NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-67469	Cross-Site Request Forgery (CSRF) vulnerability in kubiq PDF Thumbnail Generator pdf-thumbnail-generator allows Cross Site Request Forgery.This issue ...	2025-12-09	8.8	NETWORK	HIGH	NVD
CVE-2025-67468	Missing Authorization vulnerability in CRM Perks Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms cf7-salesf...	2025-12-09	4.3	NETWORK	MEDIUM	NVD
CVE-2025-67467	Cross-Site Request Forgery (CSRF) vulnerability in StellarWP GiveWP give allows Cross Site Request Forgery.This issue affects GiveWP: from n/a through...	2025-12-09	4.5	NETWORK	MEDIUM	NVD
CVE-2025-67466	Missing Authorization vulnerability in sergiotrinity Trinity Audio trinity-audio allows Exploiting Incorrectly Configured Access Control Security Leve...	2025-12-09	8.1	NETWORK	HIGH	NVD
CVE-2025-67465	Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud Simple Link Directory simple-link-directory allows Cross Site Request Forgery.This iss...	2025-12-09	8.8	NETWORK	HIGH	NVD
CVE-2025-66631	CSLA .NET is a framework designed for the development of reusable, object-oriented business layers for applications. Versions 5.5.4 and below allow th...	2025-12-09	7.2	NETWORK	HIGH	NVD
CVE-2025-66627	Wasmi is a WebAssembly interpreter focused on constrained and embedded systems. In versions 0.41.0, 0.41.1, 0.42.0 through 0.47.1, 0.50.0 through 0.51...	2025-12-09	8.4	LOCAL	HIGH	NVD
CVE-2025-66622	matrix-sdk-base is the base component to build a Matrix client library. Versions 0.14.1 and prior are unable to handle responses that include custom m...	2025-12-09	1.3	NETWORK	LOW	NVD
CVE-2025-66578	xmlseclibs is a library written in PHP for working with XML Encryption and Signatures. Versions 3.1.3 contain an authentication bypass vulnerability d...	2025-12-09	6.0	NETWORK	MEDIUM	NVD
CVE-2025-66568	The ruby-saml library implements the client side of an SAML authorization. Versions up to and including 1.12.4, are vulnerable to authentication bypas...	2025-12-09	9.1	NETWORK	CRITICAL	NVD
CVE-2025-66567	The ruby-saml library is for implementing the client side of a SAML authorization. ruby-saml versions up to and including 1.12.4 contain an authentica...	2025-12-09	9.1	NETWORK	CRITICAL	NVD
CVE-2025-66565	Fiber Utils is a collection of common functions created for Fiber. In versions 2.0.0-rc.3 and below, when the system's cryptographic random number gen...	2025-12-09	9.8	NETWORK	CRITICAL	NVD
CVE-2025-66534	Missing Authorization vulnerability in Elated-Themes The Aisle theaisle allows Exploiting Incorrectly Configured Access Control Security Levels.This i...	2025-12-09	8.8	NETWORK	HIGH	NVD
CVE-2025-66533	Improper Control of Generation of Code ('Code Injection') vulnerability in StellarWP GiveWP give allows Code Injection.This issue affects GiveWP: from...	2025-12-09	7.8	LOCAL	HIGH	NVD
CVE-2025-66532	Missing Authorization vulnerability in Mikado-Themes Powerlift powerlift allows Exploiting Incorrectly Configured Access Control Security Levels.This ...	2025-12-09	8.8	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.