Browse CVEs
145,505 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-41021 | Stored Cross-Site Scripting (XSS) in Sergestec's Exito v8... | Medium | 5.4 | Low Risk | Unpatched (65d) | 16-Oct-25 |
| CVE-2025-41410 | Mattermost versions 10.10.x <= 10.10.2, 10.5.x <= 10.5.10... | Medium | 5.4 | Medium Risk | Patched | 16-Oct-25 |
| CVE-2025-53858 | ChatLuck contains a cross-site scripting vulnerability in... | Medium | 5.4 | Low Risk | Unpatched (65d) | 16-Oct-25 |
| CVE-2025-24833 | Stored cross-site scripting (XSS) vulnerability in deskne... | Medium | 5.4 | Low Risk | Unpatched (65d) | 16-Oct-25 |
| CVE-2025-54760 | Stored cross-site scripting (XSS) vulnerability in deskne... | Medium | 5.4 | Low Risk | Unpatched (65d) | 16-Oct-25 |
| CVE-2025-55072 | Stored cross-site scripting (XSS) vulnerability in deskne... | Medium | 5.4 | Low Risk | Unpatched (65d) | 16-Oct-25 |
| CVE-2025-56699 | SQL injection vulnerability in the cmd component of Base ... | Medium | 5.4 | Low Risk | Unpatched (65d) | 16-Oct-25 |
| CVE-2025-56700 | Boolean SQL injection vulnerability in the web app of Bas... | Medium | 5.4 | Low Risk | Unpatched (65d) | 16-Oct-25 |
| CVE-2025-34253 | D-Link Nuclias Connect firmware versions <= 1.3.1.4 conta... | Medium | 5.4 | Low Risk | Patched | 16-Oct-25 |
| CVE-2025-0274 | HCL BigFix Modern Client Management (MCM) 3.3 and earlier... | Medium | 5.3 | Low Risk | Unpatched (65d) | 16-Oct-25 |