Total
4572 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-5885 | 2025-06-09 | N/A | 4.3 MEDIUM | ||
| A vulnerability has been found in Konica Minolta bizhub up to 20250202 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. | |||||
| CVE-2025-45854 | 1 Jehc | 1 Jehc-bpm | 2025-06-09 | N/A | N/A |
| /server/executeExec of JEHC-BPM 2.0.1 allows attackers to execute arbitrary code via execParams. | |||||
| CVE-2025-5814 | 2025-06-09 | N/A | 5.3 MEDIUM | ||
| The Profiler – What Slowing Down Your WP plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wpsd_plugin_control() function in all versions up to, and including, 1.0.0. This makes it possible for unauthenticated attackers to reactivate previously deactivated plugins after accessing the "Profiler" page. | |||||
| CVE-2025-5894 | 2025-06-09 | N/A | 8.8 HIGH | ||
| Smart Parking Management System from Honding Technology has a Missing Authorization vulnerability, allowing remote attackers with regular privileges to access a specific functionality to create administrator accounts, and subsequently log into the system using those accounts. | |||||
| CVE-2025-47601 | 2025-06-09 | N/A | N/A | ||
| Missing Authorization vulnerability in Christiaan Pieterse MaxiBlocks allows Privilege Escalation.This issue affects MaxiBlocks: from n/a through 2.1.0. | |||||
| CVE-2025-39493 | 1 Valvepress | 1 Rankie | 2025-06-06 | N/A | 8.8 HIGH |
| Missing Authorization vulnerability in ValvePress Rankie allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Rankie: from n/a through 1.8.0. | |||||
| CVE-2025-39482 | 1 Imithemes | 1 Eventer | 2025-06-06 | N/A | 8.8 HIGH |
| Missing Authorization vulnerability in imithemes Eventer allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Eventer: from n/a through 3.9.6. | |||||
| CVE-2025-26773 | 1 Analytify | 1 Analytify - Google Analytics Dashboard | 2025-06-06 | N/A | 8.8 HIGH |
| Missing Authorization vulnerability in Adnan Analytify allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Analytify: from n/a through 5.5.0. | |||||
| CVE-2025-49241 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in bobbingwide oik allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects oik: from n/a through 4.15.1. | |||||
| CVE-2025-24778 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in De paragon No Spam At All allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects No Spam At All: from n/a through 1.3. | |||||
| CVE-2025-30958 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in onOffice GmbH onOffice for WP-Websites allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects onOffice for WP-Websites: from n/a through 5.7. | |||||
| CVE-2025-49320 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in fraudlabspro FraudLabs Pro for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects FraudLabs Pro for WooCommerce: from n/a through 2.22.11. | |||||
| CVE-2025-30945 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in taskbuilder Taskbuilder allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Taskbuilder: from n/a through 4.0.3. | |||||
| CVE-2025-48335 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in CyberChimps Responsive Plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Plus: from n/a through 3.2.0. | |||||
| CVE-2025-30636 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in Ability, Inc Accessibility Suite allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Accessibility Suite: from n/a through 4.19. | |||||
| CVE-2025-28996 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in Thad Allender GPP Slideshow allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GPP Slideshow: from n/a through 1.3.5. | |||||
| CVE-2025-30934 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in OLIVESYSTEM ??????????????? allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects ???????????????: from n/a through 1.4.16. | |||||
| CVE-2025-23971 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in whassan KI Live Video Conferences allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects KI Live Video Conferences: from n/a through 5.5.15. | |||||
| CVE-2025-49236 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in raychat Raychat allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Raychat: from n/a through 2.1.0. | |||||
| CVE-2023-26002 | 2025-06-06 | N/A | N/A | ||
| Missing Authorization vulnerability in 6Storage 6Storage Rentals allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects 6Storage Rentals: from n/a through 2.19.5. | |||||