Browse CVEs
135,308 low risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-13013 | Mitigation bypass in the DOM: Core & HTML component. This... | Medium | 6.1 | Low Risk | Workaround | 11-Nov-25 |
| CVE-2025-11960 | Improper Neutralization of Input During Web Page Generati... | Medium | 6.1 | Low Risk | Patched | 11-Nov-25 |
| CVE-2025-12590 | The YSlider plugin for WordPress is vulnerable to Cross-S... | Medium | 6.1 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-12021 | The WP-OAuth plugin for WordPress is vulnerable to Reflec... | Medium | 6.1 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-12589 | The WP-Walla plugin for WordPress is vulnerable to Cross-... | Medium | 6.1 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-42924 | SAP S/4HANA landscape SAP E-Recruiting BSP allows an unau... | Medium | 6.1 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-42886 | Due to a Reflected Cross-Site Scripting (XSS) vulnerabili... | Medium | 6.1 | Low Risk | Unpatched (35d) | 11-Nov-25 |
| CVE-2025-42893 | Due to an Open Redirect vulnerability in SAP Business Con... | Medium | 6.1 | Low Risk | Unpatched (35d) | 11-Nov-25 |
| CVE-2025-6571 | A 3rd-party component exposed its password in process arg... | Medium | 6.0 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-26405 | Improper control of dynamically-managed code resources fo... | Medium | 5.9 | Low Risk | Unpatched (34d) | 11-Nov-25 |