NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-29746	Cross Site Scripting vulnerability in Koillection v.1.6.10 allows a remote attacker to escalate privileges via the collection, Wishlist and album comp...	2025-05-07	6.1	NETWORK	MEDIUM	NVD
CVE-2025-26169	IXON VPN Client before 1.4.4 on Windows allows Local Privilege Escalation to SYSTEM because there is code execution from a configuration file that can...	2025-05-07	8.1	LOCAL	HIGH	NVD
CVE-2025-26168	IXON VPN Client before 1.4.4 on Linux and macOS allows Local Privilege Escalation to root because there is code execution from a configuration file th...	2025-05-07	8.1	LOCAL	HIGH	NVD
CVE-2025-47423	Personal Weather Station Dashboard 12_lts allows unauthenticated remote attackers to read arbitrary files via ../ directory traversal in the test para...	2025-05-07	5.8	NETWORK	MEDIUM	NVD
CVE-2025-47203	dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used.	2025-05-07	4.5	LOCAL	MEDIUM	NVD
CVE-2025-46828	WeGIA is a web manager for charitable institutions. An unauthenticated SQL Injection vulnerability was identified in versions up to and including 3.3...	2025-05-07	10.0	NETWORK	CRITICAL	NVD
CVE-2025-46824	The Discourse Code Review Plugin allows users to review GitHub commits on Discourse. Prior to commit eed3a80, an attacker can execute arbitrary JavaSc...	2025-05-07	3.1	NETWORK	LOW	NVD
CVE-2025-32821	A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN admin privileges can with admin privileges can inject shell command argum...	2025-05-07	7.1	NETWORK	HIGH	NVD
CVE-2025-32820	A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges can inject a path traversal sequence to make any director...	2025-05-07	8.3	NETWORK	HIGH	NVD
CVE-2025-32819	A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges to bypass the path traversal checks and delete an arbitra...	2025-05-07	8.8	NETWORK	HIGH	NVD
CVE-2025-20223	A vulnerability in Cisco Catalyst Center, formerly Cisco DNA Center, could allow an authenticated, remote attacker to read and modify data in a reposi...	2025-05-07	4.7	NETWORK	MEDIUM	NVD
CVE-2025-20221	A vulnerability in the packet filtering features of Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to bypass Layer 3 and...	2025-05-07	5.3	NETWORK	MEDIUM	NVD
CVE-2025-20216	A vulnerability in the web interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticated, remote attacker ...	2025-05-07	4.7	NETWORK	MEDIUM	NVD
CVE-2025-20214	A vulnerability in the Network Configuration Access Control Module (NACM) of Cisco IOS XE Software could allow an authenticated, remote attacker to ob...	2025-05-07	4.3	NETWORK	MEDIUM	NVD
CVE-2025-20213	A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to overwrite ...	2025-05-07	5.5	LOCAL	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.