Browse CVEs
144,998 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-65647 | Insecure Direct Object Reference (IDOR) in the Track orde... | Medium | 4.3 | Low Risk | Unpatched (20d) | 25-Nov-25 |
| CVE-2025-12893 | Clients may successfully perform a TLS handshake with a M... | Medium | 4.2 | Low Risk | Unpatched (20d) | 25-Nov-25 |
| CVE-2025-64304 | "FOD" App uses hard-coded cryptographic keys, which may a... | Medium | 4.0 | Low Risk | Unpatched (20d) | 25-Nov-25 |
| CVE-2025-59820 | In KDE Krita before 5.2.13, loading a manipulated TGA fil... | Medium | 6.7 | Low Risk | Patched | 26-Nov-25 |
| CVE-2025-65956 | Formwork is a flat file-based Content Management System (... | Medium | 6.5 | Medium Risk | Patched | 26-Nov-25 |
| CVE-2025-66260 | PostgreSQL SQL Injection (status_sql.php) in DB Electroni... | Medium | 6.5 | Low Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2021-4472 | The mistral-dashboard plugin for openstack has a local fi... | Medium | 6.5 | Low Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-12653 | GitLab has remediated an issue in GitLab CE/EE affecting ... | Medium | 6.5 | Low Risk | Patched | 26-Nov-25 |
| CVE-2025-7449 | GitLab has remediated an issue in GitLab CE/EE affecting ... | Medium | 6.5 | Low Risk | Patched | 26-Nov-25 |
| CVE-2025-63938 | Tinyproxy Remote Code Execution Vulnerability | Medium | 6.5 | Low Risk | Patched | 26-Nov-25 |