NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-46551	JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library. Starting in JRuby-OpenSSL version 0.12.1 and prior to version ...	2025-05-07	5.7	NETWORK	MEDIUM	NVD
CVE-2025-46827	Graylog is a free and open log management platform. Prior to versions 6.0.14, 6.1.10, and 6.2.0, it is possible to obtain user session cookies by subm...	2025-05-07	8.0	NETWORK	HIGH	NVD
CVE-2024-47619	syslog-ng is an enhanced log daemo. Prior to version 4.8.2, `tls_wildcard_match()` matches on certificates such as `foo.*.bar` although that is not al...	2025-05-07	7.5	NETWORK	HIGH	NVD
CVE-2025-47692	Missing Authorization vulnerability in contentstudio ContentStudio allows Exploiting Incorrectly Configured Access Control Security Levels. This issue...	2025-05-07	4.3	NETWORK	MEDIUM	NVD
CVE-2025-47691	Improper Control of Generation of Code ('Code Injection') vulnerability in Ultimate Member Ultimate Member allows Code Injection. This issue affects U...	2025-05-07	5.5	NETWORK	MEDIUM	NVD
CVE-2025-47688	Missing Authorization vulnerability in Saad Iqbal Advanced File Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This ...	2025-05-07	5.3	NETWORK	MEDIUM	NVD
CVE-2025-47686	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DELUCKS DELUCKS SEO allows Stored XSS. This issu...	2025-05-07	6.5	NETWORK	MEDIUM	NVD
CVE-2025-47685	Cross-Site Request Forgery (CSRF) vulnerability in Moloni Contribuinte Checkout allows Stored XSS. This issue affects Contribuinte Checkout: from n/a ...	2025-05-07	7.1	NETWORK	HIGH	NVD
CVE-2025-47684	Cross-Site Request Forgery (CSRF) vulnerability in Smaily Smaily for WP allows Cross Site Request Forgery. This issue affects Smaily for WP: from n/a ...	2025-05-07	5.4	NETWORK	MEDIUM	NVD
CVE-2025-47683	Deserialization of Untrusted Data vulnerability in Florent Maillefaud WP Maintenance allows Object Injection. This issue affects WP Maintenance: from ...	2025-05-07	7.2	NETWORK	HIGH	NVD
CVE-2025-47681	Cross-Site Request Forgery (CSRF) vulnerability in Ability, Inc Web Accessibility with Max Access allows Cross Site Request Forgery. This issue affect...	2025-05-07	4.3	NETWORK	MEDIUM	NVD
CVE-2025-47679	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RS WP THEMES RS WP Book Showcase allows DOM-Base...	2025-05-07	6.5	NETWORK	MEDIUM	NVD
CVE-2025-47677	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gt3themes Photo Gallery - GT3 Image Gallery & Gu...	2025-05-07	6.5	NETWORK	MEDIUM	NVD
CVE-2025-47676	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Faiyaz Alam User Login History allows Stored XSS...	2025-05-07	6.5	NETWORK	MEDIUM	NVD
CVE-2025-47675	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in woobox Woobox allows DOM-Based XSS. This issue a...	2025-05-07	6.5	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.