NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-2890	The tagDiv Opt-In Builder plugin for WordPress is vulnerable to time-based SQL Injection via the ‘subscriptionCouponId’ parameter in all versions up t...	2025-04-30	6.5	NETWORK	MEDIUM	NVD
CVE-2025-22884	Delta Electronics ISPSoft version 3.20 is vulnerable to a Stack-Based buffer overflow vulnerability that could allow an attacker to execute arbitrary ...	2025-04-30	7.8	LOCAL	HIGH	NVD
CVE-2025-22883	Delta Electronics ISPSoft version 3.20 is vulnerable to an Out-Of-Bounds Write vulnerability that could allow an attacker to execute arbitrary code wh...	2025-04-30	7.8	LOCAL	HIGH	NVD
CVE-2025-22882	Delta Electronics ISPSoft version 3.20 is vulnerable to a Stack-Based buffer overflow vulnerability that could allow an attacker to leverage debugging...	2025-04-30	7.8	LOCAL	HIGH	NVD
CVE-2025-3953	The WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to ...	2025-04-30	6.5	NETWORK	MEDIUM	NVD
CVE-2025-3471	The SureForms WordPress plugin before 1.4.4 does not have proper authorisation check when updating its settings via the REST API, which could allow C...	2025-04-30	4.9	NETWORK	MEDIUM	NVD
CVE-2025-46560	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Versions starting from 0.8.0 and prior to 0.8.5 are affected by ...	2025-04-30	6.5	NETWORK	MEDIUM	NVD
CVE-2025-32444	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Versions starting from 0.6.5 and prior to 0.8.5, having vLLM int...	2025-04-30	10.0	NETWORK	CRITICAL	NVD
CVE-2025-30202	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Versions starting from 0.5.2 and prior to 0.8.5 are vulnerable t...	2025-04-30	7.5	NETWORK	HIGH	NVD
CVE-2025-46552	KHC-INVITATION-AUTOMATION is a GitHub automation script that automatically invites followers of a bot account to join your organization. In some commi...	2025-04-29	6.3	NETWORK	MEDIUM	NVD
CVE-2025-29906	Finit is a fast init for Linux systems. Versions starting from 3.0-rc1 and prior to version 4.11 bundle an implementation of getty for the `tty` confi...	2025-04-29	8.6	LOCAL	HIGH	NVD
CVE-2025-46550	YesWiki is a wiki system written in PHP. Prior to version 4.5.4, the `/?BazaR` endpoint and `idformulaire` parameter are vulnerable to cross-site scri...	2025-04-29	4.3	NETWORK	MEDIUM	NVD
CVE-2025-46549	YesWiki is a wiki system written in PHP. Prior to version 4.5.4, an attacker can use a reflected cross-site scripting attack to steal cookies from an ...	2025-04-29	4.3	NETWORK	MEDIUM	NVD
CVE-2025-46348	YesWiki is a wiki system written in PHP. Prior to version 4.5.4, the request to commence a site backup can be performed and downloaded without authent...	2025-04-29	10.0	NETWORK	CRITICAL	NVD
CVE-2025-46344	The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. Versions starting from 4.0.1 and prior to 4.5.1, do n...	2025-04-29	4.9	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.