Tuleap Community Edition prior to versio...	2025-07-29	5.4	NETWORK	MEDIUM	NVD
CVE-2025-53102	Discourse is an open-source community discussion platform. Prior to version 3.4.7 on the `stable` branch and version 3.5.0.beta.8 on the `tests-passed...	2025-07-29	8.2	NETWORK	HIGH	NVD
CVE-2025-52899	Tuleap is an Open Source Suite created to facilitate management of software development and collaboration. In Tuleap Community Edition prior to versio...	2025-07-29	5.3	NETWORK	MEDIUM	NVD
CVE-2025-52490	An issue was discovered in Couchbase Sync Gateway before 3.2.6. In sgcollect_info_options.log and sync_gateway.log, there are cleartext passwords in r...	2025-07-29	7.3	NETWORK	HIGH	NVD
CVE-2025-45346	SQL Injection vulnerability in Bacula-web before v.9.7.1 allows a remote attacker to execute arbitrary code via a crafted HTTP GET request.	2025-07-29	8.1	NETWORK	HIGH	NVD
CVE-2024-43018	Piwigo 13.8.0 and below is vulnerable to SQL Injection in the parameters max_level and min_register. These parameters are used in ws_user_gerList func...	2025-07-29	6.4	NETWORK	MEDIUM	NVD
CVE-2025-51045	Phpgurukul Pre-School Enrollment System 1.0 contains a SQL injection vulnerability in the /admin/password-recovery.php file. This vulnerability is att...	2025-07-29	6.5	NETWORK	MEDIUM	NVD
CVE-2025-51044	phpgurukul Nipah virus (NiV) Testing Management System 1.0 contains a SQL injection vulnerability in the /new-user-testing.php file, due to insufficie...	2025-07-29	6.5	NETWORK	MEDIUM	NVD
CVE-2025-36071	IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.2 is vulnerable to a denial of service...	2025-07-29	6.5	NETWORK	MEDIUM	NVD
CVE-2025-33114	IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to denial of service with a specially crafted query under certain non-default condition...	2025-07-29	5.3	NETWORK	MEDIUM	NVD
CVE-2025-33092	IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a stack-based buffer overflow in db2fm, caused by improper bounds checking. A local us...	2025-07-29	7.8	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.