Browse CVEs
145,316 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-6027 | The Ace User Management WordPress plugin through 2.0.3 do... | Medium | 6.3 | Low Risk | Patched | 05-Nov-25 |
| CVE-2025-12580 | The SMS for WordPress plugin for WordPress is vulnerable ... | Medium | 6.1 | Low Risk | Unpatched (41d) | 05-Nov-25 |
| CVE-2025-5770 | A reflected cross-site scripting (XSS) vulnerability exis... | Medium | 6.1 | Low Risk | Unpatched (41d) | 05-Nov-25 |
| CVE-2025-63418 | A DOM-based Cross-Site Scripting (XSS) vulnerability in t... | Medium | 6.1 | Low Risk | Unpatched (41d) | 05-Nov-25 |
| CVE-2025-21071 | Out-of-bounds write in handling opcode in fingerprint tru... | Medium | 5.7 | Low Risk | Unpatched (41d) | 05-Nov-25 |
| CVE-2025-8871 | The Everest Forms (Pro) plugin for WordPress is vulnerabl... | Medium | 5.6 | Low Risk | Unpatched (41d) | 05-Nov-25 |
| CVE-2025-21076 | Improper handling of insufficient permissions or privileg... | Medium | 5.5 | Low Risk | Patched | 05-Nov-25 |
| CVE-2025-60753 | libarchive bsdtar Denial of Service | Medium | 5.5 | Low Risk | Patched | 05-Nov-25 |
| CVE-2025-58337 | An attacker with a valid read-only account can bypass Dor... | Medium | 5.4 | Low Risk | Patched | 05-Nov-25 |
| CVE-2025-20303 | Multiple vulnerabilities in the web-based management inte... | Medium | 5.4 | Low Risk | Unpatched (41d) | 05-Nov-25 |