NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-13181	A vulnerability was determined in pojoin h3blog 1.0. The affected element is an unknown function of the file /admin/cms/material/add. Executing manipu...	2025-11-14	3.5	NETWORK	LOW	NVD
CVE-2025-13180	A vulnerability was found in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to 20250320. Impacted is an unknown func...	2025-11-14	3.5	NETWORK	LOW	NVD
CVE-2025-13179	A vulnerability has been found in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to 20250320. This issue affects som...	2025-11-14	4.3	NETWORK	MEDIUM	NVD
CVE-2025-13033	A vulnerability was identified in the email parsing library due to improper handling of specially formatted recipient email addresses. An attacker can...	2025-11-14	7.5	NETWORK	HIGH	NVD
CVE-2025-63680	Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw (CWE-22) that, in combination with Windows ShellExecuteW fallb...	2025-11-14	8.6	LOCAL	HIGH	NVD
CVE-2025-63291	When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by th...	2025-11-14	5.4	NETWORK	MEDIUM	NVD
CVE-2025-13178	A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /edit_profile of the component...	2025-11-14	3.5	NETWORK	LOW	NVD
CVE-2025-13177	A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site reques...	2025-11-14	4.3	NETWORK	MEDIUM	NVD
CVE-2025-13174	A weakness has been identified in rachelos WeRSS we-mp-rss up to 1.4.7. Affected by this vulnerability is the function do_job of the file /rachelos/we...	2025-11-14	6.3	NETWORK	MEDIUM	NVD
CVE-2025-63830	CKFinder 1.4.3 is vulnerable to Cross Site Scripting (XSS) in the File Upload function. An attacker can upload a crafted SVG containing active content...	2025-11-14	6.1	NETWORK	MEDIUM	NVD
CVE-2025-63725	Reflected Cross-Site Scripting (XSS) vulnerability in SVX Portal 2.7A via the id parameter to Recivers.php.	2025-11-14	6.1	NETWORK	MEDIUM	NVD
CVE-2025-63724	SQL injection (SQL-i) vulnerability in SVX Portal 2.7A via crafted POST request to admin/update_setings.php.	2025-11-14	6.0	NETWORK	MEDIUM	NVD
CVE-2025-54562	A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Technical Information to be Di...	2025-11-14	4.3	NETWORK	MEDIUM	NVD
CVE-2025-54561	An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remo...	2025-11-14	4.3	NETWORK	MEDIUM	NVD
CVE-2025-54560	A Server-side Request Forgery vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Pr...	2025-11-14	3.8	NETWORK	LOW	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.