Browse CVEs
145,146 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-12665 | The Ninja Countdown | Fastest Countdown Builder plugin fo... | Medium | 4.3 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-9524 | The VAPIX API port.cgi did not have sufficient input vali... | Medium | 4.3 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-12953 | The Classified Listing – AI-Powered Classified ads & Busi... | Medium | 4.3 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-60728 | Untrusted pointer dereference in Microsoft Office Excel a... | Medium | 4.3 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2024-48829 | Dell SmartFabric OS10 Software, versions prior to 10.6.1.... | Medium | 6.7 | Low Risk | Patched | 12-Nov-25 |
| CVE-2025-8421 | An improper default permission vulnerability was reported... | Medium | 6.6 | Low Risk | Unpatched (33d) | 12-Nov-25 |
| CVE-2025-64402 | Apache OpenOffice documents can contain links. A missing ... | Medium | 6.5 | Low Risk | Patched | 12-Nov-25 |
| CVE-2025-61623 | Reflected cross-site scripting vulnerability in Apache OF... | Medium | 6.5 | Low Risk | Patched | 12-Nov-25 |
| CVE-2025-11454 | The Specific Content For Mobile – Customize the mobile ve... | Medium | 6.5 | Low Risk | Unpatched (33d) | 12-Nov-25 |
| CVE-2025-60645 | A Cross-Site Request Forgery (CSRF) in xxl-api v1.3.0 all... | Medium | 6.5 | Low Risk | Unpatched (33d) | 12-Nov-25 |